$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: q8ZOOt12dEIXqDgsUfy4H9v+lo73w5g4k2mBDYF28As= Subject key identifier: A9:39:8F:E8:36:73:85:3F:07:55:00:E0:53:58:D2:58:DE:09:36:B9 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 031B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0313 Signing time: Tue 13 May 2025 00:59:34 +0000 Manifest this update: Tue 13 May 2025 00:59:34 +0000 Manifest next update: Tue 20 May 2025 00:59:34 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: B4Lh60MsJAhtmJ5rdYw2wbWEcj03FSGolRv8TnMEjYE=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 795 (0x31b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: May 13 00:59:34 2025 GMT Not After : May 20 00:59:34 2025 GMT Subject: CN=68229976-d6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:85:06:96:e5:67:bb:9e:8e:ce:00:5f:02:19: fd:43:9a:3c:b0:c8:3b:ac:3a:73:2d:35:5a:18:cf: d5:f2:15:e7:4a:7f:a5:7f:f2:68:70:83:55:82:20: 17:46:fe:03:6d:e2:91:91:78:55:eb:79:92:39:60: e0:52:eb:e0:4a:99:56:90:a6:d5:82:1c:86:5e:24: 20:c9:4b:d0:3f:59:8d:25:d3:55:a1:7f:ce:05:8d: 33:51:b6:7c:0b:27:0a:21:a7:82:6f:21:4f:64:62: c7:4e:5a:04:ac:a3:3c:8d:f5:3c:96:3d:b9:1d:28: c5:b4:f1:4a:51:df:a1:22:e3:59:b9:b8:62:c6:b5: e4:4a:f5:d9:ea:00:db:f4:56:9d:36:6b:10:18:a5: 0d:fa:6f:1d:69:f4:b2:50:4e:4b:87:5e:ce:13:cc: 43:42:12:1d:de:bb:46:76:d4:66:17:8e:0f:13:68: b3:59:ab:2e:7c:54:2c:30:8a:fa:c4:3a:6e:15:54: db:c9:2d:af:ee:a5:8a:fe:6f:be:99:cf:77:4d:5d: 9e:e2:f9:95:55:42:a7:67:73:75:f9:ee:27:af:b3: 80:9a:14:0a:81:58:bf:77:cd:a8:9f:67:93:7a:fb: 9e:d6:da:a9:49:de:01:1a:18:c4:76:79:b5:2b:d9: f6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:39:8F:E8:36:73:85:3F:07:55:00:E0:53:58:D2:58:DE:09:36:B9 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e5:68:4b:62:4b:b0:c8:c9:b1:81:16:9e:e6:20:8b:3f:5e: 48:5b:02:7a:fd:d9:62:11:f5:11:ac:1d:ad:9c:ed:e7:5a:36: 25:9a:d1:f4:b4:c7:1b:84:3c:de:c9:22:fb:0a:a8:9e:39:40: d4:71:a0:e5:b6:f5:c4:f7:8c:97:e7:a0:3c:99:d8:d4:ce:7b: 4e:25:ad:4a:e6:ce:fc:38:f3:8f:a7:e9:21:44:58:eb:3c:f2: c6:41:28:e5:36:7a:bb:59:66:ae:c0:30:67:f8:81:bf:2c:4c: ae:8e:21:69:63:1b:8a:f1:d3:14:0e:b0:d6:35:e8:67:69:d5: 80:f7:c2:77:75:3c:27:b0:5f:ae:8c:85:11:85:1f:91:61:f8: 8a:b7:07:ff:b8:25:05:77:9c:11:e2:ea:85:e4:32:54:36:7d: e2:99:2a:a2:39:cc:de:64:4a:0a:81:67:ac:6e:8b:8d:0c:b0: 48:3b:f4:c8:82:b7:63:a3:0a:50:36:2b:9d:c2:b9:12:1e:be: 3e:2f:3c:17:1a:1b:30:f1:db:e0:e5:21:73:7d:1e:cb:6a:28: e8:2a:01:e8:89:cf:cb:71:b0:55:9c:70:e1:64:50:29:f4:7e: 7f:66:13:64:02:d2:48:a6:82:f5:ab:a4:26:0e:b6:0e:97:02: 18:74:49:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUwNTEzMDA1OTM0WhcNMjUwNTIwMDA1OTM0WjAYMRYwFAYD VQQDEw02ODIyOTk3Ni1kNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIUGluVnu56OzgBfAhn9Q5o8sMg7rDpzLTVaGM/V8hXnSn+lf/JocINVgiAX Rv4DbeKRkXhV63mSOWDgUuvgSplWkKbVghyGXiQgyUvQP1mNJdNVoX/OBY0zUbZ8 CycKIaeCbyFPZGLHTloErKM8jfU8lj25HSjFtPFKUd+hIuNZubhixrXkSvXZ6gDb 9FadNmsQGKUN+m8dafSyUE5Lh17OE8xDQhId3rtGdtRmF44PE2izWasufFQsMIr6 xDpuFVTbyS2v7qWK/m++mc93TV2e4vmVVUKnZ3N1+e4nr7OAmhQKgVi/d82on2eT evue1tqpSd4BGhjEdnm1K9n2iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk5j+g2 c4U/B1UA4FNY0ljeCTa5MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc5WhLYkuwyMmxgRae5iCLP15IWwJ6/dliEfURrB2tnO3nWjYlmtH0 tMcbhDzeySL7CqieOUDUcaDltvXE94yX56A8mdjUzntOJa1K5s78OPOPp+khRFjr PPLGQSjlNnq7WWauwDBn+IG/LEyujiFpYxuK8dMUDrDWNehnadWA98J3dTwnsF+u jIURhR+RYfiKtwf/uCUFd5wR4uqF5DJUNn3imSqiOczeZEoKgWesbouNDLBIO/TI grdjowpQNiudwrkSHr4+LzwXGhsw8dvg5SFzfR7LaijoKgHoic/LcbBVnHDhZFAp 9H5/ZhNkAtJIpoL1q6QmDrYOlwIYdEnH -----END CERTIFICATE-----Generated at Wed May 14 09:39:07 2025 by rpki-client