$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: Je6Bd1SzilMlDHUoy+oVLngeQxieehzl6H6LtvtsLps= Subject key identifier: 90:42:65:33:BE:CB:E8:17:6B:49:95:87:12:4F:76:06:4B:1B:B7:28 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0A49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A44 Signing time: Wed 14 May 2025 19:50:16 +0000 Manifest this update: Wed 14 May 2025 19:50:15 +0000 Manifest next update: Wed 21 May 2025 19:50:15 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: sMo+yo/+iazaMYCCriINxe0SC1tprD8MzhIi0tB2KDo=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: aNxxH/k6H9pUK4+Yh6tMJ5W3Dxa/fkGC+OopIVqyBEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: May 14 19:50:15 2025 GMT Not After : May 21 19:50:15 2025 GMT Subject: CN=6824f3f7-4848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:b1:ba:d9:ea:2d:27:4a:1b:c4:96:8f:09: 57:fa:de:52:40:80:f3:19:e9:03:14:4f:77:d2:b6: 8d:03:6d:99:da:f3:a5:f1:98:2a:48:0e:3d:69:ba: a4:b6:f8:04:af:f9:53:b2:7d:3d:00:cf:b1:31:56: a0:78:11:c7:b8:5b:52:ac:ef:f6:42:16:b0:76:87: 93:25:20:82:b5:a9:05:0e:00:7b:ab:db:73:fc:3a: f7:6a:2c:05:ed:2f:c0:9a:70:5c:fb:1f:17:5f:78: 5b:9a:8c:0e:e8:ba:85:0c:92:bf:b5:44:94:03:aa: 71:24:5d:18:aa:e2:34:f3:74:e8:62:b0:b4:40:f0: e6:20:77:d5:8a:bf:c1:f8:ca:24:15:04:92:48:aa: 3e:86:b7:0d:66:02:6a:8f:2e:14:76:08:10:87:91: 21:2c:08:4d:74:85:e4:7c:50:bd:62:79:24:45:ca: b9:f7:fd:be:5a:37:00:51:5c:6d:1f:0d:c8:5a:29: 92:6f:14:61:cb:4f:9d:af:58:32:01:c4:8f:7e:57: 0a:ca:16:31:e4:8f:5a:83:d3:ae:18:c7:4f:ad:a5: 68:a9:59:57:06:dc:3f:7d:a5:d4:0b:27:8d:de:5a: 0e:21:61:16:a9:e8:67:87:75:03:de:f0:fa:57:b7: a6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:42:65:33:BE:CB:E8:17:6B:49:95:87:12:4F:76:06:4B:1B:B7:28 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4d:67:68:36:d4:9d:54:bb:a9:c3:3f:f6:e7:ea:c7:7a:ae: e8:aa:06:1d:62:52:b2:86:98:c3:7c:39:be:bf:b6:48:85:a5: ab:12:15:dd:09:54:6d:7a:ab:e1:a7:51:3f:6e:95:bc:19:34: 4b:c8:6f:40:1e:f0:d0:c7:fc:dc:29:19:7c:ec:29:47:48:a6: 9c:49:45:50:e4:8e:68:1b:da:48:36:3f:4d:b0:22:59:c2:63: 52:7c:9d:4c:6a:dd:8a:5d:c2:0f:d1:ca:47:a6:6c:4d:34:aa: b5:c2:6a:9b:7b:a8:f2:33:93:69:e0:ec:c1:67:85:50:db:55: 43:58:51:06:f8:ac:74:a9:0f:06:66:45:d2:b4:d9:0a:66:b1: b7:fc:65:03:1d:01:d0:05:b6:69:77:19:ac:29:5a:83:fb:59: 3d:06:10:c3:9b:39:29:dc:5d:16:26:61:8b:af:5b:54:7a:20: 51:c7:17:6e:12:55:2f:cc:94:74:95:53:ba:98:1f:c2:c1:29: 30:9a:7d:b3:43:ab:ae:62:d3:33:9e:16:76:46:8f:dd:89:0a: 57:28:18:ed:81:be:69:df:82:e0:f9:99:13:3f:88:a9:14:b9: a8:e6:b5:26:5f:86:ec:39:0e:e3:c9:4f:cc:b7:e0:0d:a6:b7: 08:28:5f:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUwNTE0MTk1MDE1WhcNMjUwNTIxMTk1MDE1WjAYMRYwFAYD VQQDEw02ODI0ZjNmNy00ODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPmxutnqLSdKG8SWjwlX+t5SQIDzGekDFE930raNA22Z2vOl8ZgqSA49abqk tvgEr/lTsn09AM+xMVageBHHuFtSrO/2QhawdoeTJSCCtakFDgB7q9tz/Dr3aiwF 7S/AmnBc+x8XX3hbmowO6LqFDJK/tUSUA6pxJF0YquI083ToYrC0QPDmIHfVir/B +MokFQSSSKo+hrcNZgJqjy4UdggQh5EhLAhNdIXkfFC9YnkkRcq59/2+WjcAUVxt Hw3IWimSbxRhy0+dr1gyAcSPflcKyhYx5I9ag9OuGMdPraVoqVlXBtw/faXUCyeN 3loOIWEWqehnh3UD3vD6V7em4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBCZTO+ y+gXa0mVhxJPdgZLG7coMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASTWdoNtSdVLupwz/25+rHeq7oqgYdYlKyhpjDfDm+v7ZIhaWrEhXd CVRteqvhp1E/bpW8GTRLyG9AHvDQx/zcKRl87ClHSKacSUVQ5I5oG9pINj9NsCJZ wmNSfJ1Mat2KXcIP0cpHpmxNNKq1wmqbe6jyM5Np4OzBZ4VQ21VDWFEG+Kx0qQ8G ZkXStNkKZrG3/GUDHQHQBbZpdxmsKVqD+1k9BhDDmzkp3F0WJmGLr1tUeiBRxxdu ElUvzJR0lVO6mB/CwSkwmn2zQ6uuYtMznhZ2Ro/diQpXKBjtgb5p34Lg+ZkTP4ip FLmo5rUmX4bsOQ7jyU/Mt+ANprcIKF/h -----END CERTIFICATE-----Generated at Fri May 16 18:09:12 2025 by rpki-client