$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: j8m7k3GDdxftTqJlytieN3IEMiINLlgn7YAxl9hI2yM= Subject key identifier: 75:EB:A9:B2:C8:FD:AC:F7:15:02:F9:60:8B:27:E9:AB:57:C4:84:15 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 172D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1719 Signing time: Thu 24 Apr 2025 16:39:09 +0000 Manifest this update: Thu 24 Apr 2025 16:39:09 +0000 Manifest next update: Thu 01 May 2025 16:39:09 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: mboghXj0yvb8H3ZySEpehLsPA/Cd9LKGFH3SsAd75rw=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5933 (0x172d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Apr 24 16:39:09 2025 GMT Not After : May 1 16:39:09 2025 GMT Subject: CN=680a692d-c51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:e5:63:e8:b4:a5:09:f2:60:dc:b1:ce:04: 6c:dd:46:30:a6:8b:9e:0b:a8:4d:d5:81:b5:12:c6: 88:1e:0d:48:bd:15:81:8f:8d:e5:20:d7:7f:33:51: b8:fd:eb:92:33:00:c0:85:5a:99:3b:b7:ed:b0:2d: 69:19:2d:82:93:90:2a:5e:5a:05:8a:ff:8e:e2:08: a0:9c:d6:a7:6f:ef:f7:8f:1a:3d:93:39:cc:9d:4e: a0:d2:03:49:8a:c0:35:91:c4:af:6a:d8:84:ca:3c: de:af:20:44:13:ad:0b:27:ac:2e:f5:17:19:63:03: 56:59:87:53:1e:fb:69:57:59:68:09:7a:88:cf:7c: c8:7f:b0:de:f1:50:d0:63:90:a9:a9:a0:10:87:61: 8b:2c:76:a7:b5:88:aa:de:85:90:af:d1:a1:94:ed: db:d8:f3:0b:08:3a:cb:c6:5c:76:9b:10:38:c9:8e: e2:53:34:36:5d:65:2b:e3:82:fe:b3:fb:ad:7d:d9: 5d:b3:2e:ca:30:b4:de:eb:07:5f:b6:52:a5:df:2e: c0:d5:c6:e0:e8:48:4e:9a:a0:33:eb:e0:1a:7b:a1: fb:b4:7c:79:3b:41:17:92:da:80:d7:d1:71:09:57: ce:12:07:93:af:67:bb:89:2e:4a:c7:6a:e6:88:ec: 4b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EB:A9:B2:C8:FD:AC:F7:15:02:F9:60:8B:27:E9:AB:57:C4:84:15 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:6d:37:6a:01:99:59:bc:d6:81:fc:5c:52:75:ed:91:bf:93: f7:0b:d3:21:ac:3f:58:23:35:15:e1:79:9c:89:f8:28:94:05: c9:9f:ec:3c:84:a0:80:e4:19:46:15:c9:54:3b:31:f8:4e:4d: 78:ac:6f:5d:70:3f:5e:99:10:e8:3f:bd:84:07:ce:ff:a4:1d: b8:e6:4c:42:7e:fa:9f:da:44:91:16:0f:51:83:df:98:c5:8f: 53:4a:93:c3:2b:87:7b:66:fc:eb:92:92:43:82:a2:ff:6a:ec: cf:e1:8c:58:16:84:d5:8d:62:10:02:e7:bc:cc:57:ab:2a:e4: ce:d1:f1:7a:b3:5f:d0:b9:41:b6:21:a9:03:f8:87:9f:81:b0: fd:51:a3:3e:bd:5a:09:54:9c:c9:c1:64:be:ce:5c:77:39:60: cc:cc:81:fa:64:8d:80:bd:49:be:5d:82:bb:0d:0a:93:06:b1: f3:6c:28:13:ec:19:bc:56:2d:86:a5:8c:ba:e4:34:4d:bb:df: 3b:ff:c5:53:0e:d9:3f:ef:83:4e:5c:18:01:7e:88:bb:d0:11: 49:be:be:e9:c8:39:df:68:a4:a5:f1:0e:88:69:ff:df:00:17: 32:31:b1:02:6f:7c:a4:e2:3b:82:25:a4:1b:eb:70:db:4d:15: a2:87:85:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNDI0MTYzOTA5WhcNMjUwNTAxMTYzOTA5WjAYMRYwFAYD VQQDEw02ODBhNjkyZC1jNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWLlY+i0pQnyYNyxzgRs3UYwpoueC6hN1YG1EsaIHg1IvRWBj43lINd/M1G4 /euSMwDAhVqZO7ftsC1pGS2Ck5AqXloFiv+O4gignNanb+/3jxo9kznMnU6g0gNJ isA1kcSvatiEyjzeryBEE60LJ6wu9RcZYwNWWYdTHvtpV1loCXqIz3zIf7De8VDQ Y5CpqaAQh2GLLHantYiq3oWQr9GhlO3b2PMLCDrLxlx2mxA4yY7iUzQ2XWUr44L+ s/utfdldsy7KMLTe6wdftlKl3y7A1cbg6EhOmqAz6+Aae6H7tHx5O0EXktqA19Fx CVfOEgeTr2e7iS5Kx2rmiOxLpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXrqbLI /az3FQL5YIsn6atXxIQVMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5bTdqAZlZvNaB/FxSde2Rv5P3C9MhrD9YIzUV4XmcifgolAXJn+w8 hKCA5BlGFclUOzH4Tk14rG9dcD9emRDoP72EB87/pB245kxCfvqf2kSRFg9Rg9+Y xY9TSpPDK4d7ZvzrkpJDgqL/auzP4YxYFoTVjWIQAue8zFerKuTO0fF6s1/QuUG2 IakD+IefgbD9UaM+vVoJVJzJwWS+zlx3OWDMzIH6ZI2AvUm+XYK7DQqTBrHzbCgT 7Bm8Vi2GpYy65DRNu987/8VTDtk/74NOXBgBfoi70BFJvr7pyDnfaKSl8Q6Iaf/f ABcyMbECb3yk4juCJaQb63DbTRWih4V8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:59:49 2025 by rpki-client