$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: gxvjOa6yS767b6/bRmPdXRRzQjZACjvrlwsJwN+e8pI= Subject key identifier: BD:3F:03:DA:87:A2:D3:14:02:35:76:2C:EF:FD:15:E7:49:EB:22:A6 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03A5 Signing time: Fri 25 Apr 2025 00:30:40 +0000 Manifest this update: Fri 25 Apr 2025 00:30:39 +0000 Manifest next update: Fri 02 May 2025 00:30:39 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: OWgzlRM5TUXqkp6+pr3Oa+Bw65eZiJ9U/Vc7Ts5mRBc=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Apr 25 00:30:39 2025 GMT Not After : May 2 00:30:39 2025 GMT Subject: CN=680ad7b0-4553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:62:7c:84:df:05:fa:24:58:4a:b2:15:f7:ab: eb:0a:2f:d0:b3:9e:4d:b9:2b:01:c6:b7:05:34:c2: 2c:70:11:2c:7f:ed:83:57:a9:b1:a8:ec:e3:cc:af: 94:41:f8:f5:ab:fa:94:87:c6:e1:e8:5a:4c:64:d9: 90:08:7e:60:f7:f6:b8:d0:b3:da:e2:ec:f1:ec:f9: c2:0d:46:b9:09:a1:2d:be:f1:0b:d4:26:17:b1:4c: 71:d5:31:14:32:0f:ec:db:3e:72:cc:18:57:9f:94: a5:3d:be:aa:c4:6f:bd:21:56:03:31:3a:f5:9b:db: 6c:19:57:a5:ab:05:67:f9:2d:19:f5:71:38:b8:39: a4:68:17:b2:94:6f:f6:f0:dc:f0:f1:f7:86:0f:84: 0c:fe:f8:de:a4:82:fc:ee:a6:33:c9:52:de:cd:1c: 33:4d:78:92:d0:c7:e8:df:cc:5f:14:7d:c5:fe:f7: 2a:9d:a4:dd:ed:09:67:78:0c:49:71:bd:af:aa:dd: c1:e8:75:6d:6c:7d:b8:66:13:ac:c6:73:b3:41:a8: ac:95:a9:e1:de:86:c5:74:a5:c1:81:47:94:a0:d3: e9:cc:6e:e7:ae:bc:a6:dd:f7:6a:d5:69:a8:6f:6b: f9:dc:d3:ff:c1:56:37:31:86:2e:2b:b7:9e:c0:c4: 64:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3F:03:DA:87:A2:D3:14:02:35:76:2C:EF:FD:15:E7:49:EB:22:A6 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:fd:5d:27:07:a4:7a:36:46:42:61:83:f6:c4:37:a9:a9:6b: c6:46:e2:cb:94:28:72:8a:40:9c:78:a2:73:e3:72:31:47:d2: 3b:bf:e1:6c:04:50:13:03:79:3b:d5:b7:d3:d1:a2:9b:87:52: c3:08:bf:9f:c8:ee:7d:7e:ab:3c:19:93:69:62:e4:94:47:b4: e8:f0:23:d8:5c:32:8a:f3:64:27:e6:79:89:6c:8e:55:f4:9a: 6b:70:47:11:d2:8a:91:3d:b1:83:4a:51:c4:a2:c9:91:62:50: d1:88:ab:42:0f:9b:83:fb:88:f7:a4:80:96:97:93:eb:73:0f: c8:21:22:51:e4:5e:f5:a1:8e:73:ed:63:80:f6:ba:7a:d5:a9: 63:33:bc:55:49:ff:23:6c:0c:6c:c3:4a:80:f6:40:47:ff:b4: fd:19:cb:8e:51:3f:d3:c4:c1:06:96:17:73:40:0e:9a:a5:37: 2f:0d:a7:85:12:7a:14:18:2d:43:7f:e5:c4:c0:8e:9b:3f:15: 1b:48:95:7d:7e:68:9b:99:84:9b:a6:b7:48:39:81:f5:d1:e3: 8b:d6:06:49:32:c5:4a:05:94:73:5e:ef:d0:fd:a6:95:0f:ea: 3f:b7:c8:b6:18:c6:88:bd:97:f5:20:4e:bb:42:dc:e3:aa:2e: 9d:99:28:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwNDI1MDAzMDM5WhcNMjUwNTAyMDAzMDM5WjAYMRYwFAYD VQQDEw02ODBhZDdiMC00NTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWJ8hN8F+iRYSrIV96vrCi/Qs55NuSsBxrcFNMIscBEsf+2DV6mxqOzjzK+U Qfj1q/qUh8bh6FpMZNmQCH5g9/a40LPa4uzx7PnCDUa5CaEtvvEL1CYXsUxx1TEU Mg/s2z5yzBhXn5SlPb6qxG+9IVYDMTr1m9tsGVelqwVn+S0Z9XE4uDmkaBeylG/2 8Nzw8feGD4QM/vjepIL87qYzyVLezRwzTXiS0Mfo38xfFH3F/vcqnaTd7QlneAxJ cb2vqt3B6HVtbH24ZhOsxnOzQaislanh3obFdKXBgUeUoNPpzG7nrrym3fdq1Wmo b2v53NP/wVY3MYYuK7eewMRk1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0/A9qH otMUAjV2LO/9FedJ6yKmMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD/V0nB6R6NkZCYYP2xDepqWvGRuLLlChyikCceKJz43IxR9I7v+Fs BFATA3k71bfT0aKbh1LDCL+fyO59fqs8GZNpYuSUR7To8CPYXDKK82Qn5nmJbI5V 9JprcEcR0oqRPbGDSlHEosmRYlDRiKtCD5uD+4j3pICWl5Prcw/IISJR5F71oY5z 7WOA9rp61aljM7xVSf8jbAxsw0qA9kBH/7T9GcuOUT/TxMEGlhdzQA6apTcvDaeF EnoUGC1Df+XEwI6bPxUbSJV9fmibmYSbprdIOYH10eOL1gZJMsVKBZRzXu/Q/aaV D+o/t8i2GMaIvZf1IE67Qtzjqi6dmSjy -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:17 2025 by rpki-client