$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: x2fwWY7NFOegKvb0IDhnqII5omoOvdKOBXQjSJkCVPc= Subject key identifier: 8E:D5:9C:EF:55:17:21:14:11:02:BB:FA:75:26:22:12:D0:41:54:82 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 013D Signing time: Tue 13 May 2025 03:34:14 +0000 Manifest this update: Tue 13 May 2025 03:34:14 +0000 Manifest next update: Tue 20 May 2025 03:34:14 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: F91YKez9Y+AnmcKlpO6a/OZuT2SRZ077KpbjxpDzSM0=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: P1qwhAicU6zPENCwTGFasnrb3+NFivcUL5Wq4dABBCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: May 13 03:34:14 2025 GMT Not After : May 20 03:34:14 2025 GMT Subject: CN=6822bdb6-9bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:39:79:77:da:44:c4:b2:64:54:ba:5f:f1: 60:3e:7c:c6:a1:ec:7e:ca:6e:b6:19:72:89:f3:a8: c8:e8:7f:98:21:e2:56:28:19:4b:bd:c4:8c:ac:39: 4f:95:4d:90:35:3c:2e:ba:61:17:d7:c8:3f:b6:7f: 65:d9:20:0d:25:18:1c:61:30:5f:d9:d1:17:a7:0f: 11:82:b7:2a:d2:87:f7:6a:d0:b6:46:09:86:36:29: b4:9a:e1:81:fc:b8:18:5e:18:01:4f:3e:b6:03:b1: ce:45:6a:98:a7:23:fe:58:e0:09:90:40:9e:b0:75: 49:9b:86:8c:c2:e1:f3:24:ca:fa:43:1f:33:88:72: 17:26:97:d9:0d:7a:68:24:07:19:c2:55:e5:7b:3e: 36:f7:1a:07:c9:3a:ce:c2:bc:25:a1:2e:af:31:a6: c8:4d:e2:f6:4d:00:c1:1d:11:1c:80:03:48:33:2f: ba:2d:bb:57:f0:13:f9:4a:36:9b:53:2f:fe:79:cb: 2c:bc:fa:e7:ce:c8:55:30:95:f2:23:16:f5:c6:5e: 9c:d9:9f:83:ef:aa:5b:1f:d0:ad:5a:29:0f:31:6e: e2:e5:34:6a:15:dd:52:e7:c9:d2:9a:72:0e:a9:b9: 06:26:8b:8c:98:de:e7:47:6b:e7:2c:6c:79:51:08: db:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D5:9C:EF:55:17:21:14:11:02:BB:FA:75:26:22:12:D0:41:54:82 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:fe:cb:a3:3b:ff:69:4f:e5:6d:97:c4:f8:ea:aa:99:3d:56: f6:ea:d5:61:58:8b:9e:fa:4c:ea:17:4c:ec:fb:9f:5d:42:a4: 63:46:8f:8f:54:4a:c7:9a:38:4a:44:9e:a3:12:87:82:ab:30: 82:d1:cb:04:4a:d3:f5:f3:33:d6:77:94:32:54:67:d6:3a:71: 5e:5a:79:56:da:20:92:da:f1:4e:dd:b7:9d:08:d2:8a:55:a3: fb:5f:01:a3:b9:e3:45:c7:f6:53:3c:55:d5:ee:29:e1:ba:1d: df:8c:f7:8b:2a:4e:3b:fa:7b:39:60:37:76:a6:12:b3:49:a2: 64:88:45:b9:7c:b3:57:25:c7:6f:c4:73:24:8b:63:c9:27:b8: 57:37:99:85:af:65:74:ea:41:36:fb:da:3c:69:08:b5:8e:54: f3:f5:05:53:e6:29:e3:79:d3:a8:3a:90:40:ca:bb:19:ba:03: f6:7d:dc:c6:f1:87:24:45:96:ca:d5:e6:63:80:ce:c4:95:cc: e8:b7:da:c8:1c:de:34:a2:17:db:89:c0:f5:1a:83:32:af:40: d9:fb:ad:9a:4a:c0:ce:13:39:98:a8:b6:17:78:fa:35:b1:c9: 4a:4a:29:93:88:71:4d:eb:c8:35:d3:90:50:86:a0:a0:fa:62: f1:86:01:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUwNTEzMDMzNDE0WhcNMjUwNTIwMDMzNDE0WjAYMRYwFAYD VQQDEw02ODIyYmRiNi05YmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdQ5eXfaRMSyZFS6X/FgPnzGoex+ym62GXKJ86jI6H+YIeJWKBlLvcSMrDlP lU2QNTwuumEX18g/tn9l2SANJRgcYTBf2dEXpw8Rgrcq0of3atC2RgmGNim0muGB /LgYXhgBTz62A7HORWqYpyP+WOAJkECesHVJm4aMwuHzJMr6Qx8ziHIXJpfZDXpo JAcZwlXlez429xoHyTrOwrwloS6vMabITeL2TQDBHREcgANIMy+6LbtX8BP5Sjab Uy/+ecssvPrnzshVMJXyIxb1xl6c2Z+D76pbH9CtWikPMW7i5TRqFd1S58nSmnIO qbkGJouMmN7nR2vnLGx5UQjbmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7VnO9V FyEUEQK7+nUmIhLQQVSCMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi/sujO/9pT+Vtl8T46qqZPVb26tVhWIue+kzqF0zs+59dQqRjRo+P VErHmjhKRJ6jEoeCqzCC0csEStP18zPWd5QyVGfWOnFeWnlW2iCS2vFO3bedCNKK VaP7XwGjueNFx/ZTPFXV7inhuh3fjPeLKk47+ns5YDd2phKzSaJkiEW5fLNXJcdv xHMki2PJJ7hXN5mFr2V06kE2+9o8aQi1jlTz9QVT5injedOoOpBAyrsZugP2fdzG 8YckRZbK1eZjgM7Elczot9rIHN40ohfbicD1GoMyr0DZ+62aSsDOEzmYqLYXePo1 sclKSimTiHFN68g105BQhqCg+mLxhgF0 -----END CERTIFICATE-----Generated at Wed May 14 17:23:57 2025 by rpki-client