$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: jUJoGr6prG6HHFCA7+6tTwcd6svJ1EhOdZmfiewI0XQ= Subject key identifier: 22:36:7E:90:A8:A4:3A:0A:6D:F8:94:E3:69:06:91:94:C6:DF:05:C9 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A6D Signing time: Sat 10 May 2025 19:23:46 +0000 Manifest this update: Sat 10 May 2025 19:23:46 +0000 Manifest next update: Sat 17 May 2025 19:23:46 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: KGU4KA/asY6DEXFucvPDfcNJ2VwODcSKAlsRsRodh30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: May 10 19:23:46 2025 GMT Not After : May 17 19:23:46 2025 GMT Subject: CN=681fa7c2-abeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:55:76:00:e0:a4:84:1a:07:39:6d:26:12: 40:40:08:9f:4b:80:2e:45:f2:0d:d4:f1:55:10:d7: a9:21:cd:74:1f:5f:99:cb:7e:a9:2d:42:21:1d:40: f5:63:72:0e:b0:3a:b5:41:86:16:0b:ac:46:b2:e5: 09:7f:75:dc:60:e5:91:04:89:4c:75:0a:78:2e:d5: e2:53:60:32:8f:72:8f:82:c3:67:e0:c4:b8:2a:b0: 7e:07:43:ee:23:46:73:84:8a:ca:df:42:a6:9a:46: a6:53:c4:cb:04:64:1b:49:6f:06:49:08:f7:29:62: f7:81:d8:45:cb:50:26:3f:6b:7a:9c:83:05:9f:f1: 6f:9c:37:8c:93:13:05:e2:20:80:da:57:9e:4e:3a: 30:73:6f:c0:a4:94:bc:a5:8b:25:75:ab:14:fa:22: cd:4c:91:db:27:5e:cc:d6:94:d1:b0:79:78:08:a3: 70:c8:86:6b:e5:41:27:76:dc:47:71:03:59:fe:0c: 9a:ea:5b:85:7d:44:38:ee:e6:99:6a:0d:65:44:5b: 75:28:5f:fa:2a:3b:dd:a3:12:ac:e6:11:81:89:ac: 56:a1:85:4f:0d:ab:47:e2:29:90:f0:4a:b3:6b:d2: 73:dd:4d:eb:94:a3:73:6b:e8:a2:5d:b3:e2:0f:a1: 8f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:36:7E:90:A8:A4:3A:0A:6D:F8:94:E3:69:06:91:94:C6:DF:05:C9 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:28:4f:aa:de:a4:65:c0:04:4a:3f:fd:e5:b4:b2:04:dd:dc: 7a:53:bc:45:30:c7:1b:b9:3f:b2:d9:a5:99:fd:a6:6e:40:9f: e9:d2:d6:8d:a5:fd:28:b6:e7:8a:8d:29:7e:ad:26:c4:e9:ea: cf:ec:f1:16:24:3b:b3:e6:fe:c2:5d:87:5b:43:d8:5f:df:26: 52:63:c4:e0:3f:9e:3e:1d:81:13:61:d9:bb:bb:d0:1f:4a:ec: 89:6c:1b:07:ae:af:70:05:eb:c3:71:53:d0:9a:c8:c3:ed:42: 2e:6b:83:e2:37:63:f3:71:a6:09:d4:bb:02:e4:d6:b6:8e:ea: b3:cc:99:e7:43:29:c4:21:57:aa:80:1d:0c:9d:65:2d:6d:85: 70:19:03:6f:60:de:04:60:88:8a:a9:6f:9d:9d:c1:93:82:c2: 5b:41:47:26:56:ad:60:36:31:c8:c9:c4:e0:fd:c3:83:ee:14: 53:f5:9c:a2:74:6f:be:6d:ed:5c:b7:ae:d1:15:6c:cf:cf:a0: bf:a7:69:2a:9d:46:66:da:3d:18:d6:3a:b8:9c:7f:7d:66:44: f2:97:a7:99:a0:02:9b:94:6b:8b:7c:dc:41:6d:b7:0b:a6:98: 9d:06:a8:a1:16:e5:d1:ef:e8:23:1a:95:b1:35:68:c8:40:ee: d2:bf:b9:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNTEwMTkyMzQ2WhcNMjUwNTE3MTkyMzQ2WjAYMRYwFAYD VQQDEw02ODFmYTdjMi1hYmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT9VdgDgpIQaBzltJhJAQAifS4AuRfIN1PFVENepIc10H1+Zy36pLUIhHUD1 Y3IOsDq1QYYWC6xGsuUJf3XcYOWRBIlMdQp4LtXiU2Ayj3KPgsNn4MS4KrB+B0Pu I0ZzhIrK30KmmkamU8TLBGQbSW8GSQj3KWL3gdhFy1AmP2t6nIMFn/FvnDeMkxMF 4iCA2leeTjowc2/ApJS8pYsldasU+iLNTJHbJ17M1pTRsHl4CKNwyIZr5UEndtxH cQNZ/gya6luFfUQ47uaZag1lRFt1KF/6KjvdoxKs5hGBiaxWoYVPDatH4imQ8Eqz a9Jz3U3rlKNza+iiXbPiD6GPXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI2fpCo pDoKbfiU42kGkZTG3wXJMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNKE+q3qRlwARKP/3ltLIE3dx6U7xFMMcbuT+y2aWZ/aZuQJ/p0taN pf0otueKjSl+rSbE6erP7PEWJDuz5v7CXYdbQ9hf3yZSY8TgP54+HYETYdm7u9Af SuyJbBsHrq9wBevDcVPQmsjD7UIua4PiN2PzcaYJ1LsC5Na2juqzzJnnQynEIVeq gB0MnWUtbYVwGQNvYN4EYIiKqW+dncGTgsJbQUcmVq1gNjHIycTg/cOD7hRT9Zyi dG++be1ct67RFWzPz6C/p2kqnUZm2j0Y1jq4nH99ZkTyl6eZoAKblGuLfNxBbbcL ppidBqihFuXR7+gjGpWxNWjIQO7Sv7m/ -----END CERTIFICATE-----Generated at Mon May 12 16:21:51 2025 by rpki-client