$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: QlYX+BuIORI5P1Cz8qN8z0DNfyBIi6axetqTCasTeDg= Subject key identifier: 0F:DC:15:11:FB:E6:98:02:DC:BF:0E:82:E9:2F:1F:98:72:72:98:40 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 024D Signing time: Fri 25 Apr 2025 01:36:17 +0000 Manifest this update: Fri 25 Apr 2025 01:36:16 +0000 Manifest next update: Fri 02 May 2025 01:36:16 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: ILHucaaLVUxWEaMyuBtWrEKtm9D1NmKdHMx2iVDmLgM=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 7zo0d8WdBwFw00aoFQkrW7v2ow8E9G0bE4Wwabr7enI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Apr 25 01:36:16 2025 GMT Not After : May 2 01:36:16 2025 GMT Subject: CN=680ae710-4c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:bd:2e:44:d9:0a:a9:52:66:0e:ce:f6:d0: 51:4c:18:a9:1a:8d:df:ef:96:64:24:58:85:0f:ad: 2c:3e:64:e0:ea:52:ea:84:0b:95:77:9d:97:04:ac: 82:dd:61:fb:1b:7c:52:ee:67:ef:3e:72:0c:3a:03: ac:85:de:7b:50:61:a8:f9:03:d6:a4:ec:ce:27:b3: 18:0c:a7:05:7f:6b:6f:8e:43:b1:51:87:11:db:b6: b7:c3:ab:5b:48:d5:d0:e1:47:13:40:02:82:29:d8: 29:13:e9:d2:39:46:5b:7b:cb:6c:9b:58:95:34:05: 28:2d:59:3b:32:17:f6:f5:b0:c2:85:d3:69:7b:3a: ae:23:e9:b6:8c:fd:e9:a8:aa:4f:6a:74:39:54:ee: ac:cc:4f:c1:8a:53:9a:20:16:0d:97:5e:be:75:76: 2d:e8:41:eb:59:f1:2a:59:c0:78:64:6c:8f:68:d0: e6:ea:18:0a:58:ab:01:19:ce:76:02:b9:67:c9:07: cf:77:ee:2e:c4:82:5c:9e:10:41:47:0f:25:48:84: 7e:96:9e:51:c0:6f:f1:39:7e:20:e0:ea:67:89:ed: 69:45:40:96:55:8f:37:f6:b1:01:bd:43:73:4a:24: 04:2d:6f:7b:ab:ea:ac:52:b2:45:f0:9d:23:ae:06: e5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DC:15:11:FB:E6:98:02:DC:BF:0E:82:E9:2F:1F:98:72:72:98:40 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:0b:2b:80:90:4c:7b:a1:69:f0:ea:8b:25:6c:c3:33:e7:ff: 89:e7:55:72:65:27:e1:35:83:41:13:1f:33:7a:99:ee:69:f0: 15:1c:43:b0:aa:f3:c8:35:5d:49:02:70:4c:49:82:41:49:eb: bc:a8:10:08:bf:80:ea:7c:27:0f:3f:91:d4:aa:0f:dd:4d:0d: 4b:fb:d3:a5:d7:1f:42:42:33:52:55:21:6d:59:ca:6f:28:e7: f9:ba:f0:da:0a:a7:ee:35:a2:18:6e:7b:40:69:1d:2e:cf:9c: 31:b4:60:2b:e5:87:79:41:8f:ed:96:91:18:b4:b5:f6:d9:48: 00:68:89:8d:16:bf:1c:50:89:d6:52:2c:be:b3:f9:8d:00:08: 6a:d5:84:98:51:8f:26:98:74:a3:8f:d3:72:4c:5b:35:84:3f: 99:9f:b4:af:1a:7f:ba:2f:24:f2:6f:43:be:bc:7b:13:c1:4c: 90:6d:75:7d:a3:1f:ae:64:95:91:5d:9d:b8:99:83:2d:0a:84: fe:55:ec:f4:15:50:e0:a0:b5:25:48:ec:62:5a:fb:63:71:b4: 91:f5:b9:65:15:58:40:90:9e:02:04:29:2f:fb:02:01:61:a2: 00:e4:27:1c:0b:e7:42:b2:a8:c2:57:18:a6:73:4b:35:be:82: 68:52:2b:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwNDI1MDEzNjE2WhcNMjUwNTAyMDEzNjE2WjAYMRYwFAYD VQQDEw02ODBhZTcxMC00YzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxue9LkTZCqlSZg7O9tBRTBipGo3f75ZkJFiFD60sPmTg6lLqhAuVd52XBKyC 3WH7G3xS7mfvPnIMOgOshd57UGGo+QPWpOzOJ7MYDKcFf2tvjkOxUYcR27a3w6tb SNXQ4UcTQAKCKdgpE+nSOUZbe8tsm1iVNAUoLVk7Mhf29bDChdNpezquI+m2jP3p qKpPanQ5VO6szE/BilOaIBYNl16+dXYt6EHrWfEqWcB4ZGyPaNDm6hgKWKsBGc52 ArlnyQfPd+4uxIJcnhBBRw8lSIR+lp5RwG/xOX4g4Opnie1pRUCWVY839rEBvUNz SiQELW97q+qsUrJF8J0jrgblCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/cFRH7 5pgC3L8OgukvH5hycphAMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSCyuAkEx7oWnw6oslbMMz5/+J51VyZSfhNYNBEx8zepnuafAVHEOw qvPINV1JAnBMSYJBSeu8qBAIv4DqfCcPP5HUqg/dTQ1L+9Ol1x9CQjNSVSFtWcpv KOf5uvDaCqfuNaIYbntAaR0uz5wxtGAr5Yd5QY/tlpEYtLX22UgAaImNFr8cUInW Uiy+s/mNAAhq1YSYUY8mmHSjj9NyTFs1hD+Zn7SvGn+6LyTyb0O+vHsTwUyQbXV9 ox+uZJWRXZ24mYMtCoT+Vez0FVDgoLUlSOxiWvtjcbSR9bllFVhAkJ4CBCkv+wIB YaIA5CccC+dCsqjCVximc0s1voJoUivh -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:00 2025 by rpki-client