$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: nCURGgK7Llca6xsyLVRIVuqFltplNWlkU02ySnFXSRM= Subject key identifier: 9D:AB:D6:1D:41:22:5D:1C:3F:F8:48:FB:15:06:3A:34:16:3D:D7:1D Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0C94 Signing time: Mon 12 May 2025 18:03:42 +0000 Manifest this update: Mon 12 May 2025 18:03:41 +0000 Manifest next update: Mon 19 May 2025 18:03:41 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: FqCrlBi9NfBV+aAyIwY82ToYmgIaziAbQmOF5Zh8UxU=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: May 12 18:03:41 2025 GMT Not After : May 19 18:03:41 2025 GMT Subject: CN=682237fe-0a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:01:b9:bc:3d:49:92:29:20:c9:cd:ac:93:42: 8f:75:22:09:e4:c7:5e:2b:36:eb:5e:6b:e1:58:17: a4:2f:1f:58:3c:e9:b6:cb:3e:43:4c:11:7f:ea:f2: 98:27:f7:cd:6c:3a:46:a5:8b:77:f4:00:6c:92:16: 64:52:78:2d:4f:fb:c9:88:b2:c1:73:66:59:a9:b4: 05:14:9f:fe:f8:a6:ef:88:65:33:a6:f1:1d:e8:74: 4d:3f:32:6f:94:39:35:81:ce:c0:27:e1:97:15:f8: 58:74:16:9f:7c:e5:ae:6d:19:d7:1c:7e:b8:73:98: c7:2c:7a:5b:73:da:82:a5:04:de:29:64:5d:be:8f: 48:b4:db:64:34:97:74:93:1a:f1:84:48:6b:ca:c8: ba:7d:bd:87:50:a8:f2:2f:1a:a4:b8:e9:ed:11:eb: ba:1c:dd:65:20:9e:de:7a:f3:96:58:95:e9:0d:41: e9:b1:63:03:b8:dd:4c:c9:91:ca:cd:ca:58:eb:21: 19:90:0c:97:a5:66:75:43:b5:46:15:ec:8f:be:e3: e4:6c:97:8d:a0:28:db:30:32:22:a6:a9:eb:e0:03: 7c:06:68:ff:01:df:5a:29:7d:fd:e7:6b:66:b1:4b: b3:19:35:ac:55:5e:b8:99:1b:52:e3:4b:6a:29:d6: 0d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AB:D6:1D:41:22:5D:1C:3F:F8:48:FB:15:06:3A:34:16:3D:D7:1D X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:08:ff:9d:e1:b7:75:3d:01:93:2e:8e:3b:97:37:b0:d9:4d: 22:73:3f:64:85:e7:d1:38:f9:6b:bb:0f:80:ba:b5:4a:b1:79: 8d:3a:46:fb:4e:b5:34:b5:b5:bc:4d:d7:7a:13:bf:50:3e:93: 1f:d8:5a:b1:19:45:83:4d:78:6f:a3:b7:58:97:2d:7d:4d:27: 2d:39:f0:50:58:15:40:c7:0b:1a:ab:15:4a:25:07:fb:93:e9: df:a6:ad:7b:ea:dc:26:57:4e:91:ba:2a:83:a4:f8:c8:4e:f6: 44:05:e0:37:d1:86:c0:7e:64:ed:26:a2:af:d8:f4:d9:2b:dd: 4b:41:23:c7:90:e7:c7:29:f6:2f:24:35:41:61:78:38:07:89: fe:a8:16:fe:29:ed:8c:65:7c:81:7e:88:1b:5e:d4:8e:5d:ae: 4b:eb:90:b0:66:6a:1d:f3:89:14:af:09:46:00:a7:33:06:78: 3d:75:59:c2:2d:20:a8:1a:ad:56:64:3b:15:f6:14:bb:ea:7d: 59:96:93:1c:4d:3b:cc:60:f1:d5:f0:45:a7:8e:5a:37:56:65: 66:81:13:13:25:8d:99:bf:a8:6d:c9:1a:54:de:a0:a4:3e:af: ba:78:9b:de:93:6b:4d:52:61:99:af:bf:9c:56:11:79:7e:4a: a8:8d:e5:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNTEyMTgwMzQxWhcNMjUwNTE5MTgwMzQxWjAYMRYwFAYD VQQDEw02ODIyMzdmZS0wYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgG5vD1Jkikgyc2sk0KPdSIJ5MdeKzbrXmvhWBekLx9YPOm2yz5DTBF/6vKY J/fNbDpGpYt39ABskhZkUngtT/vJiLLBc2ZZqbQFFJ/++KbviGUzpvEd6HRNPzJv lDk1gc7AJ+GXFfhYdBaffOWubRnXHH64c5jHLHpbc9qCpQTeKWRdvo9ItNtkNJd0 kxrxhEhrysi6fb2HUKjyLxqkuOntEeu6HN1lIJ7eevOWWJXpDUHpsWMDuN1MyZHK zcpY6yEZkAyXpWZ1Q7VGFeyPvuPkbJeNoCjbMDIipqnr4AN8Bmj/Ad9aKX3952tm sUuzGTWsVV64mRtS40tqKdYN2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2r1h1B Il0cP/hI+xUGOjQWPdcdMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYCP+d4bd1PQGTLo47lzew2U0icz9khefROPlruw+AurVKsXmNOkb7 TrU0tbW8Tdd6E79QPpMf2FqxGUWDTXhvo7dYly19TSctOfBQWBVAxwsaqxVKJQf7 k+nfpq176twmV06RuiqDpPjITvZEBeA30YbAfmTtJqKv2PTZK91LQSPHkOfHKfYv JDVBYXg4B4n+qBb+Ke2MZXyBfogbXtSOXa5L65CwZmod84kUrwlGAKczBng9dVnC LSCoGq1WZDsV9hS76n1ZlpMcTTvMYPHV8EWnjlo3VmVmgRMTJY2Zv6htyRpU3qCk Pq+6eJvek2tNUmGZr7+cVhF5fkqojeU6 -----END CERTIFICATE-----Generated at Tue May 13 19:04:35 2025 by rpki-client