$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: Kf7bjm09mvHhmpZQyLulpmxsARxQGSop8cAsLEJACeg= Subject key identifier: CD:E8:22:60:37:03:48:10:93:71:C5:81:1D:FF:0E:F8:95:25:B0:54 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 07FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 07F5 Signing time: Thu 24 Apr 2025 20:47:41 +0000 Manifest this update: Thu 24 Apr 2025 20:47:41 +0000 Manifest next update: Thu 01 May 2025 20:47:41 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: PZPDXeK/glgEQXkiCgt1P0+vCD4xvM7Q/9gVeBBQZgA=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: rKz6S4ig+3Nn3Uq5Htmq9rz0thwBeC0p821+eve0GW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Apr 24 20:47:41 2025 GMT Not After : May 1 20:47:41 2025 GMT Subject: CN=680aa36d-54b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f5:b0:d0:64:74:8f:d5:ae:b6:08:be:77:9f: 00:c9:51:04:8c:7e:6a:07:eb:78:a1:96:0c:d5:f0: 13:97:de:28:93:c1:a1:b1:58:54:60:62:63:57:fe: 0c:b1:b5:96:e0:7c:28:f4:54:29:49:c3:6e:f4:04: a8:17:f6:8d:02:37:c7:14:43:13:79:87:80:53:10: be:70:8f:15:0c:55:7a:0d:43:5b:27:d8:5f:05:88: df:3a:c4:74:e7:8a:70:bd:9a:4e:f4:6a:77:4b:69: 22:f4:51:ee:81:2b:e5:b8:9f:9e:79:58:09:db:e3: 1b:70:77:45:69:df:bb:90:69:2b:8f:b0:47:9f:89: 98:c9:b2:e1:e7:59:ec:78:e1:04:6b:16:2d:c9:b7: 90:a8:db:53:19:57:7a:5b:e1:1d:e4:b3:57:07:9c: 94:7f:0c:ca:9b:b7:3a:29:49:6c:19:67:e6:68:9f: 68:24:92:33:f7:6f:bb:78:04:bf:dd:e2:45:b1:84: 4b:e4:2b:06:a9:36:5b:c9:8d:52:cb:c9:ff:3b:9c: e6:ee:de:c7:52:a1:68:9f:bf:80:34:28:2d:8e:50: ef:b9:08:71:69:6c:35:18:28:37:45:4b:cd:79:63: c0:ec:0d:05:72:e3:5f:07:89:4c:1f:0d:a7:ac:c4: 05:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:22:60:37:03:48:10:93:71:C5:81:1D:FF:0E:F8:95:25:B0:54 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:0e:b7:32:b3:af:57:f2:38:6c:b7:40:e0:45:f6:4f:30:aa: 03:77:e5:2d:38:63:7a:72:e0:cf:05:43:68:4c:61:20:38:5d: d1:fe:0f:96:29:93:0c:61:54:4e:fa:58:eb:31:1d:b9:6a:fb: 91:6d:d5:44:4c:d0:b0:47:0b:8c:bf:d8:da:9b:0c:21:79:f4: 93:88:72:b6:e0:68:6f:85:64:b7:29:48:73:84:ab:55:55:b8: 3c:2c:45:c6:77:dd:38:c4:5d:e5:4b:3a:ba:9e:86:d6:da:74: 3c:08:58:6d:f9:93:f7:a3:fc:fd:68:61:4b:fd:e2:b9:60:ab: 49:d5:cd:28:25:eb:54:05:29:97:97:32:a6:e0:6d:0e:60:6e: 84:f0:6d:6e:ab:b4:f0:ca:7d:64:06:24:75:e0:fd:8f:98:9b: ed:c9:87:9f:b1:fb:14:e2:c7:e1:a7:c0:98:15:7a:4a:e6:66: 5b:eb:1d:d5:6b:45:1c:20:88:63:27:09:0f:a9:3a:04:7a:88: 71:3b:cf:f7:44:60:08:fd:0c:88:95:19:85:bc:2e:99:54:a8: 48:80:2b:21:fa:5f:47:f4:0c:49:0a:08:b7:e1:cd:2c:5d:8d: 95:4c:30:25:58:73:2c:b0:40:92:83:49:41:49:4a:e1:68:aa: b2:97:d7:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwNDI0MjA0NzQxWhcNMjUwNTAxMjA0NzQxWjAYMRYwFAYD VQQDEw02ODBhYTM2ZC01NGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvWw0GR0j9Wutgi+d58AyVEEjH5qB+t4oZYM1fATl94ok8GhsVhUYGJjV/4M sbWW4Hwo9FQpScNu9ASoF/aNAjfHFEMTeYeAUxC+cI8VDFV6DUNbJ9hfBYjfOsR0 54pwvZpO9Gp3S2ki9FHugSvluJ+eeVgJ2+MbcHdFad+7kGkrj7BHn4mYybLh51ns eOEEaxYtybeQqNtTGVd6W+Ed5LNXB5yUfwzKm7c6KUlsGWfmaJ9oJJIz92+7eAS/ 3eJFsYRL5CsGqTZbyY1Sy8n/O5zm7t7HUqFon7+ANCgtjlDvuQhxaWw1GCg3RUvN eWPA7A0FcuNfB4lMHw2nrMQFUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3oImA3 A0gQk3HFgR3/DviVJbBUMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBADrcys69X8jhst0DgRfZPMKoDd+UtOGN6cuDPBUNoTGEgOF3R/g+W KZMMYVRO+ljrMR25avuRbdVETNCwRwuMv9jamwwhefSTiHK24GhvhWS3KUhzhKtV Vbg8LEXGd904xF3lSzq6nobW2nQ8CFht+ZP3o/z9aGFL/eK5YKtJ1c0oJetUBSmX lzKm4G0OYG6E8G1uq7Twyn1kBiR14P2PmJvtyYefsfsU4sfhp8CYFXpK5mZb6x3V a0UcIIhjJwkPqToEeohxO8/3RGAI/QyIlRmFvC6ZVKhIgCsh+l9H9AxJCgi34c0s XY2VTDAlWHMssECSg0lBSUrhaKqyl9dL -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:58 2025 by rpki-client