$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: Jg/csaWBw2rf9fMEPOnlWh2aQSCj9Y9mAySbEK89ieU= Subject key identifier: BC:D1:41:BD:69:6C:AD:11:C0:47:54:A7:2E:0D:AA:9C:19:36:64:5F Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 09C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 09B3 Signing time: Thu 24 Apr 2025 19:56:17 +0000 Manifest this update: Thu 24 Apr 2025 19:56:16 +0000 Manifest next update: Thu 01 May 2025 19:56:16 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: FfHz1SU6lONqZVnDot4LCJvZxgy6nVgqltAx/hywCaE=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2501 (0x9c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Apr 24 19:56:16 2025 GMT Not After : May 1 19:56:16 2025 GMT Subject: CN=680a9760-3f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:d9:da:01:d8:0e:f4:0c:ca:96:9c:3d:a5: 05:a0:61:88:5b:9b:55:10:37:c7:3e:f9:80:f8:ac: 15:74:56:19:62:e3:ae:a2:e9:13:e5:34:ce:d4:53: f5:96:da:ca:e4:d6:ab:35:a9:0b:01:9e:27:e5:f3: e2:34:69:68:a7:8e:c4:75:20:9d:10:1b:81:f1:47: 33:1a:84:0a:ac:e9:f3:59:fa:e3:5c:8e:8f:7b:97: 5b:b0:65:e7:86:20:69:5a:ab:1b:5d:ee:d1:73:93: 68:c6:79:67:2a:31:fb:ff:a3:34:e1:a2:4a:84:da: ce:f7:c2:4b:05:d8:bd:bb:ab:42:01:79:3c:59:9d: e6:df:46:2f:ec:69:8b:d8:9a:7e:0a:e2:4b:41:a5: 97:aa:cb:90:aa:98:12:55:4a:32:09:f4:58:ae:19: b0:9e:d4:9b:14:ce:b4:8b:00:bd:77:e3:01:5e:1f: 99:f1:93:73:7a:de:26:62:70:d9:a6:09:bf:4c:7e: 36:ef:6d:bb:2b:38:48:47:5c:e7:4b:fb:8a:b6:bb: e6:94:d9:9d:17:82:d5:8b:cf:51:1c:af:fc:8b:6a: ca:c7:b2:eb:e8:a8:02:f0:2a:1f:e6:4f:52:e1:06: 8c:39:c3:72:32:14:e8:af:2d:27:55:b0:74:92:c8: ff:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D1:41:BD:69:6C:AD:11:C0:47:54:A7:2E:0D:AA:9C:19:36:64:5F X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ff:8a:22:fc:3b:9c:7d:09:ef:fa:9e:13:ac:67:25:fa:fd: 4f:2a:8c:b6:a3:73:6d:a7:2f:16:f5:40:aa:21:a4:cd:4c:73: 26:7a:f5:a3:09:5a:b3:e3:56:4c:bf:7a:81:5e:03:bf:d4:18: 6f:39:2a:ab:81:13:e0:e7:4e:62:c8:46:b1:8b:88:ee:5d:c8: 78:97:b0:37:37:52:df:ee:7f:78:17:31:40:6e:d4:8c:ee:09: b0:2d:f5:11:48:3b:fd:94:eb:00:0f:63:9f:9d:c5:01:ff:e8: af:e7:56:9f:56:ec:8a:7d:2c:15:eb:bd:9d:e6:c5:16:0d:2c: fa:46:27:ce:71:80:87:12:05:4c:09:89:90:89:11:22:c1:82: ea:31:40:ac:f7:0c:6c:fe:f8:b9:08:0a:9d:db:f9:3a:22:23: b1:22:ad:41:9d:ea:97:58:36:5f:99:56:f9:05:2d:8d:f0:f0: d5:a1:8f:32:ff:8f:41:f3:2d:a4:c7:fc:bd:27:8a:e8:a2:f0: ad:95:0c:ed:d4:fb:69:68:e7:bf:d0:dc:bc:a8:66:18:ef:fb: 83:d0:ea:ab:70:43:d8:9c:90:5e:f5:c2:29:dd:08:2b:f5:fe: f8:ae:ee:56:fe:06:5a:74:86:d4:56:cb:ad:5b:19:5b:77:9f: f2:27:66:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUwNDI0MTk1NjE2WhcNMjUwNTAxMTk1NjE2WjAYMRYwFAYD VQQDEw02ODBhOTc2MC0zZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7DZ2gHYDvQMypacPaUFoGGIW5tVEDfHPvmA+KwVdFYZYuOuoukT5TTO1FP1 ltrK5NarNakLAZ4n5fPiNGlop47EdSCdEBuB8UczGoQKrOnzWfrjXI6Pe5dbsGXn hiBpWqsbXe7Rc5NoxnlnKjH7/6M04aJKhNrO98JLBdi9u6tCAXk8WZ3m30Yv7GmL 2Jp+CuJLQaWXqsuQqpgSVUoyCfRYrhmwntSbFM60iwC9d+MBXh+Z8ZNzet4mYnDZ pgm/TH427227KzhIR1znS/uKtrvmlNmdF4LVi89RHK/8i2rKx7Lr6KgC8Cof5k9S 4QaMOcNyMhTory0nVbB0ksj/swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzRQb1p bK0RwEdUpy4NqpwZNmRfMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh/4oi/DucfQnv+p4TrGcl+v1PKoy2o3Ntpy8W9UCqIaTNTHMmevWj CVqz41ZMv3qBXgO/1BhvOSqrgRPg505iyEaxi4juXch4l7A3N1Lf7n94FzFAbtSM 7gmwLfURSDv9lOsAD2OfncUB/+iv51afVuyKfSwV672d5sUWDSz6RifOcYCHEgVM CYmQiREiwYLqMUCs9wxs/vi5CAqd2/k6IiOxIq1BneqXWDZfmVb5BS2N8PDVoY8y /49B8y2kx/y9J4roovCtlQzt1PtpaOe/0Ny8qGYY7/uD0OqrcEPYnJBe9cIp3Qgr 9f74ru5W/gZadIbUVsutWxlbd5/yJ2YP -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:39 2025 by rpki-client