$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: beEHx9Rs6e33ZwrAwCmG8jXNmTC13M552X1FZGtPhMQ= Subject key identifier: 77:BC:48:66:87:6A:0D:68:44:FC:1B:22:95:6E:31:86:70:A7:7B:1D Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1723 Signing time: Sat 10 May 2025 16:32:23 +0000 Manifest this update: Sat 10 May 2025 16:32:22 +0000 Manifest next update: Sat 17 May 2025 16:32:22 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: RdGBvPduCksNo700KZwjjbmDLzZAlPTxLuMcF9xcCm8=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5944 (0x1738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: May 10 16:32:22 2025 GMT Not After : May 17 16:32:22 2025 GMT Subject: CN=681f7f96-b62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:8b:a2:1b:2e:e5:8d:66:a6:b9:62:d6:ce: 21:da:6f:c8:e6:45:af:0f:04:52:19:59:a2:7a:0d: 71:46:64:ab:e0:06:5d:d9:83:72:a3:45:ba:1b:6e: ec:2f:c6:2a:92:26:75:8e:ee:29:4d:c8:03:20:6d: f0:51:c3:7c:e3:59:fc:3c:24:c7:f5:bb:e9:d4:42: 61:f5:fb:30:81:c2:eb:fb:96:50:2b:a9:36:2b:ac: 55:49:02:73:e3:25:6b:00:bb:8b:9d:da:ba:f7:ae: 63:49:ee:53:59:c4:c8:15:1d:0d:84:4c:66:ab:bb: 5c:64:92:96:1e:34:d2:8a:51:d5:71:fd:38:eb:35: 6e:38:11:14:b5:56:47:3c:2f:67:b8:23:50:06:36: 38:ed:6d:c5:da:50:1a:91:bb:db:05:36:b8:70:7c: 39:74:f2:da:d8:57:82:f1:6c:36:c1:2a:8d:b9:b7: 37:9a:15:92:6f:88:08:80:c2:79:93:3e:e9:77:06: 22:21:6f:95:08:b7:d7:21:49:11:30:64:63:e8:cd: 75:02:f7:3c:86:95:0b:12:9f:2a:df:6f:86:8a:05: 7f:87:54:0f:5f:9d:53:7f:c9:6e:f7:b3:17:64:4f: d7:89:61:cc:e8:1a:40:1e:9b:11:ff:8e:3e:f4:ad: 56:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BC:48:66:87:6A:0D:68:44:FC:1B:22:95:6E:31:86:70:A7:7B:1D X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:90:ba:b1:87:03:57:62:0f:48:2c:b3:ce:f2:60:83:92:79: 90:7a:9f:80:ef:79:a1:80:06:fe:11:e1:7b:d3:37:86:ea:0b: 05:67:fa:c1:a5:1d:11:15:cf:09:83:4e:cf:c6:59:c3:4b:16: 69:33:e1:21:80:36:3e:09:f9:e1:b6:16:f2:d1:14:4e:d8:b8: 13:5d:f8:04:08:1a:b8:33:d0:b6:52:62:06:eb:98:70:dd:cf: 6e:ad:84:27:bf:5e:da:48:47:69:44:e2:f8:2c:ed:26:00:01: b6:bf:50:f0:1f:2a:f6:22:53:ef:b6:9a:5d:1d:8b:27:83:ce: 9d:41:ca:78:78:06:81:68:2c:14:ea:9e:88:4d:d5:52:98:f8: c0:f2:83:4b:33:1e:8d:1f:37:d6:33:61:e8:f0:76:30:f4:15: eb:68:43:70:ec:b0:3c:06:af:a9:b8:58:5a:4d:90:2b:c2:2e: 8f:a6:7a:06:41:f6:bf:75:b6:d3:3e:a5:cc:fd:97:a5:d8:e6: 8a:4a:9d:1a:f4:87:f8:64:b7:2f:a5:3c:03:f0:47:f4:b6:30: 2d:2b:bb:a8:c9:43:7e:88:6c:ec:ca:8a:35:9c:97:5a:64:ac: 31:94:36:64:2f:c3:12:8a:20:26:30:d2:f4:26:95:3b:5c:7d: a9:71:6d:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNTEwMTYzMjIyWhcNMjUwNTE3MTYzMjIyWjAYMRYwFAYD VQQDEw02ODFmN2Y5Ni1iNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m2Lohsu5Y1mprli1s4h2m/I5kWvDwRSGVmieg1xRmSr4AZd2YNyo0W6G27s L8YqkiZ1ju4pTcgDIG3wUcN841n8PCTH9bvp1EJh9fswgcLr+5ZQK6k2K6xVSQJz 4yVrALuLndq6965jSe5TWcTIFR0NhExmq7tcZJKWHjTSilHVcf046zVuOBEUtVZH PC9nuCNQBjY47W3F2lAakbvbBTa4cHw5dPLa2FeC8Ww2wSqNubc3mhWSb4gIgMJ5 kz7pdwYiIW+VCLfXIUkRMGRj6M11Avc8hpULEp8q32+GigV/h1QPX51Tf8lu97MX ZE/XiWHM6BpAHpsR/44+9K1WIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHe8SGaH ag1oRPwbIpVuMYZwp3sdMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAkLqxhwNXYg9ILLPO8mCDknmQep+A73mhgAb+EeF70zeG6gsFZ/rB pR0RFc8Jg07PxlnDSxZpM+EhgDY+Cfnhthby0RRO2LgTXfgECBq4M9C2UmIG65hw 3c9urYQnv17aSEdpROL4LO0mAAG2v1DwHyr2IlPvtppdHYsng86dQcp4eAaBaCwU 6p6ITdVSmPjA8oNLMx6NHzfWM2Ho8HYw9BXraENw7LA8Bq+puFhaTZArwi6PpnoG Qfa/dbbTPqXM/Zel2OaKSp0a9If4ZLcvpTwD8Ef0tjAtK7uoyUN+iGzsyoo1nJda ZKwxlDZkL8MSiiAmMNL0JpU7XH2pcW1S -----END CERTIFICATE-----Generated at Sun May 11 04:03:57 2025 by rpki-client