$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: g6XWu17ZFI8REcC8DR4jEwqYlRKd8Z/lhYow0Y26ZQU= Subject key identifier: 4C:61:F6:1F:5E:65:F2:09:7B:BA:D3:41:E2:5A:BA:04:17:43:E2:F1 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05A4 Signing time: Wed 14 May 2025 23:14:08 +0000 Manifest this update: Wed 14 May 2025 23:14:07 +0000 Manifest next update: Wed 21 May 2025 23:14:07 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: l4G2h/Ixp4nDTFXFRlJARO0cizQD7YKZgA2SlddkzMQ=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: lCYYN1i9IbJqwRctgnEOzzG7AOe1LHSeBCWruRPnC40=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: 8IJ4hd5hgtTMjRCQeFaMZGfRaNHjTczEG5GeSYDk6qI=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: ZotghGiuMfOw+s3uuTOdkshmDTpBWNWmcIBqIc4IVro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1452 (0x5ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: May 14 23:14:07 2025 GMT Not After : May 21 23:14:07 2025 GMT Subject: CN=682523c0-c74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:38:6a:99:69:8a:6d:ff:1e:14:99:4b:f3:cb: 91:d2:55:1b:01:22:06:6b:54:f8:b6:05:f2:f0:b0: e7:11:d8:c9:8a:ee:86:aa:17:82:d3:00:1e:99:5c: 1e:29:8e:d3:9f:53:02:89:ba:b3:e7:5a:75:72:7e: 21:20:6f:cd:ab:67:7e:fc:9c:ee:9f:20:3a:09:01: 17:20:d4:17:65:63:b0:7a:ec:8c:f4:e0:44:5c:65: 36:87:c7:62:94:47:bb:24:c2:2d:e3:7e:43:c0:7d: 7b:8e:bc:80:b7:e4:55:e5:a7:42:88:83:f2:78:43: fb:64:cb:2b:97:e0:8e:5e:f6:75:e4:33:45:3e:b0: 44:58:0c:0f:3a:4a:b1:82:ed:0b:d4:94:12:50:d2: c6:0c:f6:d8:7f:67:ee:8f:b4:d8:90:e4:5b:4b:c8: 46:c9:a2:4d:7c:e9:a0:f4:a6:22:66:f6:b2:c9:10: a7:67:47:52:ef:a3:d4:71:3a:e5:75:35:a3:a4:23: ae:c9:d3:44:9a:c4:2e:48:15:e0:ab:bd:c2:9f:f7: 2d:46:86:08:de:f4:a3:c5:bb:15:63:09:fb:1e:50: 79:b1:60:98:b7:24:3e:79:9f:50:ab:4e:a5:7f:db: 87:c0:09:78:10:33:00:90:b9:62:97:e2:ff:92:66: 05:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:61:F6:1F:5E:65:F2:09:7B:BA:D3:41:E2:5A:BA:04:17:43:E2:F1 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:e0:12:5b:1a:e0:7e:3d:41:4d:92:c1:05:a5:a7:ff:32:20: 6f:b1:74:c8:6a:4d:0b:ff:2a:af:82:7c:49:c7:1d:09:fc:a0: 92:32:b1:5b:b1:70:9d:62:a6:6d:08:51:3e:b0:04:d5:5e:2e: 3c:5d:0a:8d:f5:11:09:95:4f:70:af:45:15:d8:23:f2:59:f0: 00:11:87:d9:b4:c8:59:17:c9:82:b2:17:67:eb:45:32:4d:5f: 31:c6:32:8a:29:a4:3c:d7:a7:fe:fd:f8:73:9c:9c:c4:a0:88: d3:56:d6:fe:be:cb:ed:8f:6c:19:e1:c8:12:ef:ca:f2:54:82: 57:34:87:c3:0e:2d:d2:31:13:6f:5a:65:98:17:b2:aa:be:0a: 09:61:92:fc:61:2a:00:b0:44:a6:09:25:8d:fd:a9:24:79:d2: a3:b0:fc:b8:02:6f:79:64:69:b6:45:6d:b1:b3:69:61:ff:63: 8b:a9:4d:1c:5f:51:02:a5:f7:d4:7c:93:df:0a:e3:f7:04:6e: 92:26:17:59:9f:f3:7c:34:fb:38:13:72:18:10:0f:f7:81:05: 33:8a:a5:a7:30:eb:55:3b:73:2f:fb:04:81:ac:00:4a:4c:44: 7c:45:82:ea:ab:b3:23:5d:87:67:20:72:7c:b3:ac:c4:24:81: 3e:2a:b7:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwNTE0MjMxNDA3WhcNMjUwNTIxMjMxNDA3WjAYMRYwFAYD VQQDEw02ODI1MjNjMC1jNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzhqmWmKbf8eFJlL88uR0lUbASIGa1T4tgXy8LDnEdjJiu6GqheC0wAemVwe KY7Tn1MCibqz51p1cn4hIG/Nq2d+/JzunyA6CQEXINQXZWOweuyM9OBEXGU2h8di lEe7JMIt435DwH17jryAt+RV5adCiIPyeEP7ZMsrl+COXvZ15DNFPrBEWAwPOkqx gu0L1JQSUNLGDPbYf2fuj7TYkORbS8hGyaJNfOmg9KYiZvayyRCnZ0dS76PUcTrl dTWjpCOuydNEmsQuSBXgq73Cn/ctRoYI3vSjxbsVYwn7HlB5sWCYtyQ+eZ9Qq06l f9uHwAl4EDMAkLlil+L/kmYFJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExh9h9e ZfIJe7rTQeJaugQXQ+LxMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA4BJbGuB+PUFNksEFpaf/MiBvsXTIak0L/yqvgnxJxx0J/KCSMrFb sXCdYqZtCFE+sATVXi48XQqN9REJlU9wr0UV2CPyWfAAEYfZtMhZF8mCshdn60Uy TV8xxjKKKaQ816f+/fhznJzEoIjTVtb+vsvtj2wZ4cgS78ryVIJXNIfDDi3SMRNv WmWYF7KqvgoJYZL8YSoAsESmCSWN/akkedKjsPy4Am95ZGm2RW2xs2lh/2OLqU0c X1ECpffUfJPfCuP3BG6SJhdZn/N8NPs4E3IYEA/3gQUziqWnMOtVO3Mv+wSBrABK TER8RYLqq7MjXYdnIHJ8s6zEJIE+KrdB -----END CERTIFICATE-----Generated at Fri May 16 14:33:49 2025 by rpki-client