$ rpki-client -vvf rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft File: OWpdnmemeQypf7kxMEtE57CoIc8.mft (raw, json) Hash identifier: O3w4+6hHzs7Fva45GmmOC0opiFV5iJTyCIWkOiYMT34= Subject key identifier: 1C:87:71:27:CA:95:D6:66:93:3B:E9:FE:A1:25:B2:08:5C:1B:53:74 Authority key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF Certificate issuer: /CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Certificate serial: 08C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft Manifest number: 08BF Signing time: Thu 24 Apr 2025 20:21:52 +0000 Manifest this update: Thu 24 Apr 2025 20:21:51 +0000 Manifest next update: Thu 01 May 2025 20:21:51 +0000 Files and hashes: 1: OWpdnmemeQypf7kxMEtE57CoIc8.crl (hash: NLnUVrzBzxIgx7oU4I9lf4V/NmNFpgvAneg2NyDfh4Q=) 2: 442D6434B14411EAB852C134C4F9AE02.roa (hash: OW9lsUV5oixQaepXd0o9wvP+ydFKTMRn+aOMtcrsIqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2249 (0x8c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915664E, serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Validity Not Before: Apr 24 20:21:51 2025 GMT Not After : May 1 20:21:51 2025 GMT Subject: CN=680a9d60-3779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:20:cd:23:b9:df:92:b1:1a:6b:69:35:b9:60: fd:7e:4e:54:83:03:ad:3b:13:c6:db:75:92:66:6f: 0f:5c:b2:59:8c:96:b4:4b:44:9d:01:bf:65:69:e9: 2d:08:ba:bc:ad:ff:41:56:91:74:36:e8:1f:87:fb: 66:02:75:94:64:3b:d1:2b:97:02:c5:0d:30:c4:e5: 95:57:4f:b5:3f:b2:ae:8a:81:6b:41:fe:ff:2f:e4: 80:cc:bb:80:a2:62:84:45:18:c7:02:83:63:99:42: 88:6d:f2:59:55:f6:66:f9:df:bb:b4:78:28:3d:c4: c0:b6:9a:ad:dd:3f:02:4f:c5:d1:ef:e7:b6:d0:23: f1:e2:c2:66:08:8a:c9:c9:9a:e8:3d:14:ba:1d:d2: 21:c5:27:64:89:78:a5:68:ce:51:49:7f:de:ca:49: 1e:23:73:2a:b9:5e:2c:e2:1c:08:42:96:bc:9b:ba: 12:71:50:5d:2e:1e:09:e1:59:56:ff:6c:86:ea:25: 68:ac:a9:85:25:99:45:2c:9b:60:90:19:eb:0b:52: 34:c0:bc:32:f4:f6:76:57:7e:36:da:26:95:7f:c0: 32:a8:e2:cd:9a:c5:76:98:5f:db:3b:45:c6:35:9b: 13:67:77:ca:54:7e:37:76:35:d5:a6:d0:ec:12:03: 06:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:87:71:27:CA:95:D6:66:93:3B:E9:FE:A1:25:B2:08:5C:1B:53:74 X509v3 Authority Key Identifier: keyid:39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e3:2d:76:39:3b:e3:a1:4d:de:50:f3:4c:6e:05:05:d4:42: 37:67:9a:79:b0:b7:96:9b:32:d6:42:8d:ee:8e:cb:1d:88:04: 41:cb:08:93:00:fa:e8:ec:d5:9a:9d:54:c3:b4:f6:64:36:17: 2e:fa:20:00:1f:81:a9:a2:41:ef:28:ef:e5:19:06:a8:b0:25: 0c:a3:c8:34:32:11:ae:9b:bd:13:37:26:c2:4d:d3:80:70:a9: 3e:b1:59:11:84:e4:80:ad:cd:3b:c1:d7:95:81:33:5b:20:2c: b3:1b:82:1b:68:90:c6:8b:96:2a:3c:21:1a:a4:17:0a:ad:61: 6c:bd:50:dd:08:e4:c8:34:dc:77:22:9d:c5:41:27:bc:27:d1: 99:56:08:e7:0f:f8:6b:d5:74:7d:6a:ea:9c:ed:58:d5:fb:a7: 62:1c:b4:07:4d:19:cb:62:c7:38:a3:6e:c7:67:06:c8:0e:ff: 03:5b:9c:8c:b9:40:e1:f9:47:99:5c:ff:96:ec:f9:ca:87:4e: 10:d6:16:e2:eb:a7:04:08:92:e5:cd:fe:cd:72:b1:e7:d1:d8: f8:12:8e:8a:cc:96:43:de:79:45:1d:07:e5:d8:85:d8:28:d2: dc:da:b6:dd:0b:9e:c5:59:05:ca:8e:17:15:7e:2a:8b:7b:8c: 8d:17:e3:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkzMTMwNEI0NEU3 QjBBODIxQ0YwHhcNMjUwNDI0MjAyMTUxWhcNMjUwNTAxMjAyMTUxWjAYMRYwFAYD VQQDEw02ODBhOWQ2MC0zNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySDNI7nfkrEaa2k1uWD9fk5UgwOtOxPG23WSZm8PXLJZjJa0S0SdAb9laekt CLq8rf9BVpF0Nugfh/tmAnWUZDvRK5cCxQ0wxOWVV0+1P7KuioFrQf7/L+SAzLuA omKERRjHAoNjmUKIbfJZVfZm+d+7tHgoPcTAtpqt3T8CT8XR7+e20CPx4sJmCIrJ yZroPRS6HdIhxSdkiXilaM5RSX/eykkeI3MquV4s4hwIQpa8m7oScVBdLh4J4VlW /2yG6iVorKmFJZlFLJtgkBnrC1I0wLwy9PZ2V3422iaVf8AyqOLNmsV2mF/bO0XG NZsTZ3fKVH43djXVptDsEgMG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByHcSfK ldZmkzvp/qElsghcG1N0MB8GA1UdIwQYMBaAFDlqXZ5npnkMqX+5MTBLROewqCHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjY0RS9CNDZBOUMxRUIx M0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVReXBmN2t4TUV0RTU3Q29J YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09XcGRubWVtZVF5cGY3a3hNRXRFNTdDb0ljOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVR eXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW4y12OTvjoU3eUPNMbgUF1EI3Z5p5sLeWmzLWQo3ujssdiARBywiT APro7NWanVTDtPZkNhcu+iAAH4GpokHvKO/lGQaosCUMo8g0MhGum70TNybCTdOA cKk+sVkRhOSArc07wdeVgTNbICyzG4IbaJDGi5YqPCEapBcKrWFsvVDdCOTINNx3 Ip3FQSe8J9GZVgjnD/hr1XR9auqc7VjV+6diHLQHTRnLYsc4o27HZwbIDv8DW5yM uUDh+UeZXP+W7PnKh04Q1hbi66cECJLlzf7NcrHn0dj4Eo6KzJZD3nlFHQfl2IXY KNLc2rbdC57FWQXKjhcVfiqLe4yNF+Py -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:25 2025 by rpki-client