$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft File: o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft (raw, json) Hash identifier: gJFFN7QLifnB8HqU2khMoTCCMhhzBLX4mlLp7UPNZW0= Subject key identifier: 2A:45:D5:F8:A9:BA:06:C8:58:14:27:BC:85:D6:03:53:3C:02:55:DB Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft Manifest number: CC Signing time: Thu 15 May 2025 05:04:18 +0000 Manifest this update: Thu 15 May 2025 05:04:17 +0000 Manifest next update: Thu 22 May 2025 05:04:17 +0000 Files and hashes: 1: o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl (hash: srfmCtMpl+HW/DBRgLY577n4NpqwzaBOp3QrAvT0YgY=) 2: 8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa (hash: LEMiACV3Ie+SK4LkuQJBWGvSnOFQ7e/xDgjdO66Ipp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F, serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: May 15 05:04:17 2025 GMT Not After : May 22 05:04:17 2025 GMT Subject: CN=682575d2-0558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:9d:fd:43:51:25:00:3b:e9:d6:53:b1:c9: 6b:f3:52:c8:db:a2:da:7c:19:7d:41:34:05:39:50: 72:58:80:bd:cf:d5:d0:95:59:8d:c3:a1:3b:d6:55: 57:56:02:0f:05:8c:f2:10:ca:c1:8a:73:e4:e5:da: fb:92:88:bf:1a:b4:1c:54:af:18:94:e5:33:93:f7: b9:35:c1:c4:ac:5c:3c:93:33:66:3c:1f:70:9f:ae: 8b:1a:49:6d:12:4e:46:7b:c5:09:43:c8:52:3d:75: c0:71:09:49:a5:18:4e:0e:87:fe:85:0d:98:91:81: 82:73:6f:10:0a:45:83:b8:3f:c9:5b:38:4b:21:4b: 87:47:26:e7:eb:b7:ba:e8:79:10:2c:12:b6:9c:8b: 87:01:c4:de:c0:25:38:9e:23:08:94:fe:0b:f7:67: 7a:7c:24:c6:c6:96:f3:3e:77:b7:7e:e2:3f:63:5a: c0:39:6a:14:c7:d9:4c:b6:5e:d5:e4:d3:48:d4:ec: d9:53:61:d9:9c:8c:26:e8:40:16:0b:b6:b5:54:a8: 57:58:fd:87:4d:ef:cb:b0:c9:16:01:19:a0:d1:61: 14:a7:e8:de:d8:4a:0c:03:f4:07:29:1b:46:35:98: 24:fb:9a:39:e3:ee:c0:58:e8:ff:05:08:33:7a:3a: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:45:D5:F8:A9:BA:06:C8:58:14:27:BC:85:D6:03:53:3C:02:55:DB X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:3e:ad:c5:ad:95:89:f4:a1:d7:b5:46:8a:b4:0d:3c:10:86: f8:17:65:cf:46:a6:ce:a3:22:da:33:13:96:97:c4:88:e6:5c: d6:c1:16:ec:d9:62:67:c1:7f:d1:32:05:82:2b:bf:c7:ab:68: 0e:2d:91:e2:6d:16:14:5e:13:1b:b0:26:89:c1:c5:b9:ee:83: ff:4a:b2:e7:0c:59:2b:2b:b3:b0:6c:db:d7:ef:e3:ca:f9:62: 8e:e4:46:af:ff:ee:6e:6d:fc:fd:64:9a:99:7f:67:1a:2a:ed: 24:82:f5:2b:71:4b:34:b5:68:ae:80:b5:38:6f:e9:2c:1e:1d: fe:d5:17:50:d0:6e:68:fb:d1:d7:da:fd:7d:57:0b:1b:7e:61: 53:03:72:c1:d3:5b:69:da:bd:50:cf:64:8f:31:d8:0d:cb:f9: e8:1c:69:9f:54:65:50:9f:04:80:39:e9:d9:6a:88:96:47:a4: 4f:24:0d:37:48:18:84:c3:7c:08:3f:dc:05:e5:2f:4d:ab:7e: c8:b2:05:5a:74:5c:13:73:02:31:1a:45:d5:74:32:45:08:30: ad:1e:fb:32:94:b2:ca:04:c5:fc:0d:1f:d1:0c:40:3d:bd:4d: fc:69:98:d6:5a:1d:19:46:04:8b:82:04:e1:cb:de:6e:05:62: c7:42:a2:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMEYxMTAvBgNVBAUTKEEzRUI1MUQyOTk5QkJCNDQ2NTlCRERBNkJFMUUxMEZB NTUxRTIyNjUwHhcNMjUwNTE1MDUwNDE3WhcNMjUwNTIyMDUwNDE3WjAYMRYwFAYD VQQDEw02ODI1NzVkMi0wNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/+d/UNRJQA76dZTsclr81LI26LafBl9QTQFOVByWIC9z9XQlVmNw6E71lVX VgIPBYzyEMrBinPk5dr7koi/GrQcVK8YlOUzk/e5NcHErFw8kzNmPB9wn66LGklt Ek5Ge8UJQ8hSPXXAcQlJpRhODof+hQ2YkYGCc28QCkWDuD/JWzhLIUuHRybn67e6 6HkQLBK2nIuHAcTewCU4niMIlP4L92d6fCTGxpbzPne3fuI/Y1rAOWoUx9lMtl7V 5NNI1OzZU2HZnIwm6EAWC7a1VKhXWP2HTe/LsMkWARmg0WEUp+je2EoMA/QHKRtG NZgk+5o54+7AWOj/BQgzejruuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpF1fip ugbIWBQnvIXWA1M8AlXbMB8GA1UdIwQYMBaAFKPrUdKZm7tEZZvdpr4eEPpVHiJl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEwRi85QTc1ODBDOEZE NEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUwUmxtOTJtdmg0US1sVWVJ bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUltVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUw UmxtOTJtdmg0US1sVWVJbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Pq3FrZWJ9KHXtUaKtA08EIb4F2XPRqbOoyLaMxOWl8SI5lzWwRbs 2WJnwX/RMgWCK7/Hq2gOLZHibRYUXhMbsCaJwcW57oP/SrLnDFkrK7OwbNvX7+PK +WKO5Eav/+5ubfz9ZJqZf2caKu0kgvUrcUs0tWiugLU4b+ksHh3+1RdQ0G5o+9HX 2v19VwsbfmFTA3LB01tp2r1Qz2SPMdgNy/noHGmfVGVQnwSAOenZaoiWR6RPJA03 SBiEw3wIP9wF5S9Nq37IsgVadFwTcwIxGkXVdDJFCDCtHvsylLLKBMX8DR/RDEA9 vU38aZjWWh0ZRgSLggThy95uBWLHQqJW -----END CERTIFICATE-----Generated at Thu May 15 12:36:10 2025 by rpki-client