$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: TcORVAc9VhE3vsFak9rGJjgab/wKCKlj4Jg3xYIXpT8= Subject key identifier: FD:01:00:A5:A2:F7:96:05:70:82:EB:AD:EF:35:10:FF:3E:ED:0B:A2 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0949 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 0942 Signing time: Fri 16 May 2025 20:31:13 +0000 Manifest this update: Fri 16 May 2025 20:31:13 +0000 Manifest next update: Fri 23 May 2025 20:31:13 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: BfcgVt4V5R/rlHK/qDHCoOJg3LThvXmnnIwFrEQsU3s=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: Z6vRCcxL1bmdrItPmj7qCyzvetl7oMIALv4P0w4CxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2377 (0x949) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: May 16 20:31:13 2025 GMT Not After : May 23 20:31:13 2025 GMT Subject: CN=6827a091-22cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b0:e2:61:72:6d:b9:bb:dd:ec:60:a0:46:1f: 21:2e:d6:0e:b0:b3:83:6d:4c:22:98:d0:eb:fc:96: 25:9e:74:98:fe:e0:29:72:05:36:b5:ec:ac:51:6f: 60:9f:ec:38:8a:f0:fa:b5:f9:bd:f8:69:b8:e1:09: da:98:9b:a7:e8:b0:bf:a8:1e:b9:21:dd:38:bf:cd: a7:d9:3e:c9:91:7e:bb:62:f7:c5:29:f0:01:c4:6f: 70:47:85:3c:2a:11:a4:fb:9c:69:ee:50:b1:6f:0e: fe:02:7f:b7:f0:05:c9:75:d9:44:f4:75:89:c6:55: 86:69:66:2b:bf:ca:23:a7:ac:54:16:16:82:18:e2: 73:2f:44:f0:cf:cc:c1:e9:ea:e0:31:6e:8f:b8:d4: cd:3e:67:2b:4b:d2:4c:0c:19:3c:8f:3f:aa:87:64: 92:ce:26:85:3c:9b:96:13:4d:fb:37:d3:80:32:8d: 8c:20:ef:24:6e:80:94:38:92:b4:43:22:17:c2:d0: ff:72:75:04:78:18:d6:0a:1c:95:13:6b:8c:73:98: 17:9a:8d:cb:72:ed:4c:3f:11:7e:03:af:2c:01:47: 4e:51:02:96:78:15:f5:e4:98:03:97:1b:e2:f3:f0: dd:1c:19:82:0a:57:6c:9f:a0:7f:8b:91:84:b7:19: ab:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:01:00:A5:A2:F7:96:05:70:82:EB:AD:EF:35:10:FF:3E:ED:0B:A2 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:74:89:f1:57:59:96:f9:6f:83:8c:9c:69:32:6b:e4:c3:ac: 47:91:a9:c0:ca:eb:54:c3:a4:07:ab:30:6a:25:1c:44:c0:54: 55:3f:8b:b6:6f:3a:dc:af:26:86:4b:5d:62:0d:18:5b:dd:24: 2a:bd:d9:f4:e7:d6:40:b4:98:95:e5:36:80:d0:b3:11:1c:b6: 3e:24:85:0b:7a:50:f1:1c:e6:37:57:b5:2a:cc:d1:8b:e0:12: 8e:67:2b:85:4a:76:15:55:34:33:9e:04:1c:ef:f4:fb:a7:61: ce:bb:5c:c5:b9:f3:54:04:93:7f:30:6c:d5:0c:09:59:c0:96: 47:56:d3:5f:f7:28:cc:d6:ec:a0:79:7e:d0:fe:54:5b:bb:08: 4f:8c:27:5b:b4:00:37:4d:c6:b8:c1:93:92:5a:43:d6:47:04: a6:21:3c:ce:a6:b4:89:4d:0a:6d:ef:55:ff:7f:66:53:bc:e7: 30:4d:e9:75:ba:fb:ca:e6:d6:df:1b:3b:9a:e1:66:d6:cd:92: 11:7f:f5:f3:42:68:fd:f0:af:53:99:ec:4e:1c:ee:69:48:47: 61:4e:32:9f:e9:55:05:66:de:0f:87:f0:79:59:61:c2:0d:c1: cf:2e:60:a1:d4:3b:bf:a1:56:0c:35:c1:59:c5:d3:02:d2:5f: 54:80:f1:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjUwNTE2MjAzMTEzWhcNMjUwNTIzMjAzMTEzWjAYMRYwFAYD VQQDEw02ODI3YTA5MS0yMmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27DiYXJtubvd7GCgRh8hLtYOsLODbUwimNDr/JYlnnSY/uApcgU2teysUW9g n+w4ivD6tfm9+Gm44QnamJun6LC/qB65Id04v82n2T7JkX67YvfFKfABxG9wR4U8 KhGk+5xp7lCxbw7+An+38AXJddlE9HWJxlWGaWYrv8ojp6xUFhaCGOJzL0Twz8zB 6ergMW6PuNTNPmcrS9JMDBk8jz+qh2SSziaFPJuWE037N9OAMo2MIO8kboCUOJK0 QyIXwtD/cnUEeBjWChyVE2uMc5gXmo3Lcu1MPxF+A68sAUdOUQKWeBX15JgDlxvi 8/DdHBmCCldsn6B/i5GEtxmr9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0BAKWi 95YFcILrre81EP8+7QuiMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUdInxV1mW+W+DjJxpMmvkw6xHkanAyutUw6QHqzBqJRxEwFRVP4u2 bzrcryaGS11iDRhb3SQqvdn059ZAtJiV5TaA0LMRHLY+JIULelDxHOY3V7UqzNGL 4BKOZyuFSnYVVTQzngQc7/T7p2HOu1zFufNUBJN/MGzVDAlZwJZHVtNf9yjM1uyg eX7Q/lRbuwhPjCdbtAA3Tca4wZOSWkPWRwSmITzOprSJTQpt71X/f2ZTvOcwTel1 uvvK5tbfGzua4WbWzZIRf/XzQmj98K9TmexOHO5pSEdhTjKf6VUFZt4Ph/B5WWHC DcHPLmCh1Du/oVYMNcFZxdMC0l9UgPEE -----END CERTIFICATE-----Generated at Sat May 17 03:21:11 2025 by rpki-client