$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: 0m/biFgkS9bCO1aZYJhbgxUWGKoBNcCktCR2AwohSsk= Subject key identifier: D2:BB:8C:C8:6F:49:E0:84:C8:7D:BE:C0:A7:A4:0A:FE:65:8F:94:E2 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 09FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0A15 Signing time: Mon 12 May 2025 19:48:14 +0000 Manifest this update: Mon 12 May 2025 19:48:13 +0000 Manifest next update: Mon 19 May 2025 19:48:13 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: z0IFkhhYjMjrV/EjMtcOhkX1NUd3jyIr7swcZYMbAiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2557 (0x9fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: May 12 19:48:13 2025 GMT Not After : May 19 19:48:13 2025 GMT Subject: CN=6822507d-719b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ed:fd:63:68:a2:3a:6f:9b:9b:18:c2:51:d6: 81:67:70:b2:d0:2b:51:1d:b0:a5:ac:72:fe:63:c9: 20:0e:41:33:30:40:fa:59:62:e2:7c:6a:da:7b:ae: eb:73:dc:e0:9a:f3:62:d9:ea:46:73:b2:68:99:62: 47:d1:6c:71:2f:13:2d:ac:c3:1b:c6:b1:b8:78:f0: e9:cd:f2:32:62:ec:a6:f8:7b:67:48:c0:a8:2e:3a: 46:6a:12:7c:93:7c:f7:d2:8a:ec:d9:3d:7a:c0:4e: 77:22:7f:18:ec:4b:e3:35:74:c0:a9:04:58:d9:de: 27:cc:cb:24:38:e6:72:dc:c7:83:ae:44:a1:4c:cf: 47:4f:96:29:bc:b1:db:cb:72:c3:95:88:58:db:76: 7b:11:45:0b:37:1f:36:a6:8e:75:59:99:a8:9e:5e: 26:ac:9b:51:cd:cf:6c:0f:10:6c:39:11:67:f2:8f: 6c:02:12:3e:4f:a2:39:71:91:1c:ae:8d:f4:9e:19: 78:9b:dd:ff:47:16:94:f9:bc:12:b9:c0:96:f4:e0: 54:5d:c4:54:b2:07:17:f5:fa:70:6d:fe:e8:de:df: 90:e1:f5:53:6f:d6:0f:05:ea:50:f2:d7:33:d3:2b: 56:6a:62:f1:a7:5a:67:bd:0b:55:d8:1d:83:fb:49: 45:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BB:8C:C8:6F:49:E0:84:C8:7D:BE:C0:A7:A4:0A:FE:65:8F:94:E2 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:d3:5d:bb:81:d6:d6:20:85:f8:a2:23:f8:15:ff:c5:f2:d2: 21:cc:48:55:5c:0a:e6:30:cb:45:96:b8:09:f8:6c:13:e3:35: 98:48:d9:f4:4b:05:5d:59:d8:41:6c:92:55:90:39:1d:66:71: 60:40:13:54:a7:85:30:46:86:d1:48:96:da:86:a2:03:82:07: 93:ba:86:5b:f9:90:77:4b:ca:61:e4:56:52:a7:d7:c7:0b:97: 8d:9a:c4:dc:6b:fc:07:e2:fb:8f:c7:2f:cf:dc:3d:39:cc:6d: 24:80:88:e9:80:d2:0c:c8:7f:02:cd:9f:97:e4:ac:4e:ec:a9: 54:5b:aa:8a:41:29:4f:77:94:f8:88:f7:d6:d8:0b:76:d2:23: 70:7c:6c:f8:6d:92:6e:26:47:24:54:90:36:21:72:3d:76:fd: 47:63:8d:3b:41:f1:01:72:6c:30:18:80:33:89:47:1b:32:f7: cd:55:26:5f:d8:61:bc:1f:70:a6:21:68:99:72:ee:75:9a:54: bb:55:46:44:d3:bd:71:8f:4c:bc:eb:d8:17:01:38:ed:88:6f: 26:fe:03:fa:fe:eb:9f:a6:af:ad:f4:a6:f5:3a:3a:8c:4b:6c: ca:b4:51:4c:07:2c:40:3c:71:90:ff:d7:f2:ad:da:ff:8c:50: 51:bb:24:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUwNTEyMTk0ODEzWhcNMjUwNTE5MTk0ODEzWjAYMRYwFAYD VQQDEw02ODIyNTA3ZC03MTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+39Y2iiOm+bmxjCUdaBZ3Cy0CtRHbClrHL+Y8kgDkEzMED6WWLifGrae67r c9zgmvNi2epGc7JomWJH0WxxLxMtrMMbxrG4ePDpzfIyYuym+HtnSMCoLjpGahJ8 k3z30ors2T16wE53In8Y7EvjNXTAqQRY2d4nzMskOOZy3MeDrkShTM9HT5YpvLHb y3LDlYhY23Z7EUULNx82po51WZmonl4mrJtRzc9sDxBsORFn8o9sAhI+T6I5cZEc ro30nhl4m93/RxaU+bwSucCW9OBUXcRUsgcX9fpwbf7o3t+Q4fVTb9YPBepQ8tcz 0ytWamLxp1pnvQtV2B2D+0lFewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK7jMhv SeCEyH2+wKekCv5lj5TiMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJ0127gdbWIIX4oiP4Ff/F8tIhzEhVXArmMMtFlrgJ+GwT4zWYSNn0 SwVdWdhBbJJVkDkdZnFgQBNUp4UwRobRSJbahqIDggeTuoZb+ZB3S8ph5FZSp9fH C5eNmsTca/wH4vuPxy/P3D05zG0kgIjpgNIMyH8CzZ+X5KxO7KlUW6qKQSlPd5T4 iPfW2At20iNwfGz4bZJuJkckVJA2IXI9dv1HY407QfEBcmwwGIAziUcbMvfNVSZf 2GG8H3CmIWiZcu51mlS7VUZE071xj0y869gXATjtiG8m/gP6/uufpq+t9Kb1OjqM S2zKtFFMByxAPHGQ/9fyrdr/jFBRuyTm -----END CERTIFICATE-----Generated at Tue May 13 00:12:51 2025 by rpki-client