$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft File: O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json) Hash identifier: nW6DzkpvAzKHk7Ec/KkeLyZXEukcr+yUpoL1fMjRMdQ= Subject key identifier: 86:50:40:FB:FB:95:5F:41:A9:81:08:DA:45:B5:46:2D:64:E8:AA:EE Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft Manifest number: 0A07 Signing time: Thu 24 Apr 2025 19:44:59 +0000 Manifest this update: Thu 24 Apr 2025 19:44:59 +0000 Manifest next update: Thu 01 May 2025 19:44:59 +0000 Files and hashes: 1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: ifQppmQ1Q8LGI2i0jmx7ttdskH2MgWoUGefVq9DqFhM=) 2: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: juMQ71UzLGU0NVMfjPJ2FFyOOWRBZEQJenhZ2xiR7QE=) 3: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DFYge5dHCEqKdjq6qJwiRBDOxqQ6gIZRO7JP5sPeXVk=) 4: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: Fcw453Ezb9efQnwUieSmXg5daSqXlucP3XjYZWFxjYQ=) 5: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: R3iQDjS1xmyA/Ti9pGMuv3ByraTjewOpXnxZ6reYInQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Apr 24 19:44:59 2025 GMT Not After : May 1 19:44:59 2025 GMT Subject: CN=680a94bb-25b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:22:54:b7:d3:3e:fd:df:a3:dd:f0:89:26: d1:21:ad:8e:03:2e:df:2a:cc:ff:ac:4d:98:73:4f: 3c:79:2f:36:de:60:62:92:ac:1b:1d:4d:aa:64:a9: 54:de:74:d5:53:5c:34:4f:31:d6:75:ee:42:97:d2: 73:7f:fb:dc:83:f2:dc:2f:82:77:c8:2a:b8:f1:70: 70:c1:c0:b6:52:a2:0a:ea:07:5b:9a:b6:04:85:35: 97:1b:00:8e:c4:cc:03:82:d3:65:df:64:02:fc:99: 27:1f:f6:12:e8:22:69:d5:f5:12:43:35:cc:94:d1: a9:80:b3:c5:f6:26:5c:10:64:9e:b2:ad:04:ea:f0: ec:9d:db:f3:f3:98:9d:82:60:d8:f3:54:43:5a:2b: 6a:4c:32:cc:2d:e5:c6:39:6b:76:c7:b1:00:3e:92: 96:d3:1b:67:36:b2:87:73:74:7e:51:fe:96:48:ec: dd:3b:08:9e:7d:6c:c5:cc:27:30:b4:e3:96:2a:9f: 04:01:d8:1a:a2:b3:b4:92:ea:57:4e:51:9d:3d:e2: 03:8e:6d:41:62:a9:90:ee:94:eb:9f:9f:4b:cc:3e: d1:ec:07:6b:29:f6:e1:2f:5e:78:cd:25:a1:31:c9: 9b:55:b6:2f:53:5c:b3:60:3d:0b:95:b1:2d:90:82: 7c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:50:40:FB:FB:95:5F:41:A9:81:08:DA:45:B5:46:2D:64:E8:AA:EE X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c9:b3:2b:88:5e:03:8c:3d:79:75:74:40:11:70:8e:6a:ed: 67:e9:8b:62:9c:09:38:99:29:47:da:bb:bc:9e:54:4c:af:94: 31:d6:3c:47:db:17:32:78:74:07:1a:29:67:6c:b3:ac:74:ee: 0f:3d:f2:15:e5:7c:73:ce:db:1a:7d:76:fc:3c:4b:8b:8b:7f: d0:dd:38:79:d9:1a:7b:d9:cc:34:d4:db:49:82:d7:2e:3a:25: 0e:54:a3:d1:db:59:cc:55:6d:2d:6f:67:84:34:04:a6:ab:c4: 7a:a5:15:c5:47:28:70:bd:d6:d3:77:16:4f:d8:4d:ab:4e:b7: cd:b2:77:dc:66:27:9c:c9:92:51:fd:2b:73:a3:45:3f:ba:c0: b7:e7:06:52:28:86:d3:ca:9a:75:36:ad:f2:ef:e0:a8:bd:a7: 9f:63:03:3c:fd:40:7a:e4:1e:4e:f1:f2:10:9f:c0:77:87:c3: a5:df:ca:2e:e3:63:da:6b:88:f0:07:0e:ff:4e:c7:84:56:ee: 3d:e0:c5:62:f7:be:7c:94:05:15:2d:49:e6:b9:a4:7f:9f:d6: ea:7f:b6:07:a4:f0:ee:15:b9:cb:1a:5e:8e:c9:43:9d:08:29: 07:c6:2e:55:90:a6:1a:e1:09:aa:2d:13:94:16:a6:1a:24:2c: 03:1c:bc:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUwNDI0MTk0NDU5WhcNMjUwNTAxMTk0NDU5WjAYMRYwFAYD VQQDEw02ODBhOTRiYi0yNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5UiVLfTPv3fo93wiSbRIa2OAy7fKsz/rE2Yc088eS823mBikqwbHU2qZKlU 3nTVU1w0TzHWde5Cl9Jzf/vcg/LcL4J3yCq48XBwwcC2UqIK6gdbmrYEhTWXGwCO xMwDgtNl32QC/JknH/YS6CJp1fUSQzXMlNGpgLPF9iZcEGSesq0E6vDsndvz85id gmDY81RDWitqTDLMLeXGOWt2x7EAPpKW0xtnNrKHc3R+Uf6WSOzdOwiefWzFzCcw tOOWKp8EAdgaorO0kupXTlGdPeIDjm1BYqmQ7pTrn59LzD7R7AdrKfbhL154zSWh McmbVbYvU1yzYD0LlbEtkIJ8OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZQQPv7 lV9BqYEI2kW1Ri1k6KruMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht cG5teHRnbHR0blJUb0RxNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWybMriF4DjD15dXRAEXCOau1n6YtinAk4mSlH2ru8nlRMr5Qx1jxH 2xcyeHQHGilnbLOsdO4PPfIV5XxzztsafXb8PEuLi3/Q3Th52Rp72cw01NtJgtcu OiUOVKPR21nMVW0tb2eENASmq8R6pRXFRyhwvdbTdxZP2E2rTrfNsnfcZiecyZJR /Stzo0U/usC35wZSKIbTypp1Nq3y7+CovaefYwM8/UB65B5O8fIQn8B3h8Ol38ou 42Paa4jwBw7/TseEVu494MVi9758lAUVLUnmuaR/n9bqf7YHpPDuFbnLGl6OyUOd CCkHxi5VkKYa4QmqLROUFqYaJCwDHLx7 -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:18 2025 by rpki-client