$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 6m+4XtV3Z7ep6vAre5vcAGxff2UPozrnoHf+L/tSJtw= Subject key identifier: 8A:42:76:06:6B:ED:92:A7:5A:5D:EC:AC:BB:97:3B:75:27:56:A1:A8 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 0285 Signing time: Fri 25 Apr 2025 01:25:08 +0000 Manifest this update: Fri 25 Apr 2025 01:25:08 +0000 Manifest next update: Fri 02 May 2025 01:25:08 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: OgBA1sMNiiFEcLA24+YT/cuX9IbtGXnrvAkmzlZPEnY=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Apr 25 01:25:08 2025 GMT Not After : May 2 01:25:08 2025 GMT Subject: CN=680ae474-4807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:14:b1:b5:27:db:76:b5:cf:83:9e:f4:6f:bb: fa:7a:60:4b:0c:a4:43:68:c0:7d:e0:7a:de:c5:3f: 59:24:5b:e1:91:d7:e3:67:8b:33:28:3c:ba:f0:06: 8e:e8:82:01:45:54:36:bd:9c:59:5a:4f:a1:4b:5a: c1:6a:05:fd:10:9c:00:9d:58:02:d9:76:04:2f:72: da:cb:4a:09:18:25:ac:06:6c:19:87:1a:96:78:3e: 33:a9:a1:c2:d2:eb:d3:2a:c4:30:3e:cf:8c:f3:2c: 3f:6d:1c:d8:bc:58:7b:f1:ac:75:92:6d:03:de:d2: 90:0b:96:e3:62:09:d6:35:96:1c:89:11:fa:1d:47: ae:f8:15:fb:ed:59:97:ea:8b:6d:23:f9:ad:22:b7: 87:50:47:02:08:ba:6a:f6:83:ed:cf:05:b9:e5:50: ff:68:5b:c3:0a:ae:91:c4:ca:f1:6b:de:8e:76:73: ae:96:a5:21:a3:af:0d:d0:3e:9f:a8:42:57:09:2f: 2b:03:d1:fc:57:75:de:70:45:a5:c7:e0:dc:2d:e0: 83:c4:21:71:ab:6e:f4:13:35:f4:43:6b:d3:12:58: 52:7c:f6:7e:c5:01:ee:15:9f:23:19:4a:bf:86:a5: 3e:51:66:d8:70:34:f8:71:3d:0c:c3:32:1b:f0:3b: d3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:42:76:06:6B:ED:92:A7:5A:5D:EC:AC:BB:97:3B:75:27:56:A1:A8 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:1d:a1:74:ca:e5:df:a4:20:29:6d:eb:2b:2b:a3:42:1e:29: 94:f4:9a:fd:5b:cb:b9:35:96:24:84:dd:67:e6:29:fe:d3:a7: a1:74:36:21:40:f3:11:e3:ae:6a:1b:4c:5c:3b:a6:62:7c:79: fa:ab:60:27:65:0a:48:cc:28:6c:75:e9:61:05:06:a8:c6:19: 60:d5:e5:c6:df:2a:85:48:44:60:bf:50:30:ef:c4:ed:6a:cd: 4c:b9:23:0b:a3:da:c3:0e:2f:dd:64:83:fd:83:75:69:62:09: b8:be:62:24:37:54:31:f2:a4:a7:98:62:98:b8:ff:83:bb:de: 6b:7b:e4:86:69:aa:65:56:56:a0:cb:d5:26:fb:68:02:2a:3d: 48:2a:77:9a:64:18:6d:91:c7:dc:67:6b:28:3f:18:95:1e:52: 84:31:89:79:10:0c:8d:95:04:5c:8a:77:9e:51:57:00:54:f6: 89:7c:93:4b:8d:c2:56:17:5d:f7:f8:d9:84:2f:c1:6d:8c:29: 29:b9:a6:54:42:b1:ba:93:53:ab:51:f0:a4:4e:22:f8:3c:f8: 1e:46:de:ac:c0:f3:2d:35:f9:19:74:73:36:23:b7:42:4f:be: 15:bd:a9:c0:c1:42:96:b3:74:6a:c8:68:c5:43:0b:30:03:f4: 5d:27:f0:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUwNDI1MDEyNTA4WhcNMjUwNTAyMDEyNTA4WjAYMRYwFAYD VQQDEw02ODBhZTQ3NC00ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxSxtSfbdrXPg570b7v6emBLDKRDaMB94HrexT9ZJFvhkdfjZ4szKDy68AaO 6IIBRVQ2vZxZWk+hS1rBagX9EJwAnVgC2XYEL3Lay0oJGCWsBmwZhxqWeD4zqaHC 0uvTKsQwPs+M8yw/bRzYvFh78ax1km0D3tKQC5bjYgnWNZYciRH6HUeu+BX77VmX 6ottI/mtIreHUEcCCLpq9oPtzwW55VD/aFvDCq6RxMrxa96OdnOulqUho68N0D6f qEJXCS8rA9H8V3XecEWlx+DcLeCDxCFxq270EzX0Q2vTElhSfPZ+xQHuFZ8jGUq/ hqU+UWbYcDT4cT0MwzIb8DvTyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpCdgZr 7ZKnWl3srLuXO3UnVqGoMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRHaF0yuXfpCApbesrK6NCHimU9Jr9W8u5NZYkhN1n5in+06ehdDYh QPMR465qG0xcO6ZifHn6q2AnZQpIzChsdelhBQaoxhlg1eXG3yqFSERgv1Aw78Tt as1MuSMLo9rDDi/dZIP9g3VpYgm4vmIkN1Qx8qSnmGKYuP+Du95re+SGaaplVlag y9Um+2gCKj1IKneaZBhtkcfcZ2soPxiVHlKEMYl5EAyNlQRcineeUVcAVPaJfJNL jcJWF133+NmEL8FtjCkpuaZUQrG6k1OrUfCkTiL4PPgeRt6swPMtNfkZdHM2I7dC T74VvanAwUKWs3RqyGjFQwswA/RdJ/Ap -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:30 2025 by rpki-client