$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: 7lsjsQEWb0g3hHLwAg8AfCzmI2SCOnoGVaqJoXR28Fk= Subject key identifier: D4:DE:2F:83:91:0C:29:94:0B:28:0B:70:1D:B2:81:61:98:28:2C:CC Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 016E Signing time: Fri 25 Apr 2025 03:01:15 +0000 Manifest this update: Fri 25 Apr 2025 03:01:14 +0000 Manifest next update: Fri 02 May 2025 03:01:14 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: dUb8weGcyY48eU/NPWl58DixN6HCZ4PFGmGvikGmtXM=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Apr 25 03:01:14 2025 GMT Not After : May 2 03:01:14 2025 GMT Subject: CN=680afafb-55a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:64:46:73:ac:b1:50:86:bd:6a:a2:57:e8:d7: 21:b2:b2:38:62:7a:4c:cf:76:ac:57:7c:49:9d:39: 0c:85:a6:06:b7:a3:e4:39:64:02:e4:60:0b:24:91: b7:73:de:df:9a:97:9b:10:cc:31:dc:68:c3:fb:9f: a9:0d:f3:13:86:d7:20:1e:08:f5:c5:e0:e9:c7:8d: af:78:18:d0:61:3e:a8:bf:87:a7:42:68:dc:32:7e: 70:ae:e8:c9:bc:b7:b4:37:fa:3b:b8:13:f2:78:3e: 00:c5:d2:a8:78:00:48:38:ec:5a:a7:36:e8:8e:07: 0e:e9:ff:5a:88:bc:ed:a0:e8:0e:68:1b:25:71:8e: b4:d5:00:1e:5e:35:f0:d3:41:74:81:5a:9f:51:b6: a7:ab:44:4d:3f:b7:a0:01:24:b6:db:14:8a:d3:e2: ae:35:bc:77:8c:f0:a7:01:e5:bb:d7:0e:fd:0e:7e: b9:ea:8e:7c:a5:02:19:ed:d3:c3:8a:7a:ab:c0:b8: 17:64:2a:97:cd:c1:0a:3e:92:27:e6:72:24:1b:fe: 6c:50:41:8d:99:72:7d:c6:61:fe:a7:34:e4:dc:a8: 77:20:8d:ae:cc:0e:11:26:12:af:7e:d6:91:a3:b7: 2c:8a:4b:9c:83:82:23:ea:b6:f3:0b:b0:ff:1d:b7: d0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DE:2F:83:91:0C:29:94:0B:28:0B:70:1D:B2:81:61:98:28:2C:CC X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:36:ae:8e:a4:67:ce:44:9f:bd:7d:aa:9b:ff:3b:0f:6d:8d: 49:d5:3c:df:57:de:6e:db:f1:4b:bc:bc:72:53:e8:27:de:11: de:be:3e:0e:b5:88:46:a9:3b:77:9e:7e:09:c5:27:af:f5:de: 25:0c:e6:ec:72:fc:0d:f5:70:cd:15:83:de:9b:dd:7f:62:7a: 65:95:78:0d:e3:13:8f:25:2e:f0:45:19:38:63:81:5e:e4:eb: 48:6a:d2:31:ef:20:cc:65:b8:68:8b:1f:65:0f:56:39:0a:94: 9a:4b:ea:86:c8:ca:9a:fc:fd:d6:9c:44:ef:83:e5:ff:05:23: a8:ea:a0:52:bb:6f:60:75:be:d5:45:a8:7e:b8:03:cf:a5:83: d2:36:e4:b3:ca:b3:56:12:f5:67:27:f9:00:9c:ef:4e:8e:5c: 62:a8:14:bb:b7:58:84:55:1b:5e:0d:8b:0c:76:d2:da:59:0e: fc:f3:ed:96:84:a6:df:4a:80:6f:45:2f:4b:68:02:fe:23:dc: 6c:09:28:34:40:cd:d4:19:b6:ba:12:12:03:8b:9d:bd:ef:bb: ac:15:f9:35:52:9c:1a:e7:f5:57:94:b3:98:78:14:ba:bb:5d: d5:97:f8:2e:45:8f:37:71:03:16:96:98:71:c4:b8:01:01:1b: 15:ea:a3:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwNDI1MDMwMTE0WhcNMjUwNTAyMDMwMTE0WjAYMRYwFAYD VQQDEw02ODBhZmFmYi01NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mRGc6yxUIa9aqJX6NchsrI4YnpMz3asV3xJnTkMhaYGt6PkOWQC5GALJJG3 c97fmpebEMwx3GjD+5+pDfMThtcgHgj1xeDpx42veBjQYT6ov4enQmjcMn5wrujJ vLe0N/o7uBPyeD4AxdKoeABIOOxapzbojgcO6f9aiLztoOgOaBslcY601QAeXjXw 00F0gVqfUbanq0RNP7egASS22xSK0+KuNbx3jPCnAeW71w79Dn656o58pQIZ7dPD inqrwLgXZCqXzcEKPpIn5nIkG/5sUEGNmXJ9xmH+pzTk3Kh3II2uzA4RJhKvftaR o7csikucg4Ij6rbzC7D/HbfQkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTeL4OR DCmUCygLcB2ygWGYKCzMMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpNq6OpGfORJ+9faqb/zsPbY1J1TzfV95u2/FLvLxyU+gn3hHevj4O tYhGqTt3nn4JxSev9d4lDObscvwN9XDNFYPem91/YnpllXgN4xOPJS7wRRk4Y4Fe 5OtIatIx7yDMZbhoix9lD1Y5CpSaS+qGyMqa/P3WnETvg+X/BSOo6qBSu29gdb7V Rah+uAPPpYPSNuSzyrNWEvVnJ/kAnO9OjlxiqBS7t1iEVRteDYsMdtLaWQ788+2W hKbfSoBvRS9LaAL+I9xsCSg0QM3UGba6EhIDi52977usFfk1Upwa5/VXlLOYeBS6 u13Vl/guRY83cQMWlphxxLgBARsV6qOV -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:37 2025 by rpki-client