$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft File: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft (raw, json) Hash identifier: 1Jv31WphJ2kZFCD+VdIjLh8mtrMDx5GYKtmLYz8zH5k= Subject key identifier: 95:DF:25:FD:C4:EB:D6:5F:20:15:67:42:A3:9E:0E:F4:30:E8:64:37 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft Manifest number: 016B Signing time: Fri 25 Apr 2025 02:59:20 +0000 Manifest this update: Fri 25 Apr 2025 02:59:19 +0000 Manifest next update: Fri 02 May 2025 02:59:19 +0000 Files and hashes: 1: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl (hash: GknxWhRw2OOuKbqaNIe89rB52FkivMgZFl0JeK7E9Z8=) 2: 62923A1EF2B711EDAA29717AC4F9AE02.roa (hash: ZZdPnVowwXd341PXeuTZoAzmaTvlltdwYKchQCyVQrk=) 3: 631D6D82F2B711EDAA29717AC4F9AE02.roa (hash: qWWNyKzcmb7NGh+jIMofc7R/HFDVXogw0r/eVAACwfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Apr 25 02:59:19 2025 GMT Not After : May 2 02:59:19 2025 GMT Subject: CN=680afa88-de95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ad:f8:6d:66:09:62:cc:43:ff:94:06:ff:cf: e9:24:bb:b3:6c:01:b4:b3:10:ee:e4:3d:57:06:f4: e6:5e:9b:a3:c7:4b:27:48:62:95:6f:3b:14:4a:ad: 1d:1a:f8:11:8a:ab:c4:aa:38:6f:e1:f1:f8:2a:29: 54:91:e0:51:27:73:a2:88:35:c3:2c:d4:b3:77:77: bc:f1:66:7a:f5:05:91:7f:3e:6f:f0:59:b0:70:a3: 52:ae:e2:6a:3d:39:16:d7:e0:29:66:f3:50:24:04: e4:8f:57:c7:69:a0:58:e5:5e:3a:bc:7f:ac:a6:42: 9d:25:77:87:03:88:9f:60:b5:c6:b6:91:56:06:b3: 09:c2:21:f0:9e:1b:ae:8e:66:cf:06:5d:df:ba:18: fe:1f:6f:1e:e9:6e:65:67:f0:2f:14:61:d2:d7:02: 36:8a:bf:91:14:8b:c9:c2:f7:e9:d6:f2:fb:df:94: 96:2b:2d:6e:48:74:11:f1:28:ce:a6:a0:cd:48:44: e9:1d:f7:b1:d2:d6:31:e2:0d:5e:fc:79:f2:f4:6a: 73:4b:5d:45:8d:33:eb:6a:c2:58:a2:dd:46:ac:50: 78:49:06:b9:c9:5c:fc:12:30:9f:ca:9d:5a:cb:00: b8:97:20:4e:67:f9:9e:b1:e9:ae:b4:15:db:c1:69: a3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DF:25:FD:C4:EB:D6:5F:20:15:67:42:A3:9E:0E:F4:30:E8:64:37 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:25:67:a3:8e:e1:9d:61:52:60:a6:23:4f:5f:fc:94:21:4e: e5:bc:0b:fe:41:f2:74:2d:fa:13:fa:f5:4f:ff:08:a1:2d:b7: 95:9f:c5:4b:3a:59:b4:5d:85:6d:8c:99:c4:8a:95:81:3e:d0: 04:d0:f8:5e:1c:81:64:d5:82:a2:08:66:26:2a:c8:8a:90:4b: 1e:23:10:ce:69:6a:4f:d1:3b:91:17:79:f9:ba:f7:ad:10:8b: bf:bf:24:67:30:e7:8d:5f:bc:7e:4a:a3:67:c2:f4:1f:5f:56: 9f:17:7f:b0:ac:96:c8:69:0a:6e:d9:82:b0:c2:58:d3:fa:21: 6f:5a:2e:d6:52:fa:fb:06:7e:29:64:9c:c2:6b:64:f9:e6:82: 6f:d3:cc:22:a5:f8:49:08:19:b9:2b:34:0f:f0:76:8a:1e:d0: 1a:0a:cd:e6:f7:fc:f7:26:fe:9a:4e:e1:11:30:dd:3e:4c:52: 2c:07:9d:87:88:6a:0d:40:6a:a2:f1:dd:8c:61:2d:88:51:ce: 73:85:a7:03:b0:f4:23:f8:24:97:94:bf:87:f3:a1:63:87:1c: c6:51:29:1d:3d:9c:da:0d:ac:a7:81:0e:81:0b:70:c3:a3:1e: 22:cc:dc:01:e2:c6:71:26:8e:db:9a:7c:13:22:74:84:25:9b: d4:25:f0:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjUwNDI1MDI1OTE5WhcNMjUwNTAyMDI1OTE5WjAYMRYwFAYD VQQDEw02ODBhZmE4OC1kZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp634bWYJYsxD/5QG/8/pJLuzbAG0sxDu5D1XBvTmXpujx0snSGKVbzsUSq0d GvgRiqvEqjhv4fH4KilUkeBRJ3OiiDXDLNSzd3e88WZ69QWRfz5v8FmwcKNSruJq PTkW1+ApZvNQJATkj1fHaaBY5V46vH+spkKdJXeHA4ifYLXGtpFWBrMJwiHwnhuu jmbPBl3fuhj+H28e6W5lZ/AvFGHS1wI2ir+RFIvJwvfp1vL735SWKy1uSHQR8SjO pqDNSETpHfex0tYx4g1e/Hny9GpzS11FjTPrasJYot1GrFB4SQa5yVz8EjCfyp1a ywC4lyBOZ/mesemutBXbwWmjKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXfJf3E 69ZfIBVnQqOeDvQw6GQ3MB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzlFMi83M0FGMkY3QUYyQjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlD LUFrT0xBMkdfU3c2WVRNTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8JWejjuGdYVJgpiNPX/yUIU7lvAv+QfJ0LfoT+vVP/wihLbeVn8VL Olm0XYVtjJnEipWBPtAE0PheHIFk1YKiCGYmKsiKkEseIxDOaWpP0TuRF3n5uvet EIu/vyRnMOeNX7x+SqNnwvQfX1afF3+wrJbIaQpu2YKwwljT+iFvWi7WUvr7Bn4p ZJzCa2T55oJv08wipfhJCBm5KzQP8HaKHtAaCs3m9/z3Jv6aTuERMN0+TFIsB52H iGoNQGqi8d2MYS2IUc5zhacDsPQj+CSXlL+H86FjhxzGUSkdPZzaDayngQ6BC3DD ox4izNwB4sZxJo7bmnwTInSEJZvUJfAO -----END CERTIFICATE-----Generated at Sat Apr 26 12:50:58 2025 by rpki-client