$ rpki-client -vvf rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft File: OIgNuTaszJvXTT2434iHsyjleI0.mft (raw, json) Hash identifier: jyp28NXn2FOXD0ZNrJ83EESMU+K00FjCsGr76U7LwkY= Subject key identifier: 85:E9:63:4C:60:5C:9C:FF:EC:1E:51:53:B8:10:43:F3:14:C0:DA:6B Authority key identifier: 38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D Certificate issuer: /CN=A912E411/serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft Manifest number: 144D Signing time: Fri 16 May 2025 19:02:44 +0000 Manifest this update: Fri 16 May 2025 19:02:44 +0000 Manifest next update: Fri 23 May 2025 19:02:44 +0000 Files and hashes: 1: OIgNuTaszJvXTT2434iHsyjleI0.crl (hash: ldiPF7gvN6iKLStDcWer7L2uqE2M+3hq0vqmNCFxDCQ=) 2: F6EC251224E711F087B2F571C4F9AE02.roa (hash: rZXgL5kOpfImkcfsz+rBbyNxQYniFCL4u4A94P2WOTQ=) 3: C766E398C0EE11EA94A1F146C4F9AE02.roa (hash: U6IcJIRj5YJRYqTCJwLcK2WJN6a1G6P8qQ/oIfEnUqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E411, serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Validity Not Before: May 16 19:02:44 2025 GMT Not After : May 23 19:02:44 2025 GMT Subject: CN=68278bd4-5c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d3:b6:c3:c6:ff:71:49:32:02:de:ad:f2:26: c9:92:71:1a:86:40:f9:45:44:f8:fc:06:cb:43:a1: ce:b8:0e:f7:27:50:92:c8:20:41:95:f0:82:b1:2b: 57:1a:40:2b:3a:ed:89:e5:14:46:3a:29:46:78:4b: 41:8b:ac:3d:d5:aa:5c:ea:85:44:5e:e8:3d:02:78: 32:89:df:6d:c8:29:dc:0d:10:39:6a:21:51:43:ed: f6:10:6a:c3:98:8d:4a:e0:92:33:88:33:36:65:11: bb:a0:a4:9a:fc:1a:9c:19:b1:51:f9:67:5f:16:bf: 66:5b:7c:9f:7d:3a:1d:b5:a9:84:59:51:aa:af:4e: a1:6a:d9:0d:f6:a4:0a:7e:04:22:d8:a5:d0:58:c9: 52:d8:b7:58:51:90:ef:84:4c:31:73:c0:a2:e3:a3: bb:ff:ab:62:7d:8e:3d:d5:d4:15:8b:3b:ae:a8:df: 9e:26:6b:10:5f:dd:97:93:76:e4:a2:d4:da:11:d1: 03:df:c8:70:44:79:79:80:75:49:9e:43:c6:cd:fe: 6e:af:36:1b:fa:1d:d3:a2:dc:ba:a2:87:cc:a6:d1: b5:56:15:33:6d:f0:cc:25:6c:ac:a8:af:45:38:aa: 2e:eb:a6:3e:62:56:9e:4e:ac:4d:8a:23:01:fa:b3: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E9:63:4C:60:5C:9C:FF:EC:1E:51:53:B8:10:43:F3:14:C0:DA:6B X509v3 Authority Key Identifier: keyid:38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8b:3d:d4:5c:bd:a2:64:51:a8:1e:33:f1:eb:15:fd:d1:13: d8:b4:b7:68:93:82:40:c5:b3:92:7d:d1:a0:a1:78:c2:24:06: 2a:80:a9:f9:22:09:48:1b:53:1e:bc:7e:8e:72:73:c0:2d:a0: 68:83:37:b3:40:e4:4e:0a:e4:8e:37:8a:be:b3:a9:c4:09:a6: 4a:b7:8f:20:32:c7:a4:79:03:2b:9a:30:fa:ee:9d:59:34:46: ae:af:5d:2e:d0:b7:c0:7b:64:28:2c:65:e0:cd:95:e4:a0:1f: 94:e8:51:da:5a:65:d0:8f:22:d4:22:6e:e3:0a:6f:a8:fe:96: 44:79:63:e6:69:a6:9e:6b:8f:ee:f1:01:39:d2:d1:56:9f:8f: cc:27:83:da:63:8d:0f:d8:82:e8:25:8b:6f:d7:8b:85:41:b9: c1:25:b2:c3:b5:3d:7d:3a:d7:ef:73:6f:4a:3c:09:a2:4d:f4: 42:a9:93:ef:b9:05:b8:66:4c:98:b0:87:d1:42:fd:08:0f:55: d7:ef:53:60:93:51:84:11:46:9d:11:8b:39:f3:e1:90:c1:a4: 35:41:58:3c:f9:c9:a3:77:ff:21:9d:8e:60:43:b6:dc:74:8c: 65:2b:58:98:6e:67:26:24:7f:ad:ab:05:c2:dc:a0:5a:a7:06: 4f:72:5f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU0MTExMTAvBgNVBAUTKDM4ODgwREI5MzZBQ0NDOUJENzREM0RCOERGODg4N0Iz MjhFNTc4OEQwHhcNMjUwNTE2MTkwMjQ0WhcNMjUwNTIzMTkwMjQ0WjAYMRYwFAYD VQQDEw02ODI3OGJkNC01Yzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dO2w8b/cUkyAt6t8ibJknEahkD5RUT4/AbLQ6HOuA73J1CSyCBBlfCCsStX GkArOu2J5RRGOilGeEtBi6w91apc6oVEXug9Angyid9tyCncDRA5aiFRQ+32EGrD mI1K4JIziDM2ZRG7oKSa/BqcGbFR+WdfFr9mW3yffTodtamEWVGqr06hatkN9qQK fgQi2KXQWMlS2LdYUZDvhEwxc8Ci46O7/6tifY491dQVizuuqN+eJmsQX92Xk3bk otTaEdED38hwRHl5gHVJnkPGzf5urzYb+h3Toty6oofMptG1VhUzbfDMJWysqK9F OKou66Y+YlaeTqxNiiMB+rMGwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXpY0xg XJz/7B5RU7gQQ/MUwNprMB8GA1UdIwQYMBaAFDiIDbk2rMyb1009uN+Ih7Mo5XiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTQxMS9GMEIwMEVCNDE5 MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pKdlhUVDI0MzRpSHN5amxl STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZ051VGFzekp2WFRUMjQzNGlIc3lqbGVJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTQxMS9GMEIwMEVCNDE5MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pK dlhUVDI0MzRpSHN5amxlSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbiz3UXL2iZFGoHjPx6xX90RPYtLdok4JAxbOSfdGgoXjCJAYqgKn5 IglIG1MevH6OcnPALaBogzezQOROCuSON4q+s6nECaZKt48gMsekeQMrmjD67p1Z NEaur10u0LfAe2QoLGXgzZXkoB+U6FHaWmXQjyLUIm7jCm+o/pZEeWPmaaaea4/u 8QE50tFWn4/MJ4PaY40P2ILoJYtv14uFQbnBJbLDtT19Otfvc29KPAmiTfRCqZPv uQW4ZkyYsIfRQv0ID1XX71Ngk1GEEUadEYs58+GQwaQ1QVg8+cmjd/8hnY5gQ7bc dIxlK1iYbmcmJH+tqwXC3KBapwZPcl89 -----END CERTIFICATE-----Generated at Sun May 18 00:01:53 2025 by rpki-client