$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: S+DMO7mUhd5SorPXJamkB8IaXCjLE2jSr9K8OWoDFGg= Subject key identifier: 6B:E3:3F:F4:AD:FB:B7:23:9C:EC:00:19:23:4D:E2:E4:AD:EA:F2:82 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: 3A Signing time: Tue 13 May 2025 06:46:13 +0000 Manifest this update: Tue 13 May 2025 06:46:12 +0000 Manifest next update: Tue 20 May 2025 06:46:12 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: 14PzDKvD4QySsFzvlvVw437XczOByz0Novd2jBU939Q=) 2: E8112D9AD95A11EF815C7470C4F9AE02.roa (hash: mG5mPJ9TzgmR6vCAw7pVeBBypwUd04LX9QtyyGLebqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: May 13 06:46:12 2025 GMT Not After : May 20 06:46:12 2025 GMT Subject: CN=6822eab4-e8fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:36:8f:2c:02:d7:23:ed:fa:41:2e:59:68:99: 90:a7:e7:a7:b6:4c:c2:fa:d8:79:d9:60:a4:72:54: cf:e0:83:3b:24:79:a0:3a:4b:4b:a9:05:85:7d:88: cd:60:72:4f:b0:6b:b7:74:dd:5c:5b:47:d6:fb:e0: e3:77:84:f9:46:0e:d6:50:ca:94:04:30:75:34:ed: df:2d:27:36:43:a5:23:f5:4f:c1:d1:de:7e:f1:a2: f2:fe:e7:92:45:84:b4:e9:a1:eb:b7:2b:de:c3:db: 47:e2:01:d8:ef:41:9c:97:57:72:28:78:07:c8:39: f9:42:ae:b0:c4:8b:63:c4:f9:9b:b2:85:61:21:aa: c0:98:72:b6:89:66:ca:50:74:8a:e9:28:90:8c:6a: 05:a9:b3:e8:b1:6a:20:41:14:34:3d:2e:d5:04:4d: 0a:a4:7e:70:9c:1b:84:c6:19:8b:e4:bc:60:5c:5e: 45:71:31:af:ab:87:98:6c:c0:5b:86:b4:dd:44:88: ec:d1:d3:1e:19:da:c0:56:7f:18:cf:f2:19:e4:32: c5:49:c9:50:c9:7b:87:f0:c0:b4:63:d3:4f:89:c3: 1a:25:5c:84:22:64:1f:94:a4:2b:ca:5e:6b:ce:46: ce:b3:9c:65:08:86:a5:21:19:43:9a:dd:04:75:6b: ac:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E3:3F:F4:AD:FB:B7:23:9C:EC:00:19:23:4D:E2:E4:AD:EA:F2:82 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:77:af:39:a4:55:c9:da:11:fb:1d:cc:f8:46:ed:e7:84:ac: 07:79:57:a9:7c:7e:b0:70:43:a5:5c:51:f0:d2:79:47:48:88: a4:a6:20:fa:06:c0:eb:35:38:d4:3d:24:80:1c:5e:b6:09:c5: 4f:df:ee:2e:8b:4e:7f:06:f4:f2:f5:32:4c:3c:88:fd:ce:7c: 5a:6b:b0:93:ce:25:92:3b:af:90:0e:ad:34:38:2a:e5:e5:ed: 91:88:05:87:f4:f5:9a:ba:45:8c:41:5d:07:53:31:2c:c2:95: da:8b:5a:2e:2b:84:44:97:4c:4c:17:27:25:4c:a6:2e:6e:bb: 5c:0a:a2:c1:fb:16:8b:d1:ee:88:26:8d:83:66:57:fe:43:60: 0d:0f:70:97:fa:0c:b5:ed:26:32:1e:a3:b5:73:2a:05:ae:b6: d3:28:b6:d6:d3:a3:d1:79:00:be:5e:42:1b:c4:f0:c1:73:24: c0:a6:a4:7d:b8:e3:c3:a1:f3:99:4f:75:5c:e0:f0:6c:96:b2: 11:e0:d9:32:47:e3:bd:b0:84:3e:02:a5:18:29:e5:e3:0d:8c: da:aa:b9:e6:48:9b:9b:c3:6c:17:01:26:bb:8c:ec:1e:5c:0f: 23:8e:4b:55:a6:8d:81:4c:b0:6d:4f:0f:73:5a:2b:41:7e:ac: 67:a4:d4:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEVDNTExMC8GA1UEBRMoM0E1RTEwMjlFNjVDNjM2ODEyMzJEQjY3RDgwNTNERDJG Njk0RTYxRjAeFw0yNTA1MTMwNjQ2MTJaFw0yNTA1MjAwNjQ2MTJaMBgxFjAUBgNV BAMTDTY4MjJlYWI0LWU4ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9No8sAtcj7fpBLllomZCn56e2TML62HnZYKRyVM/ggzskeaA6S0upBYV9iM1g ck+wa7d03VxbR9b74ON3hPlGDtZQypQEMHU07d8tJzZDpSP1T8HR3n7xovL+55JF hLTpoeu3K97D20fiAdjvQZyXV3IoeAfIOflCrrDEi2PE+ZuyhWEhqsCYcraJZspQ dIrpKJCMagWps+ixaiBBFDQ9LtUETQqkfnCcG4TGGYvkvGBcXkVxMa+rh5hswFuG tN1EiOzR0x4Z2sBWfxjP8hnkMsVJyVDJe4fwwLRj00+JwxolXIQiZB+UpCvKXmvO Rs6znGUIhqUhGUOa3QR1a6wjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa+M/9K37 tyOc7AAZI03i5K3q8oIwHwYDVR0jBBgwFoAUOl4QKeZcY2gSMttn2AU90vaU5h8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RUM1LzgyMzM1QTIwRDk1 QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVo OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2w0UUtlWmNZMmdTTXR0bjJBVTkwdmFVNWg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 RUM1LzgyMzM1QTIwRDk1QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJn U010dG4yQVU5MHZhVTVoOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABt3rzmkVcnaEfsdzPhG7eeErAd5V6l8frBwQ6VcUfDSeUdIiKSmIPoG wOs1ONQ9JIAcXrYJxU/f7i6LTn8G9PL1Mkw8iP3OfFprsJPOJZI7r5AOrTQ4KuXl 7ZGIBYf09Zq6RYxBXQdTMSzCldqLWi4rhESXTEwXJyVMpi5uu1wKosH7FovR7ogm jYNmV/5DYA0PcJf6DLXtJjIeo7VzKgWuttMottbTo9F5AL5eQhvE8MFzJMCmpH24 48Oh85lPdVzg8GyWshHg2TJH472whD4CpRgp5eMNjNqqueZIm5vDbBcBJruM7B5c DyOOS1WmjYFMsG1PD3NaK0F+rGek1AQ= -----END CERTIFICATE-----Generated at Wed May 14 04:40:13 2025 by rpki-client