$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: PJl1PPHHofBYKgOa3HqahGBrPuVSVS98iyuNQSn8NzY= Subject key identifier: FB:3A:B9:FE:52:7A:6F:89:D3:6A:A1:AC:52:5C:8C:18:D8:FB:0D:72 Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 0326 Signing time: Sun 11 May 2025 00:40:42 +0000 Manifest this update: Sun 11 May 2025 00:40:42 +0000 Manifest next update: Sun 18 May 2025 00:40:42 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: n7lv22TdW2Qa2j4OYv+UA8T1C23oNADevbNID51bMHw=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: jj/VEZFojNzwFut6xQ2ddbaM/ffKwcFrBgOFEnS8TYI=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: UriRXIOaFvm5u1qncQTi3IERwvU0QHA/1gyCNIPeCng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: May 11 00:40:42 2025 GMT Not After : May 18 00:40:42 2025 GMT Subject: CN=681ff20a-1537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:90:97:86:13:80:1e:98:82:cc:69:96:86:81: 31:a5:2f:e2:01:54:99:66:f3:e2:73:cf:cd:1a:74: f4:54:9c:14:69:25:7e:25:a5:87:20:04:5d:09:ab: 73:51:d4:08:16:84:c3:d0:b7:46:c8:3b:c7:83:56: 1e:76:6d:59:78:a2:f0:5a:22:db:11:ac:44:b7:7b: 25:1f:bf:33:38:35:c4:b8:46:e3:dd:3d:61:ff:00: db:b7:6d:af:6e:a9:dc:cd:2c:31:a7:b8:0e:00:b7: 7e:85:88:40:b9:2e:7b:8a:af:ec:d0:bd:80:ff:1c: 21:28:c1:e4:ed:1b:14:af:93:fa:3b:df:2b:9f:29: 02:93:d5:16:29:a2:b1:b9:be:99:30:ed:b6:31:7e: 06:2b:d7:13:94:5b:fa:0f:36:d4:39:a5:9a:99:d1: a3:01:82:24:04:e6:6a:04:f0:72:1f:30:3a:94:93: 3f:48:38:c5:59:2a:7c:5f:6b:28:7c:d2:e0:8d:c9: 71:24:73:fc:7d:6e:77:a9:c8:4a:14:a4:a6:43:e9: 10:38:f9:d4:82:65:b9:95:ae:be:fb:86:93:39:99: 0b:49:bd:11:8e:1a:f5:ce:53:24:f9:91:0c:ef:0e: e1:f4:da:d5:73:f1:bf:40:2e:51:7f:e7:ff:42:06: 83:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3A:B9:FE:52:7A:6F:89:D3:6A:A1:AC:52:5C:8C:18:D8:FB:0D:72 X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:18:2a:aa:4f:9b:81:b6:08:04:35:0a:e7:ef:8e:fc:f2:34: df:d2:83:f7:1d:bd:30:59:57:92:8e:b6:f8:e2:74:1c:92:21: e3:cd:98:20:fd:55:fb:09:f1:10:24:19:46:74:05:71:f2:63: 95:42:2c:bf:b2:3b:6a:1b:0b:5e:0a:61:66:1b:37:fd:fe:20: 0a:91:70:87:2f:63:7e:c2:15:c4:b6:22:c2:c6:e1:99:b2:a1: b6:3e:51:f4:b4:e3:0e:99:12:cd:c3:17:ac:db:9f:6c:06:a0: 3f:2b:29:19:b8:77:51:01:a8:89:e1:8c:40:fc:ba:de:40:ae: c0:a1:82:8f:ef:b7:0e:f0:7d:fe:e5:8b:4c:3d:9a:15:ed:cc: 75:84:f4:1e:1a:41:af:ad:7c:7f:54:21:ee:01:bb:c0:ef:b6: 3d:0f:97:54:9a:16:f3:fb:a1:8b:5f:6f:2c:ce:29:b5:2f:15: 16:28:e9:84:d3:e7:f1:24:6d:1e:02:30:8c:fe:9d:c6:36:f3: a8:78:7e:fc:59:90:36:29:84:3f:af:e2:95:cb:7e:92:a8:bf: 07:20:6f:6b:d6:de:80:6d:28:e1:5f:97:d3:7b:46:de:1a:d4: 39:52:f7:bf:9a:4a:56:a2:29:a2:dc:fe:1c:a2:52:5f:48:4d: f4:24:52:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUwNTExMDA0MDQyWhcNMjUwNTE4MDA0MDQyWjAYMRYwFAYD VQQDEw02ODFmZjIwYS0xNTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5CXhhOAHpiCzGmWhoExpS/iAVSZZvPic8/NGnT0VJwUaSV+JaWHIARdCatz UdQIFoTD0LdGyDvHg1Yedm1ZeKLwWiLbEaxEt3slH78zODXEuEbj3T1h/wDbt22v bqnczSwxp7gOALd+hYhAuS57iq/s0L2A/xwhKMHk7RsUr5P6O98rnykCk9UWKaKx ub6ZMO22MX4GK9cTlFv6DzbUOaWamdGjAYIkBOZqBPByHzA6lJM/SDjFWSp8X2so fNLgjclxJHP8fW53qchKFKSmQ+kQOPnUgmW5la6++4aTOZkLSb0Rjhr1zlMk+ZEM 7w7h9NrVc/G/QC5Rf+f/QgaDDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs6uf5S em+J02qhrFJcjBjY+w1yMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKGCqqT5uBtggENQrn74788jTf0oP3Hb0wWVeSjrb44nQckiHjzZgg /VX7CfEQJBlGdAVx8mOVQiy/sjtqGwteCmFmGzf9/iAKkXCHL2N+whXEtiLCxuGZ sqG2PlH0tOMOmRLNwxes259sBqA/KykZuHdRAaiJ4YxA/LreQK7AoYKP77cO8H3+ 5YtMPZoV7cx1hPQeGkGvrXx/VCHuAbvA77Y9D5dUmhbz+6GLX28szim1LxUWKOmE 0+fxJG0eAjCM/p3GNvOoeH78WZA2KYQ/r+KVy36SqL8HIG9r1t6AbSjhX5fTe0be GtQ5Uve/mkpWoimi3P4colJfSE30JFLp -----END CERTIFICATE-----Generated at Sun May 11 22:28:15 2025 by rpki-client