$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: SDryjE8zsPpOGJh21WLRwoW40bPARuHRYqpLfnZziF4= Subject key identifier: C7:FA:94:B8:70:E9:7D:20:77:FE:26:F5:98:3C:D9:69:9F:56:66:F7 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 0105 Signing time: Fri 25 Apr 2025 04:07:14 +0000 Manifest this update: Fri 25 Apr 2025 04:07:13 +0000 Manifest next update: Fri 02 May 2025 04:07:13 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: e2G9tqraMu0iyxfS02daIJtVlb6SWEjCGmPBe5aJJCk=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: nLAI2KpHv4yGG3LNJRHSRrSrOVvhwD5I70+pJLgB34A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Apr 25 04:07:13 2025 GMT Not After : May 2 04:07:13 2025 GMT Subject: CN=680b0a71-4168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5d:3e:48:26:ae:49:33:01:ec:71:81:25:15: 4c:93:93:b8:97:97:0a:bc:df:c0:20:9b:2f:e8:d4: e9:81:3a:d6:00:93:29:ea:50:94:08:1b:44:02:97: 64:9b:96:67:9d:bd:39:8c:12:db:7b:1b:b6:49:9f: 3d:d7:d0:5b:e4:c9:74:93:86:67:05:10:7f:cc:b0: 8a:17:96:34:9b:f4:da:bd:a4:35:d9:3c:f2:d6:a4: dc:2f:c3:0f:f2:96:fb:c8:d0:3f:0b:1f:b7:52:35: a4:cd:60:c8:cd:6d:92:f0:fe:26:97:5e:82:5c:eb: 6d:c8:cd:60:af:a7:88:a5:fd:84:d9:54:0e:de:62: e4:7e:fe:c5:a9:d3:f2:0d:90:16:21:ff:69:da:d9: ee:13:87:8a:d1:7f:80:21:3d:93:f6:83:68:84:06: 8f:0e:0f:d9:f0:d5:a4:b8:fb:fe:6d:bb:80:68:eb: cc:92:d9:5f:b8:f6:86:ee:f0:a0:8e:45:47:f6:c7: e1:32:fb:35:1d:c7:c9:c0:e5:51:fb:23:01:44:10: 1e:89:34:87:ea:cf:20:1b:94:ae:ea:22:90:34:0f: 24:99:68:dc:5c:e2:c2:f2:e3:43:c9:49:2d:2a:b1: e8:99:73:86:ab:a0:40:c5:95:aa:ea:68:89:5c:e4: d4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FA:94:B8:70:E9:7D:20:77:FE:26:F5:98:3C:D9:69:9F:56:66:F7 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:63:0c:dd:49:7f:3e:6b:af:11:da:c2:ce:6c:27:89:47:77: b6:fc:8e:ae:01:ec:92:6d:f8:65:5b:75:a4:33:1c:12:01:32: 4c:20:a6:c7:cf:73:8a:82:a9:3d:a7:4b:7d:c4:16:f5:9b:18: 99:35:16:38:62:bc:63:85:da:ff:29:4c:0f:21:93:e5:94:89: a9:b1:27:c9:39:a6:a7:6b:75:c3:ed:c7:80:c3:42:67:a4:a9: 05:00:d6:d5:d5:34:cf:7e:74:9a:7d:9f:ee:93:af:fe:d9:6c: d6:6a:e2:05:fc:81:a5:f6:a1:ce:94:b1:a8:18:33:69:29:27: 20:d4:8d:d0:4e:4f:33:ae:5d:05:cd:2e:62:94:7e:72:cf:d5: 70:01:0a:fa:54:ee:30:ea:33:3c:c8:18:fc:d7:41:3f:e7:fa: c5:c4:8f:24:4f:8a:db:67:a6:33:61:bd:65:1c:5b:c7:ba:13: a3:7c:b4:7e:00:88:2d:13:cd:4e:0b:31:f5:da:c1:78:01:cf: fc:bb:12:e1:79:86:a7:0d:0a:f4:7f:31:1f:b4:11:ff:c6:85: 51:39:4e:25:cd:35:6e:a2:f8:98:6a:3b:4e:e3:ac:53:35:f5: 53:5c:d0:60:88:08:24:b3:b5:70:1e:94:17:ee:11:27:b2:30: 63:60:5a:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjUwNDI1MDQwNzEzWhcNMjUwNTAyMDQwNzEzWjAYMRYwFAYD VQQDEw02ODBiMGE3MS00MTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3F0+SCauSTMB7HGBJRVMk5O4l5cKvN/AIJsv6NTpgTrWAJMp6lCUCBtEApdk m5Znnb05jBLbexu2SZ8919Bb5Ml0k4ZnBRB/zLCKF5Y0m/TavaQ12Tzy1qTcL8MP 8pb7yNA/Cx+3UjWkzWDIzW2S8P4ml16CXOttyM1gr6eIpf2E2VQO3mLkfv7FqdPy DZAWIf9p2tnuE4eK0X+AIT2T9oNohAaPDg/Z8NWkuPv+bbuAaOvMktlfuPaG7vCg jkVH9sfhMvs1HcfJwOVR+yMBRBAeiTSH6s8gG5Su6iKQNA8kmWjcXOLC8uNDyUkt KrHomXOGq6BAxZWq6miJXOTUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMf6lLhw 6X0gd/4m9Zg82WmfVmb3MB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfYwzdSX8+a68R2sLObCeJR3e2/I6uAeySbfhlW3WkMxwSATJMIKbH z3OKgqk9p0t9xBb1mxiZNRY4Yrxjhdr/KUwPIZPllImpsSfJOaana3XD7ceAw0Jn pKkFANbV1TTPfnSafZ/uk6/+2WzWauIF/IGl9qHOlLGoGDNpKScg1I3QTk8zrl0F zS5ilH5yz9VwAQr6VO4w6jM8yBj810E/5/rFxI8kT4rbZ6YzYb1lHFvHuhOjfLR+ AIgtE81OCzH12sF4Ac/8uxLheYanDQr0fzEftBH/xoVROU4lzTVuoviYajtO46xT NfVTXNBgiAgks7VwHpQX7hEnsjBjYFpb -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:18 2025 by rpki-client