$ rpki-client -vvf rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft File: 6osEPoaPdVc7zEVArUlUEC3JIrg.mft (raw, json) Hash identifier: 5jAe/S+cKLq6V4ZtfxfnZT4tk9KckID6dIbYVmizxqk= Subject key identifier: 53:9D:3F:5F:DC:09:FC:7D:B4:87:B5:E9:0A:86:4E:08:78:0D:68:95 Authority key identifier: EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 Certificate issuer: /CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft Manifest number: BA Signing time: Fri 25 Apr 2025 04:58:01 +0000 Manifest this update: Fri 25 Apr 2025 04:58:00 +0000 Manifest next update: Fri 02 May 2025 04:58:00 +0000 Files and hashes: 1: 6osEPoaPdVc7zEVArUlUEC3JIrg.crl (hash: w2GBPJg4EC9T84K4GuFiaShPtXIz/fhQz7EEOojbfMU=) 2: 6EF22D0A07C411EF8A38A486C4F9AE02.roa (hash: Z/bRh5gfICRhTgZIBmGvmKVx5q7fvhoDOyqb8F4Xn3w=) 3: 4F038F1007C511EFB3AD2E14C4F9AE02.roa (hash: YLqUw8RXSjFSw9i6iZFHkMU1fvDuVln4F0j/za3GPYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165772, serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Validity Not Before: Apr 25 04:58:00 2025 GMT Not After : May 2 04:58:00 2025 GMT Subject: CN=680b1658-646b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7a:0c:80:c2:31:0b:4f:6f:fc:dd:16:b0:ea: 6e:97:b8:ac:2d:05:da:7b:ab:85:1c:17:52:34:09: 5e:f0:17:fc:cf:c9:8f:66:f5:80:b1:e1:ec:07:00: df:e6:47:21:15:b3:d5:be:51:1e:47:16:1b:1a:31: c4:db:1c:69:0e:13:34:f1:67:14:e5:bc:51:64:e7: 6e:87:5d:4d:2b:00:90:43:95:ac:de:ae:f3:68:ba: 5b:40:a4:d0:84:b0:a5:5d:49:1e:c7:c3:67:77:10: 21:64:86:ed:66:1b:62:33:6e:f2:27:cd:d2:19:d5: 8c:e3:22:f1:20:0a:7a:23:c5:d2:fb:5a:eb:64:a0: 5c:2b:38:21:32:93:00:2e:50:47:66:8e:44:40:43: dc:9d:99:11:e8:61:b1:ba:dc:1e:6f:e8:60:22:3e: 17:8a:14:f7:87:e0:2d:fe:2f:a4:b9:70:1b:d1:1c: 2d:56:07:c1:fc:d3:31:da:28:43:2b:41:a4:63:3a: a9:e8:4f:81:16:48:c5:51:82:78:2a:a3:64:39:04: e9:17:0c:5f:ed:ab:73:97:05:f7:c2:c1:a9:66:1f: 91:0e:05:57:99:f9:85:8d:ac:a2:bb:2c:26:8c:b8: fd:9f:d8:de:12:98:9b:18:9e:1f:bd:46:82:65:18: 0c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9D:3F:5F:DC:09:FC:7D:B4:87:B5:E9:0A:86:4E:08:78:0D:68:95 X509v3 Authority Key Identifier: keyid:EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:30:4e:db:f9:16:f2:90:da:f9:38:cb:ec:c6:00:08:cf:13: 64:da:27:6f:98:66:8f:12:5c:50:0e:ea:2d:4f:4b:44:50:2c: 16:93:ba:24:fa:15:d0:d0:27:57:1c:c9:05:d2:d0:4b:60:f4: b1:44:ff:e5:26:5f:29:6b:bb:9d:f3:f4:60:a8:8a:99:68:f8: 60:7d:6a:25:21:00:3b:1b:fe:f4:83:89:fa:10:5b:1b:a3:1b: 91:20:0e:ce:49:0e:05:a1:1d:81:4d:ea:d3:91:8f:47:5c:9c: 0d:f3:bd:28:d2:25:c2:1e:aa:0f:c4:b1:91:82:7d:4e:85:86: b2:c7:78:3e:10:b1:ca:b8:1a:00:f8:0c:1e:7f:29:f0:da:9b: cd:e8:97:9f:74:56:c8:b1:76:07:e0:6e:94:1d:2a:6c:94:eb: b9:a7:3c:33:1f:ca:ee:86:19:bb:60:e8:8a:df:32:2d:a7:55: 9c:9a:1a:55:ef:17:b8:67:c6:9e:98:5f:30:c0:4e:13:d9:cb: 6f:8f:4f:71:11:62:b1:b2:ca:ef:2c:f5:22:e6:62:41:a9:1a: f8:3c:59:8b:ff:b7:86:2a:db:0e:70:15:db:1a:4d:f8:26:da: 20:a2:de:1b:fc:43:68:5e:8a:af:0a:fd:a6:00:3e:8f:e3:3a: 1a:76:24:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3NzIxMTAvBgNVBAUTKEVBOEIwNDNFODY4Rjc1NTczQkNDNDU0MEFENDk1NDEw MkRDOTIyQjgwHhcNMjUwNDI1MDQ1ODAwWhcNMjUwNTAyMDQ1ODAwWjAYMRYwFAYD VQQDEw02ODBiMTY1OC02NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3oMgMIxC09v/N0WsOpul7isLQXae6uFHBdSNAle8Bf8z8mPZvWAseHsBwDf 5kchFbPVvlEeRxYbGjHE2xxpDhM08WcU5bxRZOduh11NKwCQQ5Ws3q7zaLpbQKTQ hLClXUkex8NndxAhZIbtZhtiM27yJ83SGdWM4yLxIAp6I8XS+1rrZKBcKzghMpMA LlBHZo5EQEPcnZkR6GGxutweb+hgIj4XihT3h+At/i+kuXAb0RwtVgfB/NMx2ihD K0GkYzqp6E+BFkjFUYJ4KqNkOQTpFwxf7atzlwX3wsGpZh+RDgVXmfmFjayiuywm jLj9n9jeEpibGJ4fvUaCZRgMxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOdP1/c Cfx9tIe16QqGTgh4DWiVMB8GA1UdIwQYMBaAFOqLBD6Gj3VXO8xFQK1JVBAtySK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTc3Mi8wNEJEMUE2QzA3 QzQxMUVGODUyRENDN0RDNEY5QUUwMi82b3NFUG9hUGRWYzd6RVZBclVsVUVDM0pJ cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvc0VQb2FQZFZjN3pFVkFyVWxVRUMzSklyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTc3Mi8wNEJEMUE2QzA3QzQxMUVGODUyRENDN0RDNEY5QUUwMi82b3NFUG9hUGRW Yzd6RVZBclVsVUVDM0pJcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEME7b+RbykNr5OMvsxgAIzxNk2idvmGaPElxQDuotT0tEUCwWk7ok +hXQ0CdXHMkF0tBLYPSxRP/lJl8pa7ud8/RgqIqZaPhgfWolIQA7G/70g4n6EFsb oxuRIA7OSQ4FoR2BTerTkY9HXJwN870o0iXCHqoPxLGRgn1OhYayx3g+ELHKuBoA +Awefynw2pvN6JefdFbIsXYH4G6UHSpslOu5pzwzH8ruhhm7YOiK3zItp1WcmhpV 7xe4Z8aemF8wwE4T2ctvj09xEWKxssrvLPUi5mJBqRr4PFmL/7eGKtsOcBXbGk34 Jtogot4b/ENoXoqvCv2mAD6P4zoadiSH -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:49 2025 by rpki-client