$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: 2hwdQUCPRQHcDNA3FrZ0wHttqru0DfU7DZi3XCjwXM8= Subject key identifier: 4D:E0:50:DB:96:F8:E8:95:B2:1B:14:15:A6:66:FD:AB:07:52:32:00 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: BF Signing time: Tue 13 May 2025 02:53:48 +0000 Manifest this update: Tue 13 May 2025 02:53:48 +0000 Manifest next update: Tue 20 May 2025 02:53:48 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: fNVkDNnyoViUAHSXZTTUYLyOx9axeFgLEfRwQFqiKyU=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: bdHgyKcyyyLsXCxe6xjw+MULUMGxfLoTKKgonGSTImI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: May 13 02:53:48 2025 GMT Not After : May 20 02:53:48 2025 GMT Subject: CN=6822b43c-ceb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:a1:8c:ca:ac:05:97:3e:39:e6:7b:46:d8: 3d:f2:48:05:d1:c3:ef:5e:b4:f6:a6:af:25:b8:4b: 3f:19:16:e5:4d:96:93:5e:1a:ea:a9:ab:7a:33:63: 72:9b:37:a4:f9:62:84:ed:f8:99:61:0d:9a:46:c2: f8:44:ed:9e:31:c1:b1:57:89:42:64:93:bf:5c:5c: a0:72:b3:a4:71:29:e6:20:b6:c7:f3:70:9e:a7:50: c1:fc:c3:1a:97:ce:33:4e:6c:9a:b0:b2:25:3b:d0: 70:c0:2d:3d:24:39:64:d7:c6:0e:00:a2:fc:46:09: 01:69:fa:11:83:a5:12:14:86:1e:86:9a:01:4f:b0: 68:e1:12:3d:23:30:6e:32:01:d8:fa:ab:2e:10:c2: 34:f5:bf:21:79:80:1a:a2:fb:6f:fa:8c:a7:41:fe: 05:60:23:93:55:a0:4f:43:80:70:3f:a3:49:12:f7: f5:6c:e2:bb:c0:45:86:f3:b3:fd:ef:bf:21:ac:c5: cb:f4:03:e4:a1:1c:c1:3b:6e:75:b9:c1:c1:78:15: f6:99:d9:bc:d1:5a:34:86:4f:70:12:8c:63:46:cf: c9:34:59:74:69:43:8f:75:76:65:2a:e1:03:1f:f6: eb:94:95:24:65:0b:80:71:d2:4b:2d:19:1e:d5:94: e0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E0:50:DB:96:F8:E8:95:B2:1B:14:15:A6:66:FD:AB:07:52:32:00 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:9c:56:08:ea:91:87:61:65:04:e0:32:e3:24:eb:12:d4:68: 54:e1:3f:33:d0:9a:21:e5:d2:f8:71:42:85:e9:43:5d:df:a2: 62:7e:a8:71:1d:87:01:fe:08:87:6b:61:a9:37:53:59:4b:6f: c0:21:34:5a:f7:99:9a:61:d9:9a:a6:3a:c7:9d:3f:15:dc:f0: d2:ed:ec:ed:0c:8e:60:72:8e:92:23:03:26:43:3c:6f:59:65: d0:d8:cc:77:6f:fe:cd:7d:4c:ce:17:ff:81:3f:5f:88:81:6b: b7:fe:2a:69:d5:68:c7:92:4d:b8:88:bf:d2:4c:93:db:7e:e1: e4:b0:90:41:57:39:61:f7:da:5e:47:7e:60:b6:b3:5c:53:8a: 5a:2f:cd:63:45:b7:c8:58:c9:2b:69:ec:c7:f7:ba:1c:50:d7: fb:3a:f6:69:5a:64:31:5b:94:49:10:ad:b5:26:f8:4e:36:fa: 64:82:6c:3a:9e:df:81:14:87:71:4a:72:2c:f7:28:8c:bf:33: 59:75:7b:ec:0c:32:19:30:83:78:d7:d8:d0:ce:99:af:bb:95: 24:7d:8c:8b:d6:67:3f:ef:41:27:fd:ce:c2:b9:25:b0:c3:9d: 44:5a:62:6a:1c:2f:07:99:32:39:c5:e5:6f:50:77:de:9a:4f: 01:27:97:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNTEzMDI1MzQ4WhcNMjUwNTIwMDI1MzQ4WjAYMRYwFAYD VQQDEw02ODIyYjQzYy1jZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfChjMqsBZc+OeZ7Rtg98kgF0cPvXrT2pq8luEs/GRblTZaTXhrqqat6M2Ny mzek+WKE7fiZYQ2aRsL4RO2eMcGxV4lCZJO/XFygcrOkcSnmILbH83Cep1DB/MMa l84zTmyasLIlO9BwwC09JDlk18YOAKL8RgkBafoRg6USFIYehpoBT7Bo4RI9IzBu MgHY+qsuEMI09b8heYAaovtv+oynQf4FYCOTVaBPQ4BwP6NJEvf1bOK7wEWG87P9 778hrMXL9APkoRzBO251ucHBeBX2mdm80Vo0hk9wEoxjRs/JNFl0aUOPdXZlKuED H/brlJUkZQuAcdJLLRke1ZTgiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3gUNuW +OiVshsUFaZm/asHUjIAMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7nFYI6pGHYWUE4DLjJOsS1GhU4T8z0Joh5dL4cUKF6UNd36Jifqhx HYcB/giHa2GpN1NZS2/AITRa95maYdmapjrHnT8V3PDS7eztDI5gco6SIwMmQzxv WWXQ2Mx3b/7NfUzOF/+BP1+IgWu3/ipp1WjHkk24iL/STJPbfuHksJBBVzlh99pe R35gtrNcU4paL81jRbfIWMkraezH97ocUNf7OvZpWmQxW5RJEK21JvhONvpkgmw6 nt+BFIdxSnIs9yiMvzNZdXvsDDIZMIN419jQzpmvu5UkfYyL1mc/70En/c7CuSWw w51EWmJqHC8HmTI5xeVvUHfemk8BJ5ec -----END CERTIFICATE-----Generated at Tue May 13 05:07:46 2025 by rpki-client