$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: XApjarIpp5N/0Q01aTyCLG/vh5Gbmp4TyasjDL6CqUs= Subject key identifier: 99:26:71:B3:23:DB:D8:13:0A:09:62:0E:A9:48:98:B7:B8:F1:F9:84 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 0778 Signing time: Thu 24 Apr 2025 21:15:55 +0000 Manifest this update: Thu 24 Apr 2025 21:15:54 +0000 Manifest next update: Thu 01 May 2025 21:15:54 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: cgWNStjYR1X+fPeItIf/R2gi+VQrJBjy3Prj8VFphgE=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Apr 24 21:15:54 2025 GMT Not After : May 1 21:15:54 2025 GMT Subject: CN=680aaa0a-f5c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:02:47:0e:10:29:c8:66:f2:66:2c:8f:e6:77: b0:4f:f3:75:6e:21:51:71:c2:33:d8:6f:27:da:f4: f7:d0:b0:b2:74:56:c4:42:49:6a:18:70:02:20:87: 1c:1e:65:a7:25:1b:2a:d9:c7:35:98:e9:bb:be:71: 92:7e:83:03:17:9a:d8:f1:d6:da:11:ec:72:b9:62: c3:fb:1f:b3:6c:3d:d7:a0:9a:ae:51:b1:0d:d6:58: 5f:a0:c8:e4:88:cf:f6:ee:e0:48:39:5e:62:57:ef: 89:c8:ca:02:82:bf:c4:a7:7d:52:d9:ae:9e:e6:3d: 22:f6:c0:19:cb:e6:4b:1e:ef:76:38:a8:f0:32:93: c3:57:de:6e:32:75:e1:49:97:01:9f:c5:68:19:b5: 5b:b5:a1:f9:1a:11:e4:51:ad:57:46:58:7c:24:c0: 22:f2:c3:44:02:b4:d8:14:ad:c3:03:88:50:32:af: 7c:c2:92:18:19:2b:15:b0:4b:ab:8a:55:e3:4f:51: 08:ba:ba:76:b8:8d:89:80:ae:97:09:24:db:54:cc: fa:e5:fb:bc:41:f5:50:92:2e:ad:06:8b:43:9e:a8: 9b:bb:52:6d:04:cd:17:44:7c:f2:09:65:ae:6f:0d: cd:98:37:fe:15:4a:d3:ec:74:c8:53:04:b4:21:6c: c9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:26:71:B3:23:DB:D8:13:0A:09:62:0E:A9:48:98:B7:B8:F1:F9:84 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f9:26:e9:de:9e:b5:da:a1:d1:45:09:e7:bb:3a:9b:ba:22:ba: f4:3d:5e:0e:db:87:02:79:2b:e7:84:f7:40:ad:38:78:36:38: 4d:a7:b5:a3:82:c5:fb:ba:cf:eb:f2:55:02:a2:1a:d7:97:e7: 0e:c5:80:cb:bd:69:50:d7:bf:d5:9e:cb:5a:ae:0a:9f:fb:5d: 6e:ed:e6:de:bf:77:38:8a:2c:e5:55:17:ca:30:cb:bc:07:2b: 96:e0:26:98:83:4f:6d:96:a8:ba:08:e6:15:3e:46:51:0e:80: b5:fd:aa:b0:d5:b9:b0:00:cf:1a:56:6f:7c:44:6f:16:3f:db: 1d:5c:08:32:d9:49:1c:c6:fb:f5:06:48:0e:19:6f:8a:50:64: 87:3f:0a:97:43:57:c3:b9:e0:17:6b:22:56:62:a1:13:28:82: 44:61:43:ed:e2:74:b1:16:55:7a:4a:05:85:cf:3d:96:88:07: b7:bb:0c:a2:2f:71:32:f9:f4:28:50:1b:61:69:f0:4b:81:b9: c1:39:a4:68:19:ef:bf:f0:e4:02:74:82:f0:90:a9:01:3d:11: 5c:78:4a:f6:b6:f7:3c:76:46:96:c9:5b:fc:04:44:74:39:16: ff:03:50:08:50:c5:e8:92:1a:a4:dd:61:cd:05:89:f3:d4:2c: 0d:02:83:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwNDI0MjExNTU0WhcNMjUwNTAxMjExNTU0WjAYMRYwFAYD VQQDEw02ODBhYWEwYS1mNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAJHDhApyGbyZiyP5newT/N1biFRccIz2G8n2vT30LCydFbEQklqGHACIIcc HmWnJRsq2cc1mOm7vnGSfoMDF5rY8dbaEexyuWLD+x+zbD3XoJquUbEN1lhfoMjk iM/27uBIOV5iV++JyMoCgr/Ep31S2a6e5j0i9sAZy+ZLHu92OKjwMpPDV95uMnXh SZcBn8VoGbVbtaH5GhHkUa1XRlh8JMAi8sNEArTYFK3DA4hQMq98wpIYGSsVsEur ilXjT1EIurp2uI2JgK6XCSTbVMz65fu8QfVQki6tBotDnqibu1JtBM0XRHzyCWWu bw3NmDf+FUrT7HTIUwS0IWzJawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkmcbMj 29gTCgliDqlImLe48fmEMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQD5JunenrXaodFFCee7Opu6Irr0PV4O24cCeSvnhPdArTh4NjhNp7Wj gsX7us/r8lUCohrXl+cOxYDLvWlQ17/Vnstargqf+11u7ebev3c4iizlVRfKMMu8 ByuW4CaYg09tlqi6COYVPkZRDoC1/aqw1bmwAM8aVm98RG8WP9sdXAgy2Ukcxvv1 BkgOGW+KUGSHPwqXQ1fDueAXayJWYqETKIJEYUPt4nSxFlV6SgWFzz2WiAe3uwyi L3Ey+fQoUBthafBLgbnBOaRoGe+/8OQCdILwkKkBPRFceEr2tvc8dkaWyVv8BER0 ORb/A1AIUMXokhqk3WHNBYnz1CwNAoP7 -----END CERTIFICATE-----Generated at Sat Apr 26 05:27:41 2025 by rpki-client