$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: AI4/jPZfaHLp+UFohzTfvTGXF5pMOlHLYUv4px/s+D0= Subject key identifier: 8E:20:63:73:B7:F7:FC:67:C7:E2:D1:A4:38:85:BE:46:75:8D:C0:E8 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 07CF Signing time: Mon 12 May 2025 20:52:30 +0000 Manifest this update: Mon 12 May 2025 20:52:29 +0000 Manifest next update: Mon 19 May 2025 20:52:29 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: HeGrGBalAy2vPidqGWsjPzNBqSu24u3ITOsUZb3jdnE=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: May 12 20:52:29 2025 GMT Not After : May 19 20:52:29 2025 GMT Subject: CN=68225f8e-7a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:81:dd:17:ee:10:a1:e9:73:34:b6:36:b4:71: d0:c7:01:1e:33:18:79:a4:dc:4b:58:6f:92:99:e2: 23:10:6f:5c:b8:c9:0e:25:f2:04:3a:e1:eb:0b:9f: 97:c7:d9:2c:67:12:21:f7:c4:76:98:49:b6:57:09: 27:f1:89:ad:e2:57:eb:f7:65:cd:c0:a9:ae:f8:b9: d6:7b:e5:0b:3e:1a:45:66:2c:11:eb:29:7f:41:1c: dd:72:7f:9c:39:2b:07:e1:7e:ec:76:4f:66:63:8f: c2:d3:0d:44:45:20:45:e9:b5:c4:78:2b:55:5d:63: 45:84:95:17:ad:a8:84:0a:a1:93:47:63:80:28:a3: a5:24:15:01:56:47:84:77:9c:47:9b:8d:20:7e:ec: a2:f5:85:4a:68:08:ae:70:54:fd:3b:f2:d1:86:3f: 48:fd:f6:79:e0:63:09:71:c3:0f:b8:46:87:54:7d: 70:03:d2:e5:c8:c5:b2:4f:5b:a4:3f:ad:fb:b0:6e: 1c:2d:a7:53:7b:d1:73:6d:cc:51:14:71:43:f5:62: a9:82:2c:68:06:cf:6a:8a:6f:e5:1d:26:22:90:9f: 35:d1:65:74:a4:a0:ab:78:ed:b7:25:4e:db:f4:a8: 9f:48:b9:d0:7d:fe:5f:c4:57:5a:8e:2b:07:fe:4f: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:20:63:73:B7:F7:FC:67:C7:E2:D1:A4:38:85:BE:46:75:8D:C0:E8 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:77:5a:13:bd:77:e2:b5:7d:50:ce:4e:55:25:9c:05:46:0e: 18:3f:fd:53:02:33:d1:24:1e:3c:94:81:8b:fe:5d:59:e2:c8: fd:e0:39:e1:46:16:85:e8:da:b8:86:96:9e:81:32:74:0f:b4: 5a:ca:ea:41:d3:33:4a:bd:d7:c8:9b:79:b0:77:54:5a:d6:6d: d7:7c:1f:b5:df:dd:13:4c:4f:3c:4e:c5:8c:af:36:24:55:2f: 71:8b:ff:33:18:47:64:58:6e:a9:bc:eb:4a:77:22:17:02:e7: 8a:73:07:1d:62:d8:a4:de:5b:77:1f:e2:79:58:d4:d5:7f:51: 5f:b7:12:87:3a:49:ad:43:bd:24:fb:a5:d4:58:c3:64:8c:17: 37:0b:23:3f:4e:e5:6f:2b:20:8a:a2:e6:bc:7f:bf:b8:07:fc: e2:bb:6a:01:1a:67:10:f6:f6:6a:f8:98:1f:d4:82:01:9f:35: 6c:fe:9e:6d:94:5c:fc:ed:a2:c9:02:bb:4c:7d:8f:a7:d4:a5: 21:5d:41:03:99:3a:43:2b:0c:26:fc:d5:f7:fd:cc:67:ee:10: d3:63:cc:57:c2:fc:9c:41:79:eb:47:8c:60:77:5f:8d:c6:47: 67:26:2c:12:30:86:90:96:2e:67:02:64:82:ef:cb:5f:5a:94: dd:fd:4b:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwNTEyMjA1MjI5WhcNMjUwNTE5MjA1MjI5WjAYMRYwFAYD VQQDEw02ODIyNWY4ZS03YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14HdF+4QoelzNLY2tHHQxwEeMxh5pNxLWG+SmeIjEG9cuMkOJfIEOuHrC5+X x9ksZxIh98R2mEm2Vwkn8Ymt4lfr92XNwKmu+LnWe+ULPhpFZiwR6yl/QRzdcn+c OSsH4X7sdk9mY4/C0w1ERSBF6bXEeCtVXWNFhJUXraiECqGTR2OAKKOlJBUBVkeE d5xHm40gfuyi9YVKaAiucFT9O/LRhj9I/fZ54GMJccMPuEaHVH1wA9LlyMWyT1uk P637sG4cLadTe9FzbcxRFHFD9WKpgixoBs9qim/lHSYikJ810WV0pKCreO23JU7b 9KifSLnQff5fxFdajisH/k/GCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4gY3O3 9/xnx+LRpDiFvkZ1jcDoMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBId1oTvXfitX1Qzk5VJZwFRg4YP/1TAjPRJB48lIGL/l1Z4sj94Dnh RhaF6Nq4hpaegTJ0D7RayupB0zNKvdfIm3mwd1Ra1m3XfB+1390TTE88TsWMrzYk VS9xi/8zGEdkWG6pvOtKdyIXAueKcwcdYtik3lt3H+J5WNTVf1FftxKHOkmtQ70k +6XUWMNkjBc3CyM/TuVvKyCKoua8f7+4B/ziu2oBGmcQ9vZq+Jgf1IIBnzVs/p5t lFz87aLJArtMfY+n1KUhXUEDmTpDKwwm/NX3/cxn7hDTY8xXwvycQXnrR4xgd1+N xkdnJiwSMIaQli5nAmSC78tfWpTd/UtE -----END CERTIFICATE-----Generated at Tue May 13 11:21:59 2025 by rpki-client