$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: CcZ+iIbN6IRMFeLPEC+BKP1ffHKcBMcwsNY8z5/tRXw= Subject key identifier: 99:12:09:AF:21:CC:7F:69:4F:DB:B5:01:93:7F:DB:8D:B6:F4:EE:5F Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 1316 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 23C3 Signing time: Mon 12 May 2025 16:57:09 +0000 Manifest this update: Mon 12 May 2025 16:57:09 +0000 Manifest next update: Mon 19 May 2025 16:57:09 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: niVlC55CEhHaTZjHfYtKadZpHOGG6qWOAL5Yj2Kx2Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4886 (0x1316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: May 12 16:57:09 2025 GMT Not After : May 19 16:57:09 2025 GMT Subject: CN=68222865-90d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:ff:09:45:f8:2f:4e:78:2c:c5:ab:43:71: ef:3e:04:3e:e1:0b:6a:68:16:7d:40:db:bc:51:48: b5:2a:88:ce:8c:45:1a:8b:00:1e:d4:2f:e4:65:cc: 88:1f:05:74:66:d9:9d:36:a2:de:59:b0:a1:af:6b: 2a:2c:0e:7a:56:55:9e:1c:f7:30:fe:31:c5:ac:75: 80:5f:be:f2:c6:90:ac:68:ca:25:c9:f7:e2:04:6f: 08:46:a5:d6:cf:09:cf:fd:fa:97:f1:c0:2c:05:a7: b6:1f:75:c9:c8:4b:b3:1e:f0:92:b5:b3:6c:10:20: e8:66:03:05:40:51:99:13:d3:f9:89:aa:61:68:1d: 1a:2c:43:68:3d:2c:8f:67:54:e2:8c:55:b4:d0:c8: da:b6:be:3d:c0:7b:70:e8:17:59:b7:b9:bc:96:32: ac:09:f8:aa:ec:d8:fd:c4:aa:11:e8:05:ca:88:aa: 07:6f:c1:18:6a:a6:2e:34:09:73:fd:fe:29:d8:d2: de:79:b3:d7:a7:9b:3b:16:52:90:a7:53:f0:30:c8: c6:87:d8:5d:ab:0b:ff:67:2f:cf:bb:3b:16:89:33: 80:91:51:6a:f6:19:42:b6:5f:63:22:2d:31:59:d2: b6:df:92:1b:e4:fa:d3:2d:8c:90:6b:3a:a8:6f:79: 27:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:12:09:AF:21:CC:7F:69:4F:DB:B5:01:93:7F:DB:8D:B6:F4:EE:5F X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1b:e1:95:f4:5d:1c:31:34:b4:e0:be:aa:50:20:ca:7d:29: 1e:50:28:49:1a:31:79:e3:52:45:89:f9:37:20:e4:f2:18:4a: c2:9d:fe:bb:7c:9a:74:bc:4e:4b:14:0a:73:f3:df:1f:fe:ed: da:88:1a:bc:43:db:56:70:f7:8e:36:7b:71:bb:e6:84:d5:83: f7:39:f5:aa:c3:3e:98:21:c7:b6:5d:ec:f1:30:24:5b:00:f8: c5:5a:d6:25:fd:fc:f0:d1:e8:26:ee:0b:72:4f:82:fa:fd:44: 68:aa:b6:8f:35:00:7f:81:63:7b:c6:eb:6e:21:62:da:2a:9e: ba:cf:0b:b6:3b:5c:3e:1a:73:fa:f5:27:53:95:d6:3d:b4:8b: ed:a3:fd:9c:a3:48:92:ae:32:c0:a4:cf:8c:0c:bc:e8:1f:99: 20:0c:23:ec:23:62:89:c2:ae:82:cc:b3:a8:83:11:83:f4:b0: 01:0a:9f:23:94:aa:0f:5c:3d:2a:98:45:22:5a:83:1a:41:5d: 5a:28:d7:9f:93:60:83:65:d4:51:8d:9b:00:b7:d0:6f:88:a7: b6:25:63:e3:98:9e:de:1b:fb:54:ab:ff:46:b3:19:2e:d0:cb: 2d:f7:60:b5:63:86:c5:f7:ea:da:ca:b7:0e:8c:d7:ac:6a:3b: d3:0c:a3:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUwNTEyMTY1NzA5WhcNMjUwNTE5MTY1NzA5WjAYMRYwFAYD VQQDEw02ODIyMjg2NS05MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOb/CUX4L054LMWrQ3HvPgQ+4QtqaBZ9QNu8UUi1KojOjEUaiwAe1C/kZcyI HwV0ZtmdNqLeWbChr2sqLA56VlWeHPcw/jHFrHWAX77yxpCsaMolyffiBG8IRqXW zwnP/fqX8cAsBae2H3XJyEuzHvCStbNsECDoZgMFQFGZE9P5iaphaB0aLENoPSyP Z1TijFW00Mjatr49wHtw6BdZt7m8ljKsCfiq7Nj9xKoR6AXKiKoHb8EYaqYuNAlz /f4p2NLeebPXp5s7FlKQp1PwMMjGh9hdqwv/Zy/PuzsWiTOAkVFq9hlCtl9jIi0x WdK235Ib5PrTLYyQazqob3knuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkSCa8h zH9pT9u1AZN/24229O5fMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhG+GV9F0cMTS04L6qUCDKfSkeUChJGjF541JFifk3IOTyGErCnf67 fJp0vE5LFApz898f/u3aiBq8Q9tWcPeONntxu+aE1YP3OfWqwz6YIce2XezxMCRb APjFWtYl/fzw0egm7gtyT4L6/URoqraPNQB/gWN7xutuIWLaKp66zwu2O1w+GnP6 9SdTldY9tIvto/2co0iSrjLApM+MDLzoH5kgDCPsI2KJwq6CzLOogxGD9LABCp8j lKoPXD0qmEUiWoMaQV1aKNefk2CDZdRRjZsAt9BviKe2JWPjmJ7eG/tUq/9Gsxku 0Mst92C1Y4bF9+rayrcOjNesajvTDKMR -----END CERTIFICATE-----Generated at Tue May 13 01:55:31 2025 by rpki-client