$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: 9UiBG+s2ClZmy5EojKH0Q1mgZ94UR7luPs3wzzHjAwA= Subject key identifier: F8:10:86:37:58:C8:4B:85:E7:68:E6:46:9B:00:35:0E:DB:53:A4:A3 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 4D Signing time: Fri 25 Apr 2025 06:19:23 +0000 Manifest this update: Fri 25 Apr 2025 06:19:23 +0000 Manifest next update: Fri 02 May 2025 06:19:23 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: e+hqNgxmKU5C6IEFZ28iOhY2mn2pJlNu00tqbBd4R/0=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Apr 25 06:19:23 2025 GMT Not After : May 2 06:19:23 2025 GMT Subject: CN=680b296b-b097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:21:61:1b:27:ea:6e:ef:b8:d1:e3:b4:f8: c0:94:cd:2a:32:a3:86:5e:cf:3a:18:cd:33:79:ca: e7:5f:ee:84:91:99:01:76:d8:13:4f:b5:c5:65:12: ba:4b:8b:26:aa:a6:9e:86:50:d4:87:ff:1b:aa:f6: 1d:91:6f:e9:cf:2a:e4:ea:11:26:14:8e:3a:b6:e5: 22:9a:9e:b4:05:04:a7:8f:06:55:d2:50:cb:d7:58: 02:30:94:fb:8d:4f:e0:a4:de:13:af:58:3c:4c:1e: 9f:79:6a:0a:8d:9b:e7:89:bc:66:a3:b8:0c:5f:20: f9:05:01:8c:cd:0d:a3:d0:95:2f:c9:a4:b0:da:15: c3:c9:22:3d:85:cf:92:04:a0:35:c1:ff:8c:0e:ab: 94:55:d3:c7:7f:6f:ae:11:24:e9:a2:c6:3f:66:15: 9a:a3:d8:c7:1a:2e:ed:c9:9d:0c:45:f8:de:74:3c: 2c:fa:d6:50:7f:63:2d:2a:20:55:08:a9:11:65:c9: c1:f5:c4:07:6a:5c:8a:8b:69:88:67:c3:0c:31:af: b1:61:58:ea:16:33:f0:16:c9:31:73:98:08:5a:eb: d5:22:7e:b9:65:4b:83:1c:cd:2a:ea:15:d7:16:4f: df:0d:11:c4:c0:6f:dc:86:1b:03:1b:ea:33:f7:26: 23:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:10:86:37:58:C8:4B:85:E7:68:E6:46:9B:00:35:0E:DB:53:A4:A3 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:63:81:5d:b5:06:31:17:6a:a8:29:da:03:86:a4:81:32:1f: 7e:2b:45:e3:3a:39:5f:f0:08:be:ef:df:5c:90:48:b6:a3:75: 07:ed:45:65:19:25:c3:03:0c:8c:de:ae:71:9b:0a:00:12:06: 60:84:17:d1:07:8a:3b:29:19:c4:0a:e0:ba:14:a2:85:b8:cb: f7:9a:93:d6:5b:fa:37:eb:60:d8:de:79:5e:a6:fc:05:9b:81: 7f:bb:f6:7b:53:7e:fe:8e:7b:12:3f:46:0e:44:b0:d3:f1:f5: 7f:da:4b:7d:e7:da:e5:07:b2:ae:79:66:c4:3b:a4:53:11:ac: 41:90:d8:2e:17:e1:d9:d5:ae:c0:f1:1d:0c:66:bb:f5:2c:9f: e6:15:a3:6c:d3:ce:f6:d7:d8:65:cc:b4:d3:ca:ad:43:eb:f1: 93:8c:f8:6f:32:b8:82:97:98:f9:40:f4:e5:52:56:66:02:5c: 21:f7:77:31:40:ca:9e:38:a2:00:05:b6:e8:67:c0:ad:b3:4e: a6:43:84:a6:fd:0f:6b:97:0e:27:b9:85:09:75:47:51:a9:f4: e4:aa:e4:96:a1:cc:6c:39:ec:29:d2:c6:ea:40:db:b9:10:3e: 63:7b:f7:df:da:f3:85:9c:39:ce:f6:d4:d3:ed:20:d9:de:5e: 4d:15:84:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNTA0MjUwNjE5MjNaFw0yNTA1MDIwNjE5MjNaMBgxFjAUBgNV BAMTDTY4MGIyOTZiLWIwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjOyFhGyfqbu+40eO0+MCUzSoyo4ZezzoYzTN5yudf7oSRmQF22BNPtcVlErpL iyaqpp6GUNSH/xuq9h2Rb+nPKuTqESYUjjq25SKanrQFBKePBlXSUMvXWAIwlPuN T+Ck3hOvWDxMHp95agqNm+eJvGajuAxfIPkFAYzNDaPQlS/JpLDaFcPJIj2Fz5IE oDXB/4wOq5RV08d/b64RJOmixj9mFZqj2McaLu3JnQxF+N50PCz61lB/Yy0qIFUI qRFlycH1xAdqXIqLaYhnwwwxr7FhWOoWM/AWyTFzmAha69UifrllS4MczSrqFdcW T98NEcTAb9yGGwMb6jP3JiNtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+BCGN1jI S4XnaOZGmwA1DttTpKMwHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF NUU1L0Y5N0JDMzAyQUZCRjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lR Q0hmbFBkWVltVHNSOU5EZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxjgV21BjEXaqgp2gOGpIEyH34rReM6OV/wCL7v31yQSLajdQftRWUZ JcMDDIzernGbCgASBmCEF9EHijspGcQK4LoUooW4y/eak9Zb+jfrYNjeeV6m/AWb gX+79ntTfv6OexI/Rg5EsNPx9X/aS33n2uUHsq55ZsQ7pFMRrEGQ2C4X4dnVrsDx HQxmu/Usn+YVo2zTzvbX2GXMtNPKrUPr8ZOM+G8yuIKXmPlA9OVSVmYCXCH3dzFA yp44ogAFtuhnwK2zTqZDhKb9D2uXDie5hQl1R1Gp9OSq5JahzGw57CnSxupA27kQ PmN799/a84WcOc721NPtINneXk0VhKY= -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:53 2025 by rpki-client