$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: vJO4QMbxP3xu5eBzY9OoJ1eSUJzKR+6zrlVTXhq/4Xw= Subject key identifier: D4:F1:F4:23:3A:9A:05:54:9C:FE:13:5C:E5:82:5D:FC:22:10:64:1C Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 347F Signing time: Sun 04 May 2025 14:30:54 +0000 Manifest this update: Sun 04 May 2025 14:30:53 +0000 Manifest next update: Sun 11 May 2025 14:30:53 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: nrc3Zo58VFgO1QwCJsZa0J7IjQw38bacF2MRzAN9z04=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: 05APYQJe4DJPEEjidbXlOzb6+S6p4c1Z55iGoGM7Isg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 14:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: May 4 14:30:53 2025 GMT Not After : May 11 14:30:53 2025 GMT Subject: CN=68177a1e-bfbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:93:38:ee:ef:d0:ff:07:14:b9:c3:f8:fb: ad:4a:be:a8:b5:85:c7:d2:47:80:23:1f:95:38:4b: 15:10:da:39:93:fe:e2:50:3a:41:e8:97:96:00:22: 9e:46:a3:72:b4:f1:2e:37:01:51:36:88:4d:59:1e: 32:59:1d:67:1e:57:d3:af:d7:2f:6f:0d:0b:19:18: fb:20:53:82:4c:dc:6d:ea:89:e7:fe:70:89:91:54: 6b:f8:6c:3f:76:29:ba:5b:71:d8:b3:04:3d:8d:72: 99:2d:63:75:4c:b1:79:79:90:dc:18:dd:29:0d:61: 2c:2b:66:5d:96:c8:71:51:7f:a9:a3:f3:19:c1:7f: 47:1d:40:a0:7d:fd:6f:94:6b:2a:4f:21:ac:49:7c: 70:ad:65:4c:7d:5d:64:11:14:26:e2:99:0c:dd:00: a4:45:1d:ba:a7:e0:9a:82:c5:7c:8c:4e:04:ef:5e: be:12:0d:03:63:9c:d2:6c:4c:fe:ad:fe:59:39:9a: 83:ce:ec:8e:cb:0c:16:18:f5:02:e1:9b:30:2f:f1: dc:ab:3c:a1:51:94:f9:5e:2f:8b:dd:05:6d:7e:84: 3a:ce:bf:ae:c5:78:dd:e1:57:3f:72:20:bc:b0:fc: e5:ef:de:be:e9:7e:65:4a:e9:09:db:b6:6d:00:76: 07:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F1:F4:23:3A:9A:05:54:9C:FE:13:5C:E5:82:5D:FC:22:10:64:1C X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:1c:e0:f9:ec:50:e4:d9:d5:83:ee:2a:df:3f:db:b1:e5:6c: 8f:2d:89:a5:80:5d:17:e8:4a:99:81:30:cc:93:93:60:d6:aa: e1:e5:5d:f8:04:cd:4c:72:4c:80:71:02:27:a4:db:7e:9f:a2: 54:1e:a6:da:da:4b:51:ab:23:a4:43:ff:94:58:c4:9f:b0:53: ee:e6:33:1f:26:22:57:fb:05:2f:64:74:20:52:91:ea:54:75: cf:69:85:9d:cf:7f:72:c2:30:af:be:65:b4:5e:c7:e6:c9:0b: 23:d1:bc:9a:72:16:4b:8b:88:4d:11:3b:8e:bc:ab:7a:d3:f4: b4:1a:f1:13:89:95:3d:ab:70:b2:d2:31:3f:51:e5:f9:3d:09: 27:1f:92:84:81:42:41:55:60:02:31:5e:dd:28:9d:ce:a7:1e: d7:15:13:a9:cc:4f:26:da:75:b1:10:3e:de:36:1f:4e:17:5e: 48:10:a8:a0:14:43:9b:88:b7:7b:d7:13:2a:60:3f:26:86:c1: 76:90:bd:da:1e:bf:e2:54:d5:86:d4:a4:bf:5a:e8:af:06:f4: eb:a6:a2:67:80:1b:ec:15:03:89:be:4e:0d:67:53:0e:30:0a: 5c:19:87:85:d8:06:5d:72:82:1c:85:14:a9:03:65:69:a9:d1: 1d:d3:23:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjUwNTA0MTQzMDUzWhcNMjUwNTExMTQzMDUzWjAYMRYwFAYD VQQDEw02ODE3N2ExZS1iZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/iTOO7v0P8HFLnD+PutSr6otYXH0keAIx+VOEsVENo5k/7iUDpB6JeWACKe RqNytPEuNwFRNohNWR4yWR1nHlfTr9cvbw0LGRj7IFOCTNxt6onn/nCJkVRr+Gw/ dim6W3HYswQ9jXKZLWN1TLF5eZDcGN0pDWEsK2ZdlshxUX+po/MZwX9HHUCgff1v lGsqTyGsSXxwrWVMfV1kERQm4pkM3QCkRR26p+CagsV8jE4E716+Eg0DY5zSbEz+ rf5ZOZqDzuyOywwWGPUC4ZswL/HcqzyhUZT5Xi+L3QVtfoQ6zr+uxXjd4Vc/ciC8 sPzl796+6X5lSukJ27ZtAHYHcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTx9CM6 mgVUnP4TXOWCXfwiEGQcMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxHOD57FDk2dWD7irfP9ux5WyPLYmlgF0X6EqZgTDMk5Ng1qrh5V34 BM1MckyAcQInpNt+n6JUHqba2ktRqyOkQ/+UWMSfsFPu5jMfJiJX+wUvZHQgUpHq VHXPaYWdz39ywjCvvmW0XsfmyQsj0byachZLi4hNETuOvKt60/S0GvETiZU9q3Cy 0jE/UeX5PQknH5KEgUJBVWACMV7dKJ3Opx7XFROpzE8m2nWxED7eNh9OF15IEKig FEObiLd71xMqYD8mhsF2kL3aHr/iVNWG1KS/WuivBvTrpqJngBvsFQOJvk4NZ1MO MApcGYeF2AZdcoIchRSpA2VpqdEd0yPO -----END CERTIFICATE-----Generated at Mon May 5 03:50:37 2025 by rpki-client