$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: oPL7OkzwH0owNSgkrwcPMwxXWm/7faZzUuIZo4klT7M= Subject key identifier: D2:61:15:8C:01:E4:85:4E:36:F7:AB:FE:24:D2:D9:33:87:6E:33:08 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 096B Signing time: Fri 25 Apr 2025 06:24:10 +0000 Manifest this update: Fri 25 Apr 2025 06:24:09 +0000 Manifest next update: Fri 02 May 2025 06:24:09 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: 7MLq5m7C9lYSU10K/6lH6wqcb/WvvS7KPTq+m/B4u1I=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: cKLqzBD3UNEjua94H34t+S8hZV/aOFg8bXhQVhmFTLs=) 3: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: Bpq9dhCpjI1cT2kel0jPo45D0NBWXD/qIfwghmBzSyI=) 4: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: Sc37SATsVjDUvoeuant9XpguxSfk6BLAFRWRVkPZh+Q=) 5: 01A34AA220D911F08E8B910BC4F9AE02.roa (hash: rRSZwuyNniJRhYgMcIbEH1c39jOVJWRBcxSW3fXY+nI=) 6: 183EB332F56911EFA13C606AC4F9AE02.roa (hash: /9QKDX3FStORICkoflQCZVxfwpI3R14TnJXoMA+IsWE=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: PTN3D9DukvxulJCnZfplXeEJi7h63+XDY8ZJvEz9E/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2838 (0xb16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Apr 25 06:24:09 2025 GMT Not After : May 2 06:24:09 2025 GMT Subject: CN=680b2a89-34f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:09:91:15:7d:5f:ed:81:19:44:f2:43:4a:cd: 49:73:af:87:c1:47:84:12:08:d5:d3:9f:db:f8:2c: 9b:0e:41:dc:be:72:a5:ab:7a:af:2e:ff:bc:03:65: d1:c3:9f:69:74:0a:ba:d6:43:99:ba:62:f2:11:93: a9:78:60:b2:d4:1d:e0:2e:19:b9:0f:76:fd:47:21: e0:27:a9:d7:b8:c5:ed:8e:ce:ee:46:23:c0:b0:c6: ac:ec:ca:68:0a:de:ad:d3:71:a0:a8:52:4e:eb:05: d4:a5:ea:c8:a1:fd:e9:7e:ab:fc:fa:9f:92:a0:57: b2:a5:f7:0d:93:a4:a7:95:40:c2:a9:7a:a9:ee:47: a1:d5:ef:85:ef:c3:97:a3:7d:50:e8:55:87:5c:e1: 89:84:0d:e7:12:0f:fc:bc:b0:59:22:12:e8:07:81: 21:48:6b:8a:ba:c4:93:b4:57:7f:e1:20:35:a5:9c: 3f:12:a8:e3:87:94:9d:78:8e:a6:2c:3b:1e:83:30: 5f:cb:91:c4:90:df:8f:ac:cc:f5:f5:66:a1:57:a2: 7d:e3:4e:14:fe:9d:30:43:33:f2:69:e4:d3:14:a4: 06:26:59:58:e6:08:78:3e:2f:6c:8f:eb:fd:bb:38: fc:27:5b:94:b3:e0:ae:62:60:1d:d5:dd:c5:15:51: 48:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:61:15:8C:01:E4:85:4E:36:F7:AB:FE:24:D2:D9:33:87:6E:33:08 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:56:46:e5:8e:f6:df:29:41:74:c0:0a:e9:07:90:b9:d6:09: 7e:14:c1:a6:c5:85:c3:6e:13:98:6d:58:a0:91:46:76:bc:9e: e6:1e:d6:94:90:de:53:82:79:23:6d:8a:77:ca:bd:74:7c:e4: 14:78:c7:5a:0f:69:04:82:c2:49:a6:5b:0e:d4:ea:83:7c:fd: ac:50:e8:af:54:89:8e:55:d7:eb:9c:11:73:e1:e8:7f:48:c9: 97:bc:cc:05:3f:dc:19:fb:51:66:53:89:f1:61:ee:3d:34:18: 51:8f:1d:8f:86:ee:17:26:f6:d5:ac:80:9d:1f:85:0c:9c:69: 39:07:5d:c6:52:e2:92:4d:36:1f:ed:56:ec:5d:8a:6e:d1:b0: f0:d1:44:4d:27:0d:30:a5:f0:d2:4b:a0:05:e3:5f:1b:56:ae: df:0a:1e:a0:02:5a:34:1c:b0:7c:08:ad:03:f3:88:e2:ab:01: ba:9d:9e:1c:d3:69:d9:3c:cc:02:83:b2:fa:8a:0d:f4:b1:fe: fd:1f:68:a4:b4:e2:ef:70:59:97:fd:d8:68:ae:96:f7:9e:ae: 7c:26:a3:f6:3b:a8:a7:61:a5:e5:ae:1d:ae:23:b6:eb:2b:fd: 56:f9:22:7c:67:63:a7:aa:12:2d:94:23:6c:2d:e5:59:08:a6: 04:5c:87:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNDI1MDYyNDA5WhcNMjUwNTAyMDYyNDA5WjAYMRYwFAYD VQQDEw02ODBiMmE4OS0zNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8AmRFX1f7YEZRPJDSs1Jc6+HwUeEEgjV05/b+CybDkHcvnKlq3qvLv+8A2XR w59pdAq61kOZumLyEZOpeGCy1B3gLhm5D3b9RyHgJ6nXuMXtjs7uRiPAsMas7Mpo Ct6t03GgqFJO6wXUperIof3pfqv8+p+SoFeypfcNk6SnlUDCqXqp7keh1e+F78OX o31Q6FWHXOGJhA3nEg/8vLBZIhLoB4EhSGuKusSTtFd/4SA1pZw/Eqjjh5SdeI6m LDsegzBfy5HEkN+PrMz19WahV6J9404U/p0wQzPyaeTTFKQGJllY5gh4Pi9sj+v9 uzj8J1uUs+CuYmAd1d3FFVFIdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJhFYwB 5IVONver/iTS2TOHbjMIMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjVkbljvbfKUF0wArpB5C51gl+FMGmxYXDbhOYbVigkUZ2vJ7mHtaU kN5TgnkjbYp3yr10fOQUeMdaD2kEgsJJplsO1OqDfP2sUOivVImOVdfrnBFz4eh/ SMmXvMwFP9wZ+1FmU4nxYe49NBhRjx2Phu4XJvbVrICdH4UMnGk5B13GUuKSTTYf 7VbsXYpu0bDw0URNJw0wpfDSS6AF418bVq7fCh6gAlo0HLB8CK0D84jiqwG6nZ4c 02nZPMwCg7L6ig30sf79H2iktOLvcFmX/dhorpb3nq58JqP2O6inYaXlrh2uI7br K/1W+SJ8Z2OnqhItlCNsLeVZCKYEXIcE -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:06 2025 by rpki-client