$ rpki-client -vvf rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft File: oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft (raw, json) Hash identifier: hsowRKp4pTohklGX2P7ewlXr7CA3xia533ljfacHOO8= Subject key identifier: 5E:4F:9C:CB:30:60:8F:65:9D:4B:17:95:33:17:B9:08:D3:A0:37:03 Authority key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 Certificate issuer: /CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Certificate serial: 093C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft Manifest number: 0934 Signing time: Thu 24 Apr 2025 20:09:16 +0000 Manifest this update: Thu 24 Apr 2025 20:09:16 +0000 Manifest next update: Thu 01 May 2025 20:09:16 +0000 Files and hashes: 1: oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl (hash: QGoPe4DwWEkps76vqLyYkADV6iWEKJtqdqmzbUoZIKM=) 2: 311647C0896C11EBA85B0747C4F9AE02.roa (hash: X3WvsIakOYYYh6qQ/CNrPJ4rysF4m1jhkYS0mLUaZBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138B72, serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Validity Not Before: Apr 24 20:09:16 2025 GMT Not After : May 1 20:09:16 2025 GMT Subject: CN=680a9a6c-5614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:df:04:02:7d:69:af:16:ab:2c:25:99:f4:69: c2:aa:30:b4:f6:93:c0:3b:25:3e:3e:d7:6a:b7:5d: 01:53:cb:df:cb:bb:59:b2:e8:c5:b3:9c:17:bb:32: 01:84:d0:bc:fd:76:5d:27:30:88:cd:36:ce:72:2b: 42:fd:8d:62:9d:25:fd:e8:e1:b5:c2:08:f5:d1:23: 59:e4:cd:6e:41:58:e6:4d:1a:49:cb:69:a7:5e:ba: 57:29:73:01:28:b4:5d:74:14:81:a9:10:2c:ba:c4: 31:59:20:45:50:e0:19:3a:f4:f0:db:e4:a4:07:9e: 5b:6a:ae:4b:10:11:06:28:23:68:b9:3e:20:83:94: a4:a1:00:eb:48:74:dd:aa:e9:b7:2b:76:91:76:c0: 91:46:cc:b9:6b:b3:e6:9f:8f:70:45:d5:71:ce:19: 38:68:4a:f0:dd:80:64:76:56:e9:a8:6e:4c:29:de: 81:db:a4:da:0a:38:4a:51:2b:15:e0:e0:1e:cb:2e: 94:9c:f1:e9:56:18:82:66:d0:ec:e9:2e:b8:f6:19: d5:0a:d9:89:a9:c0:65:59:63:58:83:6e:b4:ba:fd: f3:2d:66:b0:30:1f:9e:ec:60:02:7e:20:15:6b:59: 70:55:f3:19:0b:1b:4b:8f:f9:09:a0:4f:90:53:ec: 3f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4F:9C:CB:30:60:8F:65:9D:4B:17:95:33:17:B9:08:D3:A0:37:03 X509v3 Authority Key Identifier: keyid:A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:78:06:51:25:3c:0e:da:11:49:7e:b6:08:7a:f2:22:b5:5a: fb:0d:31:d0:04:ac:81:74:ab:f4:56:30:fa:4e:d2:c9:d7:bf: f8:9a:a3:71:f1:70:16:5a:f0:21:46:7a:eb:d7:84:65:9f:f5: 09:18:36:c0:6b:90:cd:9b:5c:58:24:97:67:11:83:fa:0f:7c: ec:2a:80:e5:c4:3a:e9:20:10:94:60:ec:b4:dc:83:a6:75:0e: 19:01:cd:20:3c:0f:1f:c6:e3:88:22:6c:ae:3d:60:25:64:ed: 68:97:b8:2f:c5:95:f2:2c:e4:24:63:a5:d2:52:f5:bc:a1:c8: cb:fc:88:97:eb:76:3a:e3:28:dc:47:bb:74:85:77:ff:c3:9f: 55:2d:9a:16:82:04:f9:cb:e7:ec:d5:a3:a4:d1:b6:a9:ca:73: 3d:4e:55:95:94:ab:e7:f5:21:ad:15:f0:47:60:28:24:e2:eb: fa:7b:9c:47:16:77:b1:c9:40:9f:c4:dd:22:b1:0f:73:3f:43: bf:27:51:5b:60:a3:16:4e:fc:d8:ea:b9:eb:e7:7a:cd:f8:4f: 64:2c:af:21:ad:83:09:dd:72:24:09:fc:ac:86:58:19:8d:93: 2b:6c:2b:41:a5:61:b2:25:1c:e9:a0:f2:c3:15:69:80:d5:53: b8:18:83:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhCNzIxMTAvBgNVBAUTKEEwQ0JCMkNGN0FFRDgzQzIxOTczQzcwQjY0QzBBNDE1 NkM1QkY1RDIwHhcNMjUwNDI0MjAwOTE2WhcNMjUwNTAxMjAwOTE2WjAYMRYwFAYD VQQDEw02ODBhOWE2Yy01NjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd8EAn1prxarLCWZ9GnCqjC09pPAOyU+Ptdqt10BU8vfy7tZsujFs5wXuzIB hNC8/XZdJzCIzTbOcitC/Y1inSX96OG1wgj10SNZ5M1uQVjmTRpJy2mnXrpXKXMB KLRddBSBqRAsusQxWSBFUOAZOvTw2+SkB55baq5LEBEGKCNouT4gg5SkoQDrSHTd qum3K3aRdsCRRsy5a7Pmn49wRdVxzhk4aErw3YBkdlbpqG5MKd6B26TaCjhKUSsV 4OAeyy6UnPHpVhiCZtDs6S649hnVCtmJqcBlWWNYg260uv3zLWawMB+e7GACfiAV a1lwVfMZCxtLj/kJoE+QU+w/QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5PnMsw YI9lnUsXlTMXuQjToDcDMB8GA1UdIwQYMBaAFKDLss967YPCGXPHC2TApBVsW/XS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEI3Mi8xRTQwMEE5QTlB QjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4SVpjOGNMWk1Da0ZXeGI5 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NdXl6M3J0ZzhJWmM4Y0xaTUNrRld4YjlkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEI3Mi8xRTQwMEE5QTlBQjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4 SVpjOGNMWk1Da0ZXeGI5ZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXeAZRJTwO2hFJfrYIevIitVr7DTHQBKyBdKv0VjD6TtLJ17/4mqNx 8XAWWvAhRnrr14Rln/UJGDbAa5DNm1xYJJdnEYP6D3zsKoDlxDrpIBCUYOy03IOm dQ4ZAc0gPA8fxuOIImyuPWAlZO1ol7gvxZXyLOQkY6XSUvW8ocjL/IiX63Y64yjc R7t0hXf/w59VLZoWggT5y+fs1aOk0bapynM9TlWVlKvn9SGtFfBHYCgk4uv6e5xH FnexyUCfxN0isQ9zP0O/J1FbYKMWTvzY6rnr53rN+E9kLK8hrYMJ3XIkCfyshlgZ jZMrbCtBpWGyJRzpoPLDFWmA1VO4GINv -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:31 2025 by rpki-client