$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: ydRaEM0ZQ9NcnBE5JUbtTVbCAdS3dzsRfjWEG1Oi8a0= Subject key identifier: 9D:4D:FA:E4:35:CF:32:4B:19:0E:AD:01:8C:FA:96:44:85:69:74:43 Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 063A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 0635 Signing time: Mon 12 May 2025 22:26:06 +0000 Manifest this update: Mon 12 May 2025 22:26:05 +0000 Manifest next update: Mon 19 May 2025 22:26:05 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: NsJeB6qb2qPcrUjFEk+NSAHrwCFHfTyCqHz3+e/WXgM=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: GeZswpwVwmpN5JkYUADU3m9LKzzMiHleESILy/kILG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4, serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: May 12 22:26:05 2025 GMT Not After : May 19 22:26:05 2025 GMT Subject: CN=6822757e-06d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5c:06:b3:6b:01:e5:f0:af:84:e9:74:a4:53: 26:06:46:9e:fa:0f:91:96:3c:a5:8b:07:d2:72:50: 0d:2c:35:fb:92:d3:1e:c6:55:63:0d:c8:22:bd:5f: cf:1f:2e:59:15:f7:1f:4f:0b:e2:77:24:cf:38:e4: b8:4c:dd:d4:44:1b:d2:f5:12:57:31:57:55:bb:db: b1:a0:bd:77:12:23:ac:ef:38:04:ee:ff:51:03:25: 04:0f:0d:24:f6:79:be:a3:7e:c5:45:f4:a0:7d:6e: ed:22:d0:3f:f7:b8:d8:32:ec:ef:8f:b3:bb:36:66: fc:09:ee:ea:3e:0c:c1:a8:45:6f:b2:f8:55:70:af: b6:60:76:25:47:ec:51:76:04:18:2f:b9:5b:96:c2: 02:a9:4b:50:b1:40:2d:da:74:61:d6:e1:b8:c4:c0: 2c:d9:4e:25:f9:d4:1d:44:4d:61:4c:b9:52:e8:64: 38:fd:ea:10:76:f7:1a:13:91:4d:5d:87:94:6b:e8: 34:c5:6a:85:bd:60:4b:ec:3a:12:45:7d:7b:7a:87: 23:35:57:14:42:50:47:33:bd:38:fd:88:a6:e1:e7: 47:33:ae:bf:87:45:b1:21:d0:84:cb:34:31:42:79: 6e:ef:6a:77:8d:40:34:31:89:3d:fe:b7:fe:98:02: dd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4D:FA:E4:35:CF:32:4B:19:0E:AD:01:8C:FA:96:44:85:69:74:43 X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5e:f7:43:e7:48:10:db:ce:07:ea:d2:62:c8:8c:4a:fa:7f: 9a:2e:32:c8:85:84:e4:93:cb:84:6b:61:9d:67:c9:b4:9d:7b: cb:05:37:be:df:0e:50:e6:ed:c8:f2:4e:40:84:90:e3:f3:a4: 70:25:b5:23:0e:08:ae:71:d0:ef:99:e0:f0:43:b4:8d:6c:22: 2c:21:d0:29:8c:b9:5d:6c:27:44:61:d0:db:c3:cd:08:33:52: 3a:9e:f6:77:a0:ba:d3:ce:7f:3a:b1:1d:0e:19:43:71:c7:9a: fd:a6:80:6c:4f:40:9c:23:3a:72:89:56:26:01:ef:3d:57:08: ea:56:49:d6:c8:d5:a0:99:66:0d:5d:83:23:fb:1d:bb:7a:51: e9:69:81:8f:2e:d5:a1:95:e9:50:3a:3d:4d:4c:0a:bd:93:30: a3:cd:6f:ca:62:30:42:68:47:a2:27:f5:2b:ec:14:66:12:e7: 5a:5b:a0:6c:b2:28:4c:2d:e3:53:69:44:23:34:c8:0c:01:15: 6b:80:10:0f:04:d8:6b:9f:7e:f5:90:1c:ba:99:6f:a6:98:e9: bc:68:cb:23:e3:c6:af:5e:e7:0e:ac:d4:79:e0:1a:ef:39:46: cb:c7:83:2a:42:c6:61:55:9f:c5:82:20:eb:3b:37:93:8a:76: a5:13:03:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjUwNTEyMjIyNjA1WhcNMjUwNTE5MjIyNjA1WjAYMRYwFAYD VQQDEw02ODIyNzU3ZS0wNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolwGs2sB5fCvhOl0pFMmBkae+g+RljyliwfSclANLDX7ktMexlVjDcgivV/P Hy5ZFfcfTwvidyTPOOS4TN3URBvS9RJXMVdVu9uxoL13EiOs7zgE7v9RAyUEDw0k 9nm+o37FRfSgfW7tItA/97jYMuzvj7O7Nmb8Ce7qPgzBqEVvsvhVcK+2YHYlR+xR dgQYL7lblsICqUtQsUAt2nRh1uG4xMAs2U4l+dQdRE1hTLlS6GQ4/eoQdvcaE5FN XYeUa+g0xWqFvWBL7DoSRX17eocjNVcUQlBHM704/Yim4edHM66/h0WxIdCEyzQx Qnlu72p3jUA0MYk9/rf+mALdbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1N+uQ1 zzJLGQ6tAYz6lkSFaXRDMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmXvdD50gQ284H6tJiyIxK+n+aLjLIhYTkk8uEa2GdZ8m0nXvLBTe+ 3w5Q5u3I8k5AhJDj86RwJbUjDgiucdDvmeDwQ7SNbCIsIdApjLldbCdEYdDbw80I M1I6nvZ3oLrTzn86sR0OGUNxx5r9poBsT0CcIzpyiVYmAe89VwjqVknWyNWgmWYN XYMj+x27elHpaYGPLtWhlelQOj1NTAq9kzCjzW/KYjBCaEeiJ/Ur7BRmEudaW6Bs sihMLeNTaUQjNMgMARVrgBAPBNhrn371kBy6mW+mmOm8aMsj48avXucOrNR54Brv OUbLx4MqQsZhVZ/FgiDrOzeTinalEwMu -----END CERTIFICATE-----Generated at Tue May 13 18:44:51 2025 by rpki-client