$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: asfOm9TUXshhiBtcAHmHmPeABy5yxbJE6gdGlxyodkk= Subject key identifier: 57:D8:33:F7:ED:FF:62:53:C7:DF:77:25:75:44:F9:93:08:DE:D4:92 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 0177 Signing time: Tue 13 May 2025 03:01:11 +0000 Manifest this update: Tue 13 May 2025 03:01:10 +0000 Manifest next update: Tue 20 May 2025 03:01:10 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: 917uCsJzA02lJrebf/woT0c8GV8mUIjA8p6Ov9zl0fU=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: May 13 03:01:10 2025 GMT Not After : May 20 03:01:10 2025 GMT Subject: CN=6822b5f6-c682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:38:ee:51:ae:e0:96:45:a8:2b:70:a6:59:76: 67:91:09:6a:7d:91:fd:ae:bc:8d:a5:21:2d:da:84: 40:a0:6e:ae:aa:3e:74:ca:32:f4:43:77:ce:7a:8f: ed:0e:e2:73:98:13:cb:5b:e0:1f:10:73:fd:20:25: 96:9d:27:98:aa:be:49:66:a7:c8:19:70:af:99:b9: 8b:50:fb:86:dd:47:fc:cd:58:a4:3c:9c:02:dc:fb: 05:2d:68:b0:ae:1a:ee:2b:67:fa:37:8c:54:e0:b1: 1a:36:0e:61:fe:58:d3:9f:92:c4:f0:38:ce:0e:05: e5:5a:8b:ec:56:9f:4d:52:71:95:48:c2:c9:f0:68: 74:b5:15:ab:5f:81:80:32:99:92:73:a1:45:95:88: 9e:3d:4e:1e:bc:2e:d7:cc:63:f9:3b:85:14:14:dc: d0:a6:13:46:56:cb:7f:6d:27:80:f4:25:0a:02:64: 74:bf:e4:46:b9:fd:b7:bd:af:5a:82:01:8e:cd:35: e6:8e:73:3b:09:00:1e:78:41:9c:ac:b8:a9:07:72: 17:40:90:33:b6:4a:4f:99:59:e8:50:6b:11:7d:d6: 69:cc:0d:d3:85:45:5c:af:c3:10:05:da:54:64:d0: 7a:a0:91:f7:c2:e1:85:c5:1a:a9:a3:15:04:ac:09: 7a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D8:33:F7:ED:FF:62:53:C7:DF:77:25:75:44:F9:93:08:DE:D4:92 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:fa:b4:d7:56:4e:23:73:9d:16:70:22:57:d8:24:e3:8e:1c: c1:4b:2d:70:d4:c6:74:9b:69:61:9b:d0:f9:f1:9b:b0:4d:09: 0a:9a:cc:1d:5e:da:12:b1:8c:ac:8e:28:b4:6c:5e:3f:f6:64: 7d:a1:4a:3b:d2:63:99:a8:8f:82:0a:df:f6:49:28:98:dd:af: 22:3c:34:38:f4:3c:0d:42:6e:81:53:78:ee:e1:6d:57:9b:9d: 3c:fa:76:0a:61:56:87:8e:3d:39:9e:4d:1e:1d:14:a1:05:9a: 55:eb:c9:e2:e0:42:82:8f:d6:bf:6a:61:37:7a:ad:29:6b:61: 34:61:5e:50:a6:83:da:b3:f4:5e:2c:af:58:1b:01:65:c7:a0: 71:86:c7:72:8b:78:93:55:05:33:15:e9:46:e4:47:f9:de:0d: bd:c5:97:fb:2e:9d:a4:05:61:a4:47:eb:fe:fa:9b:8a:b3:e8: 26:9b:1a:91:d8:ae:3f:c5:ae:3b:18:17:76:d6:80:40:73:8a: 24:fa:55:80:36:b7:e3:33:22:7e:c9:37:88:39:c0:53:d5:5c: f2:57:d6:51:fa:18:19:4d:12:48:bf:40:2d:cc:c1:b2:c3:4f: 9a:de:08:a6:e4:7d:7e:23:7d:06:f1:b6:eb:c9:72:b4:94:fd: f5:1b:c1:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwNTEzMDMwMTEwWhcNMjUwNTIwMDMwMTEwWjAYMRYwFAYD VQQDEw02ODIyYjVmNi1jNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzjuUa7glkWoK3CmWXZnkQlqfZH9rryNpSEt2oRAoG6uqj50yjL0Q3fOeo/t DuJzmBPLW+AfEHP9ICWWnSeYqr5JZqfIGXCvmbmLUPuG3Uf8zVikPJwC3PsFLWiw rhruK2f6N4xU4LEaNg5h/ljTn5LE8DjODgXlWovsVp9NUnGVSMLJ8Gh0tRWrX4GA MpmSc6FFlYiePU4evC7XzGP5O4UUFNzQphNGVst/bSeA9CUKAmR0v+RGuf23va9a ggGOzTXmjnM7CQAeeEGcrLipB3IXQJAztkpPmVnoUGsRfdZpzA3ThUVcr8MQBdpU ZNB6oJH3wuGFxRqpoxUErAl6fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfYM/ft /2JTx993JXVE+ZMI3tSSMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk+rTXVk4jc50WcCJX2CTjjhzBSy1w1MZ0m2lhm9D58ZuwTQkKmswd XtoSsYysjii0bF4/9mR9oUo70mOZqI+CCt/2SSiY3a8iPDQ49DwNQm6BU3ju4W1X m508+nYKYVaHjj05nk0eHRShBZpV68ni4EKCj9a/amE3eq0pa2E0YV5QpoPas/Re LK9YGwFlx6Bxhsdyi3iTVQUzFelG5Ef53g29xZf7Lp2kBWGkR+v++puKs+gmmxqR 2K4/xa47GBd21oBAc4ok+lWANrfjMyJ+yTeIOcBT1VzyV9ZR+hgZTRJIv0AtzMGy w0+a3gim5H1+I30G8bbryXK0lP31G8GU -----END CERTIFICATE-----Generated at Wed May 14 01:40:53 2025 by rpki-client