$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: jw/X1xbjEskTRNsoOFy3izMXUjY+v79OWb3cjVqBJrU= Subject key identifier: CF:9D:57:BF:8E:11:7C:24:DF:9D:11:D9:79:58:EA:4E:7A:52:8D:5E Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 059A Signing time: Thu 24 Apr 2025 23:00:15 +0000 Manifest this update: Thu 24 Apr 2025 23:00:15 +0000 Manifest next update: Thu 01 May 2025 23:00:15 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: y6Bh8CYzhrI/sdcGvoXp0EwNPH3FXXYgrOQeErVGrMo=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: lCYYN1i9IbJqwRctgnEOzzG7AOe1LHSeBCWruRPnC40=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: 8IJ4hd5hgtTMjRCQeFaMZGfRaNHjTczEG5GeSYDk6qI=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: ZotghGiuMfOw+s3uuTOdkshmDTpBWNWmcIBqIc4IVro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Apr 24 23:00:15 2025 GMT Not After : May 1 23:00:15 2025 GMT Subject: CN=680ac27f-8978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:98:45:4e:4e:c0:d7:d8:cd:70:62:c7:b5:2a: 96:cd:f6:5b:ee:a2:b0:c0:1c:e9:50:7f:92:f5:70: 7f:6c:82:72:bc:2c:46:76:84:b9:34:a1:e8:e6:b3: df:75:d0:5f:fe:8b:72:dc:fb:bc:29:bd:dc:b1:bf: c2:db:3b:1f:8f:db:15:c0:90:c0:3a:e3:ff:c1:0b: e5:27:4e:5f:0c:72:21:8a:9e:6d:dc:ab:18:18:58: 03:f1:f2:a3:d8:20:78:15:84:90:70:10:84:8c:67: bf:73:b5:21:3f:08:37:83:bb:de:b6:e4:4d:11:8b: d6:1a:46:fe:4b:23:2c:47:81:0a:da:ef:01:61:3f: 5a:72:d6:28:73:3b:a5:3c:aa:45:6d:49:be:ca:97: 31:80:cc:94:64:16:61:25:9c:85:aa:a0:23:09:41: c3:51:34:ed:36:31:28:80:8b:f5:51:6e:2d:7f:a2: 7b:66:6f:88:7b:b4:58:d8:c9:03:c0:c9:c2:4c:e8: 4a:4b:2c:5d:91:33:23:1c:d2:cd:3b:b2:34:a8:d4: 17:5e:a9:a7:7e:7d:b8:89:70:50:3b:b0:40:ef:32: e3:da:29:ed:b5:a6:8f:f5:8a:55:db:cd:9a:42:67: 19:6b:a7:62:91:ec:30:d1:1c:c0:a8:4b:62:83:02: 7d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:9D:57:BF:8E:11:7C:24:DF:9D:11:D9:79:58:EA:4E:7A:52:8D:5E X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:80:cd:d8:d5:d5:c6:2f:52:16:0f:ff:37:04:18:2f:7e:70: 7c:cd:70:31:52:f2:50:21:ec:6f:71:e2:33:b8:60:09:0b:06: df:b7:ee:ab:d3:9f:71:d2:a6:55:1c:82:6e:c5:5a:bd:c8:3e: 02:fb:e8:db:56:b0:0a:0d:a5:a1:40:96:0d:09:af:e1:40:ba: d6:62:20:18:22:6e:31:79:80:1f:66:9f:5e:a1:c6:62:27:11: 14:13:85:1b:9c:23:02:c5:87:83:8b:ec:02:72:fa:1d:ac:4e: d9:44:c6:17:61:72:2d:57:56:17:d8:06:8b:30:b8:ae:cd:f9: 55:81:ea:52:bf:3c:a1:6e:bc:77:fa:f7:8b:8a:83:77:d8:52: 8f:47:b0:41:17:16:0f:05:e8:29:ac:98:b6:03:bb:b7:10:a0: 82:b9:df:78:4e:62:69:ef:b2:15:08:cd:c7:38:3c:44:00:c9: 27:75:dd:9a:d5:ce:a1:e8:b7:f1:74:f7:a3:01:d1:0d:94:44: 21:c8:e9:56:2d:5d:92:12:10:e5:49:74:0e:55:10:ae:7f:02: 73:fe:41:ad:c3:e3:f2:2b:47:40:e4:13:b1:6c:9a:05:5f:23: 0b:28:4c:6b:12:f6:ae:66:2b:cb:58:f7:06:c3:f9:fd:4c:6e: 1d:ab:78:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwNDI0MjMwMDE1WhcNMjUwNTAxMjMwMDE1WjAYMRYwFAYD VQQDEw02ODBhYzI3Zi04OTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArphFTk7A19jNcGLHtSqWzfZb7qKwwBzpUH+S9XB/bIJyvCxGdoS5NKHo5rPf ddBf/oty3Pu8Kb3csb/C2zsfj9sVwJDAOuP/wQvlJ05fDHIhip5t3KsYGFgD8fKj 2CB4FYSQcBCEjGe/c7UhPwg3g7vetuRNEYvWGkb+SyMsR4EK2u8BYT9actYoczul PKpFbUm+ypcxgMyUZBZhJZyFqqAjCUHDUTTtNjEogIv1UW4tf6J7Zm+Ie7RY2MkD wMnCTOhKSyxdkTMjHNLNO7I0qNQXXqmnfn24iXBQO7BA7zLj2inttaaP9YpV282a QmcZa6dikeww0RzAqEtigwJ93wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+dV7+O EXwk350R2XlY6k56Uo1eMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXgM3Y1dXGL1IWD/83BBgvfnB8zXAxUvJQIexvceIzuGAJCwbft+6r 059x0qZVHIJuxVq9yD4C++jbVrAKDaWhQJYNCa/hQLrWYiAYIm4xeYAfZp9eocZi JxEUE4UbnCMCxYeDi+wCcvodrE7ZRMYXYXItV1YX2AaLMLiuzflVgepSvzyhbrx3 +veLioN32FKPR7BBFxYPBegprJi2A7u3EKCCud94TmJp77IVCM3HODxEAMkndd2a 1c6h6LfxdPejAdENlEQhyOlWLV2SEhDlSXQOVRCufwJz/kGtw+PyK0dA5BOxbJoF XyMLKExrEvauZivLWPcGw/n9TG4dq3jK -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:53 2025 by rpki-client