$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: Jo++pugN9yec86Nm9cmCPewN/+XPaWVkuTpws2az6k0= Subject key identifier: B6:6B:FA:6F:85:13:4A:FD:6A:2E:28:EB:5E:B3:10:96:B2:FA:81:05 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0C94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0C8B Signing time: Thu 24 Apr 2025 18:09:43 +0000 Manifest this update: Thu 24 Apr 2025 18:09:42 +0000 Manifest next update: Thu 01 May 2025 18:09:42 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: ksMNrGoe9gT+DXXVvooGQlPE9MgsPm7HqMfxhJV2iIE=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3220 (0xc94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Apr 24 18:09:42 2025 GMT Not After : May 1 18:09:42 2025 GMT Subject: CN=680a7e67-c6f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:03:b8:d4:3f:16:60:92:ca:48:3d:51:8e:b6: 01:9f:be:aa:14:43:d6:95:e3:d1:06:47:68:d9:22: dd:97:b6:e3:67:c8:40:72:19:31:c3:d4:a5:9d:13: da:b9:0d:22:9f:d1:c2:3c:22:79:3e:72:55:e8:70: 1a:34:01:2c:7b:a6:c0:12:ec:49:e1:83:db:8f:1c: 81:98:e4:f9:ae:4a:bd:e3:32:f8:0a:49:6c:17:8d: 2e:ea:9b:e2:03:a9:76:48:37:2a:e9:57:7c:6f:23: 9e:bf:02:17:b7:3a:43:81:2d:52:65:c4:26:b3:8d: d4:b4:ff:21:ba:95:71:1b:49:01:00:85:98:b3:11: 94:1e:d1:d4:97:9c:06:ad:87:7d:50:31:ce:36:17: 08:df:bf:da:98:01:ff:2c:00:ce:1b:a6:e0:c8:65: 7b:26:99:e0:7d:39:46:aa:21:a6:7c:7b:15:66:7a: 42:3f:80:3a:bb:52:0b:c9:f3:9b:1d:3a:10:28:8e: d8:c2:e3:e6:95:b7:45:bd:39:9d:1c:a7:94:da:e2: 8f:9f:dd:77:71:08:08:a0:15:15:ea:75:cf:15:f7: 3f:f0:f4:bc:8b:b2:54:a4:26:81:95:1b:62:9e:66: 37:17:b5:21:7b:02:b4:13:7d:58:ad:7f:e2:0a:bd: 99:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:6B:FA:6F:85:13:4A:FD:6A:2E:28:EB:5E:B3:10:96:B2:FA:81:05 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:65:d6:01:50:2c:21:64:63:a8:ef:03:4c:23:8e:3a:0f:7c: a5:63:8b:37:27:e0:5e:e0:4b:d9:5b:a2:91:76:ee:39:0d:17: 68:34:80:3e:f6:d2:68:b4:b1:c1:f6:e5:bd:7c:5b:f3:4d:b3: cf:c4:63:4c:9f:72:47:30:5f:05:1a:b4:4a:62:58:e4:34:5f: 81:99:8b:68:e7:c5:91:ce:64:90:de:6d:3c:ca:65:be:d0:ef: 2d:c1:5e:2e:bc:f9:16:bb:1a:1b:8e:ea:de:58:f2:10:2c:e5: 6d:95:ad:66:40:95:cc:3a:92:02:a5:c9:7c:02:5c:4c:db:72: 10:cc:87:6c:0a:4d:68:d9:1c:e4:7a:1b:70:47:ef:f3:7c:d1: aa:41:ef:8e:51:9b:76:49:de:38:d8:15:8d:ea:07:1e:79:45: 96:91:79:24:3f:65:44:e0:68:0a:7f:8d:94:10:d6:73:e7:ec: c6:88:73:ef:63:f8:05:ff:25:96:0b:21:88:fd:1a:12:3d:3a: 6e:96:a0:0a:1a:fb:48:1c:1d:a4:ec:59:b4:cf:86:ed:3d:8d: 7a:e8:ce:9a:b3:e4:f7:66:e9:ae:ce:02:4a:0b:04:0f:25:15: c9:53:b6:81:25:ca:2c:cf:e8:c6:66:18:31:fd:aa:95:58:27: b3:cc:b5:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNDI0MTgwOTQyWhcNMjUwNTAxMTgwOTQyWjAYMRYwFAYD VQQDEw02ODBhN2U2Ny1jNmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgO41D8WYJLKSD1RjrYBn76qFEPWlePRBkdo2SLdl7bjZ8hAchkxw9SlnRPa uQ0in9HCPCJ5PnJV6HAaNAEse6bAEuxJ4YPbjxyBmOT5rkq94zL4CklsF40u6pvi A6l2SDcq6Vd8byOevwIXtzpDgS1SZcQms43UtP8hupVxG0kBAIWYsxGUHtHUl5wG rYd9UDHONhcI37/amAH/LADOG6bgyGV7JpngfTlGqiGmfHsVZnpCP4A6u1ILyfOb HToQKI7YwuPmlbdFvTmdHKeU2uKPn913cQgIoBUV6nXPFfc/8PS8i7JUpCaBlRti nmY3F7UhewK0E31YrX/iCr2ZbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZr+m+F E0r9ai4o616zEJay+oEFMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyZdYBUCwhZGOo7wNMI446D3ylY4s3J+Be4EvZW6KRdu45DRdoNIA+ 9tJotLHB9uW9fFvzTbPPxGNMn3JHMF8FGrRKYljkNF+BmYto58WRzmSQ3m08ymW+ 0O8twV4uvPkWuxobjureWPIQLOVtla1mQJXMOpICpcl8AlxM23IQzIdsCk1o2Rzk ehtwR+/zfNGqQe+OUZt2Sd442BWN6gceeUWWkXkkP2VE4GgKf42UENZz5+zGiHPv Y/gF/yWWCyGI/RoSPTpulqAKGvtIHB2k7Fm0z4btPY166M6as+T3ZumuzgJKCwQP JRXJU7aBJcosz+jGZhgx/aqVWCezzLX/ -----END CERTIFICATE-----Generated at Sat Apr 26 05:55:02 2025 by rpki-client