$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: D8U/LxGl7Gvzy9Yv5E8FlfI1mDJTs4E1NMi61BMad3o= Subject key identifier: 45:3E:2B:D5:F3:86:21:5B:B0:3E:40:60:33:8C:82:5C:12:6F:B7:8C Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 42 Signing time: Sat 17 May 2025 06:54:58 +0000 Manifest this update: Sat 17 May 2025 06:54:58 +0000 Manifest next update: Sat 24 May 2025 06:54:58 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: g6Dh393WhBAFP5+OSipoI6J1p8s3xPkMrSDXRngY6oA=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 06:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: May 17 06:54:58 2025 GMT Not After : May 24 06:54:58 2025 GMT Subject: CN=682832c2-53a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:33:a5:39:66:0c:79:f0:2b:d3:11:c7:58: f1:b3:00:27:94:3a:e9:3b:6d:2d:69:3b:92:e2:d2: ce:22:41:d3:bb:85:46:e8:fb:4e:4c:fb:5c:d4:ba: 14:3b:f2:50:0e:ae:00:09:08:91:b8:ce:e9:77:e9: a8:2c:d8:9b:00:f7:55:c2:26:45:c7:0e:69:92:8c: 41:0e:8d:a2:1a:ec:33:07:d5:b5:f3:ec:1f:9c:70: 5d:cc:f1:50:6c:23:b8:62:76:79:9c:00:73:f3:65: 3a:47:4d:8b:6b:ab:b8:7f:42:dd:63:8e:ea:2b:23: 20:8d:9b:9a:83:50:7b:fa:9e:07:21:c3:d0:a8:72: 57:f8:ca:de:03:7e:75:8e:2a:b8:43:90:aa:bf:64: da:85:17:85:a2:40:7f:bf:77:e1:0e:27:2d:73:fb: d6:eb:eb:62:2a:ff:dd:7a:3b:da:90:60:e5:b6:01: 65:1f:62:65:49:25:01:c3:2c:de:e9:84:7c:49:59: b4:53:9e:a7:41:d4:a3:8a:ea:cc:f7:73:c4:c9:df: cc:0b:84:00:4f:78:6e:b3:23:6d:33:3d:c9:50:d3: 7d:f8:cd:3f:13:0d:b6:1e:89:30:2f:e0:92:02:ed: 4b:19:1e:e6:2b:86:de:52:8d:97:0c:36:71:ba:97: 58:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3E:2B:D5:F3:86:21:5B:B0:3E:40:60:33:8C:82:5C:12:6F:B7:8C X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:00:09:93:85:88:23:04:c5:e9:ea:e7:f1:60:54:fc:c5:a1: 26:eb:29:8e:3c:16:8d:e2:8c:05:8c:df:84:9d:3f:bb:0f:96: 6c:62:24:09:dd:ac:9f:41:a2:a8:fc:22:2d:65:b6:ff:45:f4: 20:bb:82:41:4c:77:4b:6b:7e:8c:d6:94:c9:25:0c:1d:40:16: ab:d3:9d:88:7f:dd:fb:6d:26:80:35:38:9e:4b:ac:58:4e:b3: 44:6c:e6:4f:d7:20:9a:ab:bb:cd:b1:5c:00:04:18:c9:85:49: c1:8b:1a:6b:33:e3:35:1d:6b:f1:1e:93:80:9d:57:c3:ae:d3: 66:b0:ab:c8:22:14:9e:a1:56:a1:52:46:79:b7:0f:a2:80:99: 7b:c9:2b:30:d5:57:08:48:8f:af:19:92:66:23:34:06:a3:6f: 81:eb:3a:4a:84:ef:c8:b6:ac:71:30:1e:03:08:26:34:bf:73: c3:7f:37:63:2a:cc:f5:e9:c0:b6:98:ef:cf:18:d9:24:59:eb: fb:68:3d:61:ae:ea:af:76:6d:32:db:3a:7a:48:a7:64:50:16: 4b:b9:ef:3e:3c:c9:e0:6d:34:e4:b6:45:a4:5d:17:99:13:6e: ce:6d:6b:43:c0:38:66:9a:ee:ec:60:6f:3c:af:e9:52:1d:e6: 6e:20:cd:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA1MTcwNjU0NThaFw0yNTA1MjQwNjU0NThaMBgxFjAUBgNV BAMTDTY4MjgzMmMyLTUzYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC80zOlOWYMefAr0xHHWPGzACeUOuk7bS1pO5Li0s4iQdO7hUbo+05M+1zUuhQ7 8lAOrgAJCJG4zul36ags2JsA91XCJkXHDmmSjEEOjaIa7DMH1bXz7B+ccF3M8VBs I7hidnmcAHPzZTpHTYtrq7h/Qt1jjuorIyCNm5qDUHv6ngchw9Coclf4yt4DfnWO KrhDkKq/ZNqFF4WiQH+/d+EOJy1z+9br62Iq/916O9qQYOW2AWUfYmVJJQHDLN7p hHxJWbRTnqdB1KOK6sz3c8TJ38wLhABPeG6zI20zPclQ0334zT8TDbYeiTAv4JIC 7UsZHuYrht5SjZcMNnG6l1jvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURT4r1fOG IVuwPkBgM4yCXBJvt4wwHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMMACZOFiCMExenq5/FgVPzFoSbrKY48Fo3ijAWM34SdP7sPlmxiJAnd rJ9Boqj8Ii1ltv9F9CC7gkFMd0trfozWlMklDB1AFqvTnYh/3fttJoA1OJ5LrFhO s0Rs5k/XIJqru82xXAAEGMmFScGLGmsz4zUda/Eek4CdV8Ou02awq8giFJ6hVqFS Rnm3D6KAmXvJKzDVVwhIj68ZkmYjNAajb4HrOkqE78i2rHEwHgMIJjS/c8N/N2Mq zPXpwLaY788Y2SRZ6/toPWGu6q92bTLbOnpIp2RQFku57z48yeBtNOS2RaRdF5kT bs5ta0PAOGaa7uxgbzyv6VId5m4gzS0= -----END CERTIFICATE-----Generated at Sun May 18 06:10:55 2025 by rpki-client