$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: fFH12Hp849yKnGQl3SJKKMxz9luYmFahkwkP7BjkZHE= Subject key identifier: 01:58:76:8A:64:EA:DF:24:63:70:A5:B5:C9:DD:BE:C4:5F:59:E0:8A Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A65 Signing time: Thu 24 Apr 2025 19:32:59 +0000 Manifest this update: Thu 24 Apr 2025 19:32:59 +0000 Manifest next update: Thu 01 May 2025 19:32:59 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: COgVVNjxOMSmMPs2My/L2GNAIlNCBIipz5zhaN7apU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2670 (0xa6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Apr 24 19:32:59 2025 GMT Not After : May 1 19:32:59 2025 GMT Subject: CN=680a91eb-69e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7f:81:4b:00:45:4f:f6:e0:57:f9:ba:5a:eb: bb:dd:56:d2:10:e6:25:16:90:e3:3a:fd:74:38:53: 50:f3:fe:21:a2:e3:4b:2b:68:44:85:56:79:88:fd: 34:89:ca:c5:24:3f:26:ad:4c:67:9c:dd:09:3f:9a: 4d:d1:7e:93:9c:a2:4a:ae:01:be:5e:c5:c6:11:67: 7a:f4:f1:07:3b:9e:b4:93:9d:1f:f8:99:80:64:12: e2:d6:30:f3:c9:53:fa:29:9f:4b:7c:6e:66:54:a5: 3c:0c:fa:ef:32:57:3d:06:9c:80:d6:26:3d:c1:f8: f3:e2:3a:ec:09:88:66:a9:a1:d0:2d:79:27:2e:0b: 4e:bc:8e:fd:d7:a3:9d:e7:ee:cd:18:a9:29:cd:95: 1a:c4:5c:50:0d:c4:01:7a:6f:e7:4e:ea:2c:01:52: b4:92:28:1a:fe:bd:09:20:51:1c:0f:8c:84:e7:dd: 65:0c:1f:ff:f9:6d:67:ce:7b:ea:53:af:ab:db:17: a0:a7:54:3c:de:84:e0:e2:b9:b9:60:ab:a5:24:ea: 95:8a:33:58:9e:65:55:f4:54:35:84:ba:a4:06:4c: 6c:2d:db:29:33:a1:4b:a6:f8:5d:ef:f5:89:c2:a1: 13:e3:95:fe:07:bd:d8:9a:97:c0:84:1c:80:e7:36: b5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:58:76:8A:64:EA:DF:24:63:70:A5:B5:C9:DD:BE:C4:5F:59:E0:8A X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:8d:44:46:46:51:d6:05:2f:44:92:59:96:d6:72:d6:15:a1: c4:ce:65:84:21:ff:0a:87:a9:aa:5e:36:db:8a:c2:0b:20:b6: f3:38:18:a3:5e:05:16:21:94:f5:32:c1:9e:aa:41:64:7c:58: 76:20:5f:80:5f:0d:c4:9f:b8:c6:d2:39:ce:6b:2b:ec:e6:fd: be:07:a3:96:3c:67:ed:88:6d:50:53:cb:51:45:1c:94:e1:3e: 81:b7:26:94:6a:7a:82:7a:70:2d:6b:0e:9c:3b:81:1b:d1:0a: 7e:58:38:c9:66:e9:55:12:f5:fa:31:3b:8d:c5:02:cd:73:5c: f8:d9:8b:f3:35:c1:6c:d5:3f:b5:b5:b8:38:70:96:99:2c:47: f4:f8:46:f9:d4:8b:b7:4c:d6:11:99:8d:0c:75:12:95:5b:c6: ef:6d:71:ce:94:23:51:6e:ee:51:c4:bb:ae:b5:e0:64:e8:2e: af:19:22:cb:0e:13:7f:d7:72:5e:34:33:ff:bc:5a:30:a8:6d: f4:33:43:ed:cf:2a:e2:f9:1d:4c:dc:0c:1e:95:b9:77:5a:3a: 47:cf:59:53:48:ba:8e:03:23:64:01:af:8a:05:76:a9:92:58: f5:a1:13:31:ab:fe:ed:79:dd:e4:17:1b:c8:30:1e:f2:54:38: b6:d8:b2:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNDI0MTkzMjU5WhcNMjUwNTAxMTkzMjU5WjAYMRYwFAYD VQQDEw02ODBhOTFlYi02OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3+BSwBFT/bgV/m6Wuu73VbSEOYlFpDjOv10OFNQ8/4houNLK2hEhVZ5iP00 icrFJD8mrUxnnN0JP5pN0X6TnKJKrgG+XsXGEWd69PEHO560k50f+JmAZBLi1jDz yVP6KZ9LfG5mVKU8DPrvMlc9BpyA1iY9wfjz4jrsCYhmqaHQLXknLgtOvI7916Od 5+7NGKkpzZUaxFxQDcQBem/nTuosAVK0kiga/r0JIFEcD4yE591lDB//+W1nznvq U6+r2xegp1Q83oTg4rm5YKulJOqVijNYnmVV9FQ1hLqkBkxsLdspM6FLpvhd7/WJ wqET45X+B73YmpfAhByA5za19wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFYdopk 6t8kY3CltcndvsRfWeCKMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIjURGRlHWBS9EklmW1nLWFaHEzmWEIf8Kh6mqXjbbisILILbzOBij XgUWIZT1MsGeqkFkfFh2IF+AXw3En7jG0jnOayvs5v2+B6OWPGftiG1QU8tRRRyU 4T6BtyaUanqCenAtaw6cO4Eb0Qp+WDjJZulVEvX6MTuNxQLNc1z42YvzNcFs1T+1 tbg4cJaZLEf0+Eb51Iu3TNYRmY0MdRKVW8bvbXHOlCNRbu5RxLuuteBk6C6vGSLL DhN/13JeNDP/vFowqG30M0Ptzyri+R1M3Awelbl3WjpHz1lTSLqOAyNkAa+KBXap klj1oRMxq/7ted3kFxvIMB7yVDi22LKG -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:26 2025 by rpki-client