$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft File: oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json) Hash identifier: HdOfj4zzCGx1lL+J6C0CaMUb81tkLRDv/hG4LFxtA0c= Subject key identifier: 26:F2:8B:81:61:05:0E:15:17:6F:47:5B:03:AA:30:7A:86:6B:69:BB Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 Certificate issuer: /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Certificate serial: 0384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft Manifest number: 0380 Signing time: Sat 17 May 2025 01:07:50 +0000 Manifest this update: Sat 17 May 2025 01:07:50 +0000 Manifest next update: Sat 24 May 2025 01:07:50 +0000 Files and hashes: 1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: WNYvQlOnljmSCtp9oMaQ4QcKIZP6eeXxM/oW0Rper78=) 2: D1E294C2A34411EC803D2585C4F9AE02.roa (hash: 9gufT/8L47ewBvsedXGTY9SOVItSQOfXiC+UqlsipuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Validity Not Before: May 17 01:07:50 2025 GMT Not After : May 24 01:07:50 2025 GMT Subject: CN=6827e166-5d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d3:f0:f5:85:b8:4e:32:b2:1f:c6:38:a4:5a: 42:71:7b:8a:95:42:68:92:72:87:ca:41:17:2e:03: 09:d1:9c:8d:63:14:cf:ce:36:57:8f:f2:d9:21:99: 68:34:b3:eb:08:93:3c:26:90:dd:f3:c3:93:e6:4e: 0e:e9:e4:b4:06:6d:78:dc:35:28:e4:05:85:bc:cf: 0e:76:16:d1:bb:a0:d6:56:c4:af:86:98:e5:ab:2a: 3b:65:0e:f1:17:13:3f:83:7a:37:8d:56:b3:2b:cc: 53:b9:4b:6d:5d:3b:ab:c1:96:b1:6d:62:6a:ba:16: 85:ef:c8:8b:7d:99:ec:0c:a6:cd:e4:a8:5c:95:33: 3d:fc:ff:73:77:fb:16:2b:a4:f9:ca:78:13:72:00: b7:ef:82:2e:07:60:1c:33:6d:59:59:76:cc:79:ba: f5:42:05:cc:2e:4a:b4:7b:74:8a:81:88:3b:49:db: a6:0a:21:81:b4:5e:f5:31:63:7d:d4:4d:50:1b:86: 58:44:fe:ca:2f:42:1f:4f:c1:b7:19:c3:59:06:9d: 21:c7:a4:9b:2c:f3:ab:e2:90:31:34:37:b5:14:0b: 14:4b:b1:63:d6:c7:65:36:e1:f5:b0:6d:e3:fc:db: 1e:36:f1:6f:f8:60:32:a1:a4:d0:a5:03:a6:eb:df: eb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F2:8B:81:61:05:0E:15:17:6F:47:5B:03:AA:30:7A:86:6B:69:BB X509v3 Authority Key Identifier: keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:66:08:2b:5f:3c:b3:a2:d1:ae:88:f9:32:15:ef:c1:91:b7: 69:e6:6e:da:87:1e:95:84:f6:51:4d:ab:a3:5c:1c:cb:81:b6: 13:41:47:97:b0:35:9c:8d:7f:4c:31:fb:10:88:64:15:1b:98: e6:13:40:73:be:a0:8f:78:8f:8d:03:65:4b:ef:bd:11:b8:b5: a1:09:9e:c2:20:43:60:92:b9:a0:6e:3a:22:4c:b1:be:78:90: 93:6f:2e:ac:2f:c3:a9:9a:62:6d:df:aa:13:d3:7c:c1:fc:c2: 82:4d:cb:e4:22:cb:db:90:04:c6:93:58:fd:65:05:36:4d:bc: b9:e7:7d:89:8e:ae:42:ca:7f:7d:ed:f8:88:e9:6a:6e:77:41: a3:51:51:ca:07:75:b8:28:83:67:5c:d8:ce:36:c5:d5:7f:07: c7:38:da:55:d4:2f:72:dd:d8:e7:e7:17:0d:d1:58:1c:32:77: 05:b5:7d:92:70:ab:21:df:f1:32:a3:f1:bf:d6:6b:ce:59:04: 55:27:cc:e4:9c:26:3f:42:99:4d:c2:c1:3f:5d:28:15:34:84: df:0c:5d:b4:d2:f5:5a:88:ae:04:5a:ff:72:56:f5:15:e9:c1: 1a:2e:a2:36:68:67:bf:4d:10:67:23:bd:6e:9e:05:17:b7:a9: e9:71:0a:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix OEI3OTk4RDAwHhcNMjUwNTE3MDEwNzUwWhcNMjUwNTI0MDEwNzUwWjAYMRYwFAYD VQQDEw02ODI3ZTE2Ni01ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NPw9YW4TjKyH8Y4pFpCcXuKlUJoknKHykEXLgMJ0ZyNYxTPzjZXj/LZIZlo NLPrCJM8JpDd88OT5k4O6eS0Bm143DUo5AWFvM8OdhbRu6DWVsSvhpjlqyo7ZQ7x FxM/g3o3jVazK8xTuUttXTurwZaxbWJquhaF78iLfZnsDKbN5KhclTM9/P9zd/sW K6T5yngTcgC374IuB2AcM21ZWXbMebr1QgXMLkq0e3SKgYg7SdumCiGBtF71MWN9 1E1QG4ZYRP7KL0IfT8G3GcNZBp0hx6SbLPOr4pAxNDe1FAsUS7Fj1sdlNuH1sG3j /NseNvFv+GAyoaTQpQOm69/rJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbyi4Fh BQ4VF29HWwOqMHqGa2m7MB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhZggrXzyzotGuiPkyFe/Bkbdp5m7ahx6VhPZRTaujXBzLgbYTQUeX sDWcjX9MMfsQiGQVG5jmE0BzvqCPeI+NA2VL770RuLWhCZ7CIENgkrmgbjoiTLG+ eJCTby6sL8OpmmJt36oT03zB/MKCTcvkIsvbkATGk1j9ZQU2Tby5532Jjq5Cyn99 7fiI6Wpud0GjUVHKB3W4KINnXNjONsXVfwfHONpV1C9y3djn5xcN0VgcMncFtX2S cKsh3/Eyo/G/1mvOWQRVJ8zknCY/QplNwsE/XSgVNITfDF200vVaiK4EWv9yVvUV 6cEaLqI2aGe/TRBnI71ungUXt6npcQpC -----END CERTIFICATE-----Generated at Sun May 18 06:10:32 2025 by rpki-client