$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: sbl80U2J7wZ9nXie7VKWYZheRsTu7QLgVfStJlM+6/w= Subject key identifier: EA:F0:E6:18:7C:E9:60:6D:A1:38:8D:94:B7:AD:2D:36:FD:4B:E4:3B Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0ADC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0AD5 Signing time: Thu 24 Apr 2025 19:19:25 +0000 Manifest this update: Thu 24 Apr 2025 19:19:25 +0000 Manifest next update: Thu 01 May 2025 19:19:25 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: SsOYyrS7W/TawIi/K5Sidl7tAbaasj2YQRRCLV5GTwU=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Apr 24 19:19:25 2025 GMT Not After : May 1 19:19:25 2025 GMT Subject: CN=680a8ebd-04bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9a:0f:30:81:18:c7:62:e0:de:c6:00:25:7b: f2:34:bd:ce:cd:86:eb:52:06:90:55:7a:9a:16:43: 74:30:48:5c:3a:6a:c8:55:47:b4:ae:08:07:b8:98: 88:28:6b:a2:8a:ec:c2:31:e8:b9:7e:e2:b0:51:d4: e0:ca:b7:95:75:c6:07:4e:ae:5b:3c:9e:95:06:fd: 8e:9d:5e:27:8f:f2:62:4b:cd:00:03:1c:19:15:30: 55:91:37:fe:7f:7e:d9:54:69:7b:c9:45:b5:ab:20: 43:cf:c8:ea:cf:09:5e:61:fc:b8:0a:5a:6a:2d:61: 4a:18:f6:63:11:b7:97:20:91:da:ea:de:47:04:5a: bd:26:25:af:2c:20:a1:dd:6b:9b:45:9e:69:35:b2: fe:54:19:ee:60:69:b8:56:6e:c7:c1:5c:a4:23:93: f9:c9:e2:de:43:6c:94:88:93:42:6d:fd:71:12:da: 37:56:5d:b6:87:cf:c6:b4:c5:59:cf:20:ec:86:3c: 7b:8e:b0:8c:b6:77:3b:ba:8e:d8:8a:ec:e0:09:3d: 03:b6:94:ea:d3:92:1f:ac:d4:9f:ca:ea:5f:96:16: db:7f:79:b7:78:a9:39:c1:63:c8:d6:7c:44:c2:7e: dd:f4:d3:af:68:75:3a:e6:57:70:06:aa:1f:7a:e7: 15:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F0:E6:18:7C:E9:60:6D:A1:38:8D:94:B7:AD:2D:36:FD:4B:E4:3B X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:bf:65:e4:f1:99:1d:e3:52:12:d4:c1:d3:43:5a:1a:f1:01: d5:f7:fc:a8:52:1f:dd:bc:f8:bc:11:31:87:d9:74:0c:dc:b5: 38:11:7a:e3:bc:10:3d:75:09:c1:e7:ad:d7:0d:12:c8:a2:df: c1:f9:3b:d3:7c:5d:42:c4:3d:e7:05:8a:b4:18:5a:e6:06:d4: 27:65:24:f4:1d:f3:63:12:a6:f0:63:c7:43:67:24:7f:5b:93: eb:71:6b:d5:4a:4a:eb:3a:ad:6a:f4:d6:e1:72:ce:9d:e2:64: 60:b8:0f:9a:c2:45:71:5e:44:2c:a8:e9:1d:ff:da:09:86:8a: 1c:85:85:c0:a6:af:19:11:9c:ec:f7:dd:17:50:cb:eb:3b:a2: 0b:5c:41:b5:34:f2:65:81:2f:5d:b5:1b:87:ee:78:ed:c2:88: 1d:ee:fc:c5:b3:b6:9a:b7:fd:c2:08:44:eb:ce:f2:cd:48:2b: 9d:e4:37:18:d2:e2:0f:b5:a9:1c:2d:0d:44:9a:46:c7:e6:53: 12:85:b8:99:0f:63:61:cf:c5:87:35:e3:dd:61:3c:3f:cd:23: 62:4f:2e:b5:93:e5:b2:b2:12:69:c9:40:ed:de:50:17:36:ab: e8:a2:7f:5e:5f:cb:d0:f4:06:bb:0f:8e:00:bf:9e:3f:6e:28: 7a:d9:d1:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUwNDI0MTkxOTI1WhcNMjUwNTAxMTkxOTI1WjAYMRYwFAYD VQQDEw02ODBhOGViZC0wNGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5poPMIEYx2Lg3sYAJXvyNL3OzYbrUgaQVXqaFkN0MEhcOmrIVUe0rggHuJiI KGuiiuzCMei5fuKwUdTgyreVdcYHTq5bPJ6VBv2OnV4nj/JiS80AAxwZFTBVkTf+ f37ZVGl7yUW1qyBDz8jqzwleYfy4ClpqLWFKGPZjEbeXIJHa6t5HBFq9JiWvLCCh 3WubRZ5pNbL+VBnuYGm4Vm7HwVykI5P5yeLeQ2yUiJNCbf1xEto3Vl22h8/GtMVZ zyDshjx7jrCMtnc7uo7YiuzgCT0DtpTq05IfrNSfyupflhbbf3m3eKk5wWPI1nxE wn7d9NOvaHU65ldwBqofeucVfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrw5hh8 6WBtoTiNlLetLTb9S+Q7MB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6v2Xk8Zkd41IS1MHTQ1oa8QHV9/yoUh/dvPi8ETGH2XQM3LU4EXrj vBA9dQnB563XDRLIot/B+TvTfF1CxD3nBYq0GFrmBtQnZST0HfNjEqbwY8dDZyR/ W5PrcWvVSkrrOq1q9Nbhcs6d4mRguA+awkVxXkQsqOkd/9oJhoochYXApq8ZEZzs 990XUMvrO6ILXEG1NPJlgS9dtRuH7njtwogd7vzFs7aat/3CCETrzvLNSCud5DcY 0uIPtakcLQ1EmkbH5lMShbiZD2Nhz8WHNePdYTw/zSNiTy61k+WyshJpyUDt3lAX Nqvoon9eX8vQ9Aa7D44Av54/bih62dGB -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:37 2025 by rpki-client