$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: w7YsPc2ZXF3yj+wO+oX+NHhjql2mtBw21dAl5cpMm4c= Subject key identifier: 15:AD:B5:69:0B:1A:07:AA:96:7B:5C:92:C9:17:96:C8:68:1B:FF:AF Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 4E Signing time: Fri 09 May 2025 02:49:31 +0000 Manifest this update: Fri 09 May 2025 02:49:30 +0000 Manifest next update: Fri 16 May 2025 02:49:30 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: rkOoHEV+AYBwlyUNysMcibfPRA0djRkbpIo2BPy/XyE=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: NUffLHq82hY3xMoVf55lHNGR19ZjrAZu9OH8lX1bsUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: May 9 02:49:30 2025 GMT Not After : May 16 02:49:30 2025 GMT Subject: CN=681d6d3b-876b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3d:19:f8:46:3b:26:34:a8:25:b0:6a:bf:e5: 96:f8:54:82:93:48:00:4f:14:5f:43:8f:80:31:df: 55:3e:81:02:1d:10:61:f8:96:b2:b5:36:82:e9:46: c2:e5:5b:46:55:fe:bb:17:22:7f:07:66:91:31:6c: db:18:b2:e5:2d:56:a8:58:65:2c:d0:ab:9b:c8:8b: 6f:3b:3a:f6:12:dc:7e:65:e7:ff:60:5c:c8:2c:3c: 9d:4a:e4:ff:91:74:c1:93:7b:15:37:53:53:9b:25: c5:5c:5d:ed:e2:0b:cb:46:e1:86:93:bb:dd:8e:e3: 36:f9:e8:6a:2c:17:7f:69:b2:c0:32:5e:51:38:8f: 2b:b2:db:c1:bd:01:3b:5b:1e:71:93:6d:d8:4e:ad: 1c:b9:5f:83:98:d9:4e:5d:11:41:19:a8:4d:6b:5f: b0:dc:cc:6b:1d:99:70:a9:8f:50:bb:b7:e2:32:98: 24:b8:e8:09:90:55:af:02:b4:ec:8c:d8:9d:5f:bb: 43:0a:3c:6b:de:39:96:48:c5:67:d3:a3:fc:ce:b5: 4a:1f:04:2f:02:65:a7:58:c0:c7:62:ef:da:57:8b: 44:c9:8a:b2:29:01:7b:1c:1b:ae:05:05:6f:38:d7: 9b:9b:45:b3:f1:eb:e5:76:9a:7a:6c:0c:bc:05:fb: 32:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AD:B5:69:0B:1A:07:AA:96:7B:5C:92:C9:17:96:C8:68:1B:FF:AF X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4d:34:be:c5:9f:43:6f:91:03:24:d5:a3:51:27:6b:c2:62: aa:65:43:86:ec:05:df:08:28:79:2e:5d:d9:4c:e8:8c:42:95: 4c:8d:cb:17:f0:cc:13:a0:b4:49:d0:98:14:60:c4:82:17:fa: d9:dc:3e:89:8e:02:d9:ed:51:67:a1:41:84:2d:83:26:67:0a: c5:8d:95:c3:b6:18:69:44:53:69:ca:e4:08:e6:89:da:3a:12: 61:d0:f4:2b:eb:b6:d7:e1:8d:40:0a:2b:51:0d:f2:00:28:ec: f6:b1:e2:a7:c1:73:a3:f9:9e:85:f5:51:4c:bb:42:24:4f:23: 16:69:86:f3:4b:9a:5d:88:45:a1:30:93:d4:a0:a8:f1:51:79: f7:8a:7d:fc:b0:19:70:16:c3:b5:d5:3b:18:0d:2a:35:35:5f: 59:56:f6:00:b2:9e:8b:23:fc:e4:3f:ac:07:3e:89:15:1f:c6: 87:49:8c:3b:a9:8a:7a:4b:c9:f8:e9:83:5c:85:41:2e:b0:66: 17:c4:a4:a8:5c:1f:4e:5b:a5:77:94:12:75:36:f1:55:7a:b5: db:a2:74:ca:9f:e1:48:f7:e7:da:26:eb:5c:e7:8f:6c:ac:82: a3:48:42:b1:b0:be:71:c0:bd:ed:5e:27:f7:cf:ca:e8:28:02: a3:e8:b4:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA1MDkwMjQ5MzBaFw0yNTA1MTYwMjQ5MzBaMBgxFjAUBgNV BAMTDTY4MWQ2ZDNiLTg3NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPPRn4RjsmNKglsGq/5Zb4VIKTSABPFF9Dj4Ax31U+gQIdEGH4lrK1NoLpRsLl W0ZV/rsXIn8HZpExbNsYsuUtVqhYZSzQq5vIi287OvYS3H5l5/9gXMgsPJ1K5P+R dMGTexU3U1ObJcVcXe3iC8tG4YaTu92O4zb56GosF39pssAyXlE4jyuy28G9ATtb HnGTbdhOrRy5X4OY2U5dEUEZqE1rX7DczGsdmXCpj1C7t+IymCS46AmQVa8CtOyM 2J1fu0MKPGveOZZIxWfTo/zOtUofBC8CZadYwMdi79pXi0TJirIpAXscG64FBW84 15ubRbPx6+V2mnpsDLwF+zJfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFa21aQsa B6qWe1ySyReWyGgb/68wHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFlNNL7Fn0NvkQMk1aNRJ2vCYqplQ4bsBd8IKHkuXdlM6IxClUyNyxfw zBOgtEnQmBRgxIIX+tncPomOAtntUWehQYQtgyZnCsWNlcO2GGlEU2nK5Ajmido6 EmHQ9CvrttfhjUAKK1EN8gAo7Pax4qfBc6P5noX1UUy7QiRPIxZphvNLml2IRaEw k9SgqPFRefeKffywGXAWw7XVOxgNKjU1X1lW9gCynosj/OQ/rAc+iRUfxodJjDup inpLyfjpg1yFQS6wZhfEpKhcH05bpXeUEnU28VV6tduidMqf4Uj359om61znj2ys gqNIQrGwvnHAve1eJ/fPyugoAqPotK4= -----END CERTIFICATE-----Generated at Sat May 10 22:03:34 2025 by rpki-client