$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: tm94/ytNFKXtk94M74YHEsyFOVeBV8zjEH6RWdvQNQE= Subject key identifier: 4F:8A:C9:97:E6:32:CA:14:C1:EB:8D:B7:04:A4:43:75:11:65:1D:D5 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 01DE Signing time: Sun 11 May 2025 01:44:02 +0000 Manifest this update: Sun 11 May 2025 01:44:01 +0000 Manifest next update: Sun 18 May 2025 01:44:01 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: UwFL8/kELnnwDO/NI5FEolVYxj5RsWRJM2nuyyMvCQo=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: May 11 01:44:01 2025 GMT Not After : May 18 01:44:01 2025 GMT Subject: CN=682000e1-3893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:da:19:f5:ee:cd:a6:4e:7d:ed:5f:82:47:55: ff:50:f9:bb:3f:60:e9:8d:e6:70:a9:4b:d5:dc:7c: d3:d9:92:77:c0:a5:05:12:80:5a:f5:da:37:a2:90: 41:f0:ff:1e:37:3f:87:e5:44:26:cd:3a:52:b4:e2: a9:c8:1e:a0:06:f5:91:2b:8c:07:55:a8:d4:af:d0: 7f:6f:09:e1:7c:74:5e:e5:bb:c6:f5:73:da:d9:ef: 76:83:f0:69:9a:4f:3f:5a:1e:c3:9d:4c:ed:b5:ce: c7:51:02:dd:8c:fc:76:4e:3f:72:7b:1e:cb:89:28: 50:be:90:cc:38:2c:b2:15:14:fe:6f:3e:e2:65:3e: 57:5e:f7:59:02:42:e2:f7:f7:ea:d4:40:5a:52:8f: fe:8d:00:ec:25:0b:36:0a:bc:c2:4b:51:25:fe:cd: e5:dd:ae:47:40:32:c3:3c:ea:74:1a:3e:cb:91:09: f8:2b:3c:be:2e:56:48:fa:23:49:2b:1f:62:88:64: f1:a0:20:7e:5a:f0:95:70:6e:83:ae:02:be:94:7f: 7e:b0:0e:d3:e5:bd:e7:cb:fc:cc:b1:48:fe:99:ad: 2a:14:0d:85:e3:bc:35:41:04:e7:12:78:b7:8e:36: 44:2b:47:1c:c8:f2:c2:95:07:0e:fe:95:50:ec:f1: a3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:C9:97:E6:32:CA:14:C1:EB:8D:B7:04:A4:43:75:11:65:1D:D5 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5b:71:bd:2b:17:62:ed:60:e4:79:cc:21:4c:21:0f:26:a6: 0f:34:54:8a:51:95:cb:94:c4:fd:c4:74:75:e4:69:3a:de:8e: 54:eb:2a:aa:45:13:84:75:95:c7:54:75:41:4b:a1:2a:4a:76: b9:25:03:4e:44:19:fe:be:30:ad:44:14:1c:7c:c5:18:f9:c2: bf:2b:76:eb:26:9c:58:38:01:16:65:88:a0:34:2a:ac:e6:ab: 48:8a:14:e4:65:22:b4:49:0b:38:2c:2b:7b:be:7e:75:46:cd: 65:c2:3b:25:fa:a9:1a:18:d7:40:55:09:c0:62:43:46:9b:74: 5a:d1:2b:f9:a1:78:72:6a:45:dc:f8:25:2e:22:7b:d7:4b:7a: c2:c4:a0:fd:52:8f:9b:3e:86:83:b0:2c:5e:c4:d7:89:5a:3e: 99:73:67:b8:0a:88:ac:53:ec:fc:52:8d:13:60:12:7c:ee:65: c3:4f:40:da:29:2a:5e:95:34:e3:d9:d4:e0:8d:54:31:8f:eb: 5c:ba:b1:f2:03:76:23:98:5f:b2:9a:95:79:54:bc:fc:ce:b1: e0:e5:8d:f1:7c:62:0f:98:92:7b:79:4e:a2:1a:88:5d:62:0c: 9d:71:75:0d:11:af:6b:33:9b:1d:94:fb:d1:77:45:9c:1e:67: a7:eb:ea:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwNTExMDE0NDAxWhcNMjUwNTE4MDE0NDAxWjAYMRYwFAYD VQQDEw02ODIwMDBlMS0zODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3toZ9e7Npk597V+CR1X/UPm7P2DpjeZwqUvV3HzT2ZJ3wKUFEoBa9do3opBB 8P8eNz+H5UQmzTpStOKpyB6gBvWRK4wHVajUr9B/bwnhfHRe5bvG9XPa2e92g/Bp mk8/Wh7DnUzttc7HUQLdjPx2Tj9yex7LiShQvpDMOCyyFRT+bz7iZT5XXvdZAkLi 9/fq1EBaUo/+jQDsJQs2CrzCS1El/s3l3a5HQDLDPOp0Gj7LkQn4Kzy+LlZI+iNJ Kx9iiGTxoCB+WvCVcG6DrgK+lH9+sA7T5b3ny/zMsUj+ma0qFA2F47w1QQTnEni3 jjZEK0ccyPLClQcO/pVQ7PGjiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+KyZfm MsoUweuNtwSkQ3URZR3VMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtW3G9Kxdi7WDkecwhTCEPJqYPNFSKUZXLlMT9xHR15Gk63o5U6yqq RROEdZXHVHVBS6EqSna5JQNORBn+vjCtRBQcfMUY+cK/K3brJpxYOAEWZYigNCqs 5qtIihTkZSK0SQs4LCt7vn51Rs1lwjsl+qkaGNdAVQnAYkNGm3Ra0Sv5oXhyakXc +CUuInvXS3rCxKD9Uo+bPoaDsCxexNeJWj6Zc2e4CoisU+z8Uo0TYBJ87mXDT0Da KSpelTTj2dTgjVQxj+tcurHyA3YjmF+ympV5VLz8zrHg5Y3xfGIPmJJ7eU6iGohd YgydcXUNEa9rM5sdlPvRd0WcHmen6+oN -----END CERTIFICATE-----Generated at Mon May 12 12:25:02 2025 by rpki-client