$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: KxTif0XaY3QIgPSY8134eb/DYLd88qHIZgC3kI9m50Y= Subject key identifier: 5B:58:0E:F7:C1:7E:13:83:9D:28:CD:BF:F6:0E:08:67:6A:A6:DF:E2 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05B1 Signing time: Thu 24 Apr 2025 22:56:07 +0000 Manifest this update: Thu 24 Apr 2025 22:56:07 +0000 Manifest next update: Thu 01 May 2025 22:56:07 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: v1iTfyrv6VPXV2hlo4OHaneIncPDwFcLguIQIEbEvfI=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1462 (0x5b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Apr 24 22:56:07 2025 GMT Not After : May 1 22:56:07 2025 GMT Subject: CN=680ac187-e58c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:d7:c6:bc:53:f7:9d:93:64:ca:24:c0:11: 09:7e:49:09:d9:30:60:c6:2e:53:2b:38:48:15:81: 60:d5:b8:6c:6f:6b:ab:58:29:42:0f:52:74:21:cb: a9:84:aa:0f:e3:0e:68:9c:24:8a:53:a3:e4:8a:51: 5d:8d:22:6d:71:3e:2b:94:a0:47:08:0d:d7:4b:a8: df:6e:9c:1a:6e:fa:fd:14:3a:ee:f5:06:a4:39:c2: e7:16:59:ae:fc:db:d7:59:b8:b3:f1:37:c1:68:63: 19:5d:a3:a8:91:21:6d:79:a5:21:ff:56:1d:38:32: 19:36:63:8d:ef:1d:f8:52:69:da:ec:d4:a0:8d:a3: eb:12:51:8e:92:5a:75:bf:ab:a6:87:a3:e6:2b:62: ab:d1:b9:5f:d5:b7:df:4a:86:33:15:09:4d:c0:5d: 5c:b4:ef:8b:c6:9c:9f:c7:3a:88:f8:46:b2:37:80: 1d:75:db:f9:65:a2:04:d4:f4:66:56:a2:d7:4e:7f: c6:1e:f2:2c:e1:05:07:69:d4:6c:72:49:54:4a:15: 62:2c:8c:0e:47:bd:fc:00:f0:f2:fa:b4:4a:f9:99: 3b:12:16:36:05:84:9b:36:12:da:e6:7e:87:77:b4: 9c:6a:1f:b6:8a:55:12:d6:fd:d4:c3:57:31:5d:7b: ae:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:58:0E:F7:C1:7E:13:83:9D:28:CD:BF:F6:0E:08:67:6A:A6:DF:E2 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:cc:b1:7f:7b:1f:bf:bd:ba:00:e0:1a:de:5a:b7:b4:81:5a: df:25:06:8b:ef:81:d5:f6:10:c1:40:9a:84:d4:fe:bb:6b:45: 62:00:f5:c4:b0:44:c3:04:88:e5:5b:98:38:87:c0:27:20:f8: 15:07:10:4c:ef:f3:d6:02:ac:52:76:c8:4b:04:87:b7:21:00: d7:b4:84:a0:1f:9e:23:b5:62:cb:16:ce:7f:25:61:4d:97:13: 9c:78:82:db:1d:35:1e:12:41:8b:e9:7c:98:8c:7c:c3:d7:42: 21:06:ad:4d:26:c9:99:b4:74:a1:0b:0b:72:c9:98:50:84:bb: 19:d6:a4:53:dc:f2:4c:61:45:4b:6a:27:89:6a:da:b8:be:54: 3c:a8:5e:54:83:91:53:6a:0d:13:71:64:b1:8b:68:56:0d:18: 0a:02:a5:82:18:d1:b5:35:8f:f2:09:0c:26:15:3f:6d:36:1b: 85:af:fd:af:58:69:c5:8b:ba:33:44:5e:35:58:7e:1d:5a:1d: 34:60:4b:61:93:0d:fc:b4:70:01:20:3d:1d:2a:08:fd:01:9f: 99:d6:6d:9d:23:5c:fb:e2:d7:f9:95:b4:d6:1c:ea:56:51:88: 28:08:e2:6d:8e:c8:fd:65:7a:23:a6:54:ab:f5:c6:09:03:d8: eb:5d:6d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwNDI0MjI1NjA3WhcNMjUwNTAxMjI1NjA3WjAYMRYwFAYD VQQDEw02ODBhYzE4Ny1lNThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3nXxrxT952TZMokwBEJfkkJ2TBgxi5TKzhIFYFg1bhsb2urWClCD1J0Icup hKoP4w5onCSKU6PkilFdjSJtcT4rlKBHCA3XS6jfbpwabvr9FDru9QakOcLnFlmu /NvXWbiz8TfBaGMZXaOokSFteaUh/1YdODIZNmON7x34Umna7NSgjaPrElGOklp1 v6umh6PmK2Kr0blf1bffSoYzFQlNwF1ctO+LxpyfxzqI+EayN4Adddv5ZaIE1PRm VqLXTn/GHvIs4QUHadRscklUShViLIwOR738APDy+rRK+Zk7EhY2BYSbNhLa5n6H d7Scah+2ilUS1v3Uw1cxXXuumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtYDvfB fhODnSjNv/YOCGdqpt/iMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDqzLF/ex+/vboA4BreWre0gVrfJQaL74HV9hDBQJqE1P67a0ViAPXE sETDBIjlW5g4h8AnIPgVBxBM7/PWAqxSdshLBIe3IQDXtISgH54jtWLLFs5/JWFN lxOceILbHTUeEkGL6XyYjHzD10IhBq1NJsmZtHShCwtyyZhQhLsZ1qRT3PJMYUVL aieJatq4vlQ8qF5Ug5FTag0TcWSxi2hWDRgKAqWCGNG1NY/yCQwmFT9tNhuFr/2v WGnFi7ozRF41WH4dWh00YEthkw38tHABID0dKgj9AZ+Z1m2dI1z74tf5lbTWHOpW UYgoCOJtjsj9ZXojplSr9cYJA9jrXW3h -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:00 2025 by rpki-client