$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: TvbJX2JC3X2ayCWELiqMhdMmlcmi8hBbG6JpWlV228I= Subject key identifier: E0:84:B2:A1:F5:E9:0A:29:D6:9E:D7:22:2F:F3:56:4F:B5:31:FE:D6 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 030E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0308 Signing time: Fri 25 Apr 2025 00:59:17 +0000 Manifest this update: Fri 25 Apr 2025 00:59:16 +0000 Manifest next update: Fri 02 May 2025 00:59:16 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: eOdFS7sTwth0MqFPm24bURoAwtrunJqQ6SwDOxTBBio=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: eiU7ZSeORX7Nfv/I101YymEKed9tnUaeLJmxcj6rlLI=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: lJKugMMEeA6hotCUmsieh3f9JUtmDi6Rwayct/vX1UY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Apr 25 00:59:16 2025 GMT Not After : May 2 00:59:16 2025 GMT Subject: CN=680ade64-d51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:50:73:85:cc:1b:b4:ef:ee:93:96:81:a4: e8:65:3d:d5:ce:a6:9d:8b:88:55:36:ce:a3:1c:2a: 2e:fc:77:58:50:ab:80:ff:17:56:28:62:21:c4:54: c4:4d:81:68:6c:ea:55:38:1b:02:47:73:54:b6:30: 0d:d3:b6:5e:ac:27:af:14:33:2e:48:5a:08:12:46: ce:48:54:cc:31:45:e7:34:b9:31:66:5e:7a:54:32: 9f:e9:c1:09:c5:c5:c3:2b:67:3f:84:f3:77:ff:25: f9:39:e8:65:27:2e:2f:d6:b2:cf:70:8a:dd:0a:e0: 99:c1:fb:06:6a:af:fd:44:be:7d:b4:04:00:b5:70: 79:f3:1e:0e:d9:fe:da:90:56:86:4f:1d:35:a2:f8: ca:4d:00:33:55:68:ff:b2:9b:59:61:27:9a:e3:c1: c9:18:cd:80:9b:99:4e:b1:04:12:f2:02:d2:98:5f: 71:55:96:b9:f9:43:5f:fc:12:08:96:f9:17:ea:38: f2:91:1a:ac:b4:3b:44:b4:75:5e:b9:9a:c0:b4:b4: 61:ca:e2:d3:73:a1:42:cd:74:9c:f3:ab:bd:d5:23: 77:04:86:dc:ed:40:6d:13:a7:fd:a0:7d:ab:3f:41: d0:e7:b3:7a:03:93:5a:49:f6:bf:42:ba:3e:83:4e: 50:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:84:B2:A1:F5:E9:0A:29:D6:9E:D7:22:2F:F3:56:4F:B5:31:FE:D6 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f6:82:5d:7f:5e:87:32:42:78:a7:a2:9f:d7:1c:40:c7:93: 05:d9:6c:7c:e9:3c:98:96:74:8d:50:23:84:f1:36:83:41:ee: 07:74:bc:ce:75:fa:4a:95:75:f9:2d:9b:1c:29:49:86:cf:01: 33:dc:c1:8e:88:2c:b4:50:be:a0:71:26:74:15:4b:a5:74:b6: 26:43:7b:a3:72:49:fe:80:45:3c:b0:e6:7a:01:61:04:d6:96: b3:92:5a:cc:aa:6e:f2:5e:42:12:94:cc:b8:00:42:ee:34:18: 44:36:2d:df:e1:89:16:f8:2d:46:5e:10:53:3d:1b:af:be:c6: 1e:3b:59:ac:26:d3:39:6b:42:7e:e0:9f:e1:4c:ab:c9:d4:f5: e0:8d:f1:d7:d4:7e:1a:ce:d9:c8:72:52:f4:08:d7:11:ed:54: ff:97:11:a3:9e:33:68:00:77:55:e1:8a:86:ec:e3:9f:78:b1: c8:9f:67:66:66:9d:18:9b:1d:53:b0:35:90:4d:62:eb:ab:a9: 51:d9:62:93:1a:94:78:d1:96:2b:57:d6:f5:6e:b2:3d:c4:0e: 16:28:98:1a:36:83:f7:f0:b5:99:63:48:83:6a:80:01:57:93: 02:5c:67:20:ae:cb:42:32:fc:5d:cf:dc:ac:d9:4a:34:60:aa: f0:2f:b6:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUwNDI1MDA1OTE2WhcNMjUwNTAyMDA1OTE2WjAYMRYwFAYD VQQDEw02ODBhZGU2NC1kNTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLlQc4XMG7Tv7pOWgaToZT3Vzqadi4hVNs6jHCou/HdYUKuA/xdWKGIhxFTE TYFobOpVOBsCR3NUtjAN07ZerCevFDMuSFoIEkbOSFTMMUXnNLkxZl56VDKf6cEJ xcXDK2c/hPN3/yX5OehlJy4v1rLPcIrdCuCZwfsGaq/9RL59tAQAtXB58x4O2f7a kFaGTx01ovjKTQAzVWj/sptZYSea48HJGM2Am5lOsQQS8gLSmF9xVZa5+UNf/BII lvkX6jjykRqstDtEtHVeuZrAtLRhyuLTc6FCzXSc86u91SN3BIbc7UBtE6f9oH2r P0HQ57N6A5NaSfa/Qro+g05QmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCEsqH1 6Qop1p7XIi/zVk+1Mf7WMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs9oJdf16HMkJ4p6Kf1xxAx5MF2Wx86TyYlnSNUCOE8TaDQe4HdLzO dfpKlXX5LZscKUmGzwEz3MGOiCy0UL6gcSZ0FUuldLYmQ3ujckn+gEU8sOZ6AWEE 1pazklrMqm7yXkISlMy4AELuNBhENi3f4YkW+C1GXhBTPRuvvsYeO1msJtM5a0J+ 4J/hTKvJ1PXgjfHX1H4aztnIclL0CNcR7VT/lxGjnjNoAHdV4YqG7OOfeLHIn2dm Zp0Ymx1TsDWQTWLrq6lR2WKTGpR40ZYrV9b1brI9xA4WKJgaNoP38LWZY0iDaoAB V5MCXGcgrstCMvxdz9ys2Uo0YKrwL7Yh -----END CERTIFICATE-----Generated at Sat Apr 26 03:55:38 2025 by rpki-client