$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: FlB8AmUyWunV71kMWYqVLXjgBuqxSPgS+xoq5t3j0f8= Subject key identifier: 1B:55:75:15:7E:FF:50:0C:A5:0F:3E:3A:0D:8C:73:4E:78:C6:CA:7E Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 09FB Signing time: Thu 24 Apr 2025 19:47:37 +0000 Manifest this update: Thu 24 Apr 2025 19:47:37 +0000 Manifest next update: Thu 01 May 2025 19:47:37 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: dj8BOL2qXuuEtq48zoxKFSQ5/6XK+fvI/AcNh7Tkb6I=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: Xr0kUKQZvKHV+XXy5dNfpEHtkH4Lcw1pk0TaWeYnQ8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Apr 24 19:47:37 2025 GMT Not After : May 1 19:47:37 2025 GMT Subject: CN=680a9559-d3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:6f:b5:77:bc:2c:e6:46:fc:da:02:b5:a3: fe:b1:1e:91:f7:eb:b4:ec:92:cd:1e:c8:3f:3b:94: 31:c9:be:ba:5b:2f:ca:8d:06:10:51:38:b7:29:a9: c4:42:70:d1:7e:80:4e:fa:e2:54:08:55:70:cc:bc: 84:76:71:ca:4c:ea:2d:c4:9a:dc:35:50:24:c9:29: 3b:5a:98:f2:8f:32:8d:c7:48:cc:68:44:c9:dc:8e: 5e:5a:4c:4f:92:71:77:85:33:5e:de:89:e5:9e:e0: 17:31:33:f8:53:81:48:48:70:df:fe:ce:19:60:8b: 4f:83:fa:f7:e0:e3:17:87:c1:d9:b7:e3:b2:64:cd: 8a:4c:42:17:6d:03:d9:8b:3f:29:b0:3e:6f:49:ee: b0:6e:76:ba:86:89:25:04:5b:0b:a8:fd:35:64:a0: f9:56:93:b4:9b:54:b6:5d:f5:ac:ae:e6:8f:57:d0: 5f:c9:08:5f:3d:ef:63:1a:32:ec:e3:14:a7:25:b9: 3e:97:a6:d5:c7:72:05:44:7a:7f:bb:84:08:e1:d3: c3:7f:ae:02:92:e2:95:08:ff:2a:4f:1c:70:ed:5d: f7:82:99:98:92:2b:b2:11:a1:2b:86:86:19:3d:ca: 05:bd:2e:c6:29:c5:17:73:96:c4:93:5e:46:7f:f6: 0a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:55:75:15:7E:FF:50:0C:A5:0F:3E:3A:0D:8C:73:4E:78:C6:CA:7E X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:37:35:8c:bc:09:df:93:f9:09:a7:08:42:96:1d:48:2d:d2: 1d:46:03:0e:b8:08:7d:54:c4:45:b2:bf:9e:0a:bc:58:41:95: 18:43:d0:42:00:7f:ea:14:ac:08:bd:47:d8:4c:6f:0d:3a:64: 8f:bc:fd:3a:38:c6:84:65:f1:58:b8:e6:62:0f:8c:6b:c8:47: c4:51:d7:ca:c7:b7:0a:7f:94:a2:19:c7:db:e9:70:f7:00:59: f9:6c:ba:ef:bb:7b:06:aa:32:17:b2:87:8b:98:69:b0:c8:9e: 73:5c:e1:21:23:c7:9f:ef:f9:82:ae:6e:96:dc:55:6b:0a:84: 10:4b:07:5c:ab:cd:42:c1:2f:13:1b:87:e7:8a:9a:d4:4d:a7: ff:87:4b:26:d6:04:1e:cb:c1:ad:b8:6e:df:29:40:72:02:15: f8:ca:d8:a5:ff:00:38:a0:6b:64:ea:1d:0c:f3:22:25:d4:69: 97:47:a4:e5:53:c4:23:a3:a0:14:cc:af:ee:21:c4:94:f3:06: 5a:78:b2:d1:93:98:df:8c:1f:a6:e9:2d:ac:be:d3:b5:dc:5c: 26:1d:92:a2:2e:43:79:19:65:7c:18:be:e7:38:78:f4:42:f4: 1c:0e:46:bb:8f:f6:3b:a9:26:5a:21:96:07:4b:09:01:3d:45: 6e:ea:f4:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUwNDI0MTk0NzM3WhcNMjUwNTAxMTk0NzM3WjAYMRYwFAYD VQQDEw02ODBhOTU1OS1kM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwINvtXe8LOZG/NoCtaP+sR6R9+u07JLNHsg/O5Qxyb66Wy/KjQYQUTi3KanE QnDRfoBO+uJUCFVwzLyEdnHKTOotxJrcNVAkySk7WpjyjzKNx0jMaETJ3I5eWkxP knF3hTNe3onlnuAXMTP4U4FISHDf/s4ZYItPg/r34OMXh8HZt+OyZM2KTEIXbQPZ iz8psD5vSe6wbna6hoklBFsLqP01ZKD5VpO0m1S2XfWsruaPV9BfyQhfPe9jGjLs 4xSnJbk+l6bVx3IFRHp/u4QI4dPDf64CkuKVCP8qTxxw7V33gpmYkiuyEaErhoYZ PcoFvS7GKcUXc5bEk15Gf/YKBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtVdRV+ /1AMpQ8+Og2Mc054xsp+MB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4NzWMvAnfk/kJpwhClh1ILdIdRgMOuAh9VMRFsr+eCrxYQZUYQ9BC AH/qFKwIvUfYTG8NOmSPvP06OMaEZfFYuOZiD4xryEfEUdfKx7cKf5SiGcfb6XD3 AFn5bLrvu3sGqjIXsoeLmGmwyJ5zXOEhI8ef7/mCrm6W3FVrCoQQSwdcq81CwS8T G4fniprUTaf/h0sm1gQey8GtuG7fKUByAhX4ytil/wA4oGtk6h0M8yIl1GmXR6Tl U8Qjo6AUzK/uIcSU8wZaeLLRk5jfjB+m6S2svtO13FwmHZKiLkN5GWV8GL7nOHj0 QvQcDka7j/Y7qSZaIZYHSwkBPUVu6vRc -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:21 2025 by rpki-client