$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: 4ljrVVVXfHNzcMKmI98joTET6RME6GwrEaVSqrjW8Qg= Subject key identifier: ED:B2:6B:EF:82:DD:F1:4A:3A:55:59:3A:18:02:7B:12:9A:6D:54:74 Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: 4B Signing time: Fri 25 Apr 2025 06:22:27 +0000 Manifest this update: Fri 25 Apr 2025 06:22:26 +0000 Manifest next update: Fri 02 May 2025 06:22:26 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: vxbgIC3H1eM+QuDs9SdSHtqGdCdHABCrxlJ3I/M8YJk=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: JQfh1u+kukwSEqZawoJIJYKiGmFwuaaFjBW+kzrVtks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Apr 25 06:22:26 2025 GMT Not After : May 2 06:22:26 2025 GMT Subject: CN=680b2a23-1c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b6:39:0c:bc:d4:35:56:55:45:a6:7c:64:a0: b0:4a:eb:be:64:fd:f5:ea:8c:7b:21:5a:b0:18:dc: c6:35:1a:94:ab:20:7d:60:6a:1f:a6:4c:4e:97:0f: 64:df:81:d3:4e:6c:a8:b0:d0:cc:f4:f2:e4:dd:99: bf:22:9b:35:30:28:8c:c4:c5:4e:e3:54:1f:3b:af: 38:12:55:bb:ab:f0:c2:c1:cc:17:bf:a5:3f:c2:8e: 99:1a:98:d8:58:46:26:f4:5b:d8:23:fa:4a:23:df: 30:9b:2f:37:aa:48:5f:2b:06:0c:d5:06:b6:c1:e6: 30:00:35:6e:83:e1:6a:f1:0b:f1:9e:a5:77:03:8a: f1:bc:fb:ff:c8:4e:d9:df:cd:19:d5:c7:2c:1f:b8: 09:27:05:96:6e:26:26:fe:c0:5e:04:05:2a:f5:11: 1d:65:ab:1d:13:f0:fa:e5:08:2f:b5:68:f2:86:c4: fe:e9:19:be:59:fc:81:6b:bc:67:8a:de:62:59:aa: f9:a0:d9:15:41:7e:2e:f5:43:79:97:6d:b3:a7:d0: c4:23:91:ba:f7:8c:e9:a1:3d:e8:01:27:a7:47:51: bd:83:ef:91:2d:a8:bd:0a:4c:69:63:83:fa:53:db: b7:c0:c2:df:4b:0b:16:25:38:df:e3:2d:33:46:4c: a8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B2:6B:EF:82:DD:F1:4A:3A:55:59:3A:18:02:7B:12:9A:6D:54:74 X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:91:5c:95:5c:83:c7:93:a5:13:20:24:6e:ae:be:34:67:cf: 60:ab:83:24:f1:e7:f2:9a:27:d2:bc:48:9a:10:98:d4:7e:d2: 01:6a:17:f4:9b:37:c2:88:88:c7:7e:58:f9:8f:39:5f:71:84: 2d:6b:ff:bb:52:93:8e:91:62:d1:ae:1e:cd:51:38:62:06:3e: 2b:32:97:e6:b3:a5:aa:79:54:dd:07:a1:01:41:9d:20:0c:e7: b2:c8:7d:93:77:97:aa:23:87:0a:d7:dc:24:72:91:10:2e:e8: 99:71:b4:79:ff:6a:b6:df:17:90:af:c8:e6:7a:49:76:24:2e: f4:fe:c1:04:c0:e1:cd:3e:47:56:13:72:78:57:88:75:58:54: 32:55:3d:ff:a1:78:04:8e:d6:1f:b5:02:64:84:68:a4:b2:74: 4d:d0:ad:0a:d5:e9:06:2b:f3:7a:e7:6d:8a:5a:8f:0e:de:3b: 68:84:23:ee:75:17:25:50:52:30:7c:a9:7f:64:53:ac:10:94: e9:aa:3b:7a:b4:93:f4:73:d4:6d:91:c0:00:6c:51:70:6c:36: 32:6e:77:86:1d:13:b2:93:30:4b:7d:09:1d:66:e3:3c:f9:b1: 46:25:15:f7:d0:e6:2e:7b:e2:c5:8c:20:a8:47:69:66:71:3e: 15:5e:2f:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTBDMDExMC8GA1UEBRMoQTI2NjE2N0EwNEZBRkVFNUFFMUE1MEUwNDU3MEFENUZE NDRFRDY5MjAeFw0yNTA0MjUwNjIyMjZaFw0yNTA1MDIwNjIyMjZaMBgxFjAUBgNV BAMTDTY4MGIyYTIzLTFjMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5tjkMvNQ1VlVFpnxkoLBK675k/fXqjHshWrAY3MY1GpSrIH1gah+mTE6XD2Tf gdNObKiw0Mz08uTdmb8imzUwKIzExU7jVB87rzgSVbur8MLBzBe/pT/CjpkamNhY Rib0W9gj+koj3zCbLzeqSF8rBgzVBrbB5jAANW6D4WrxC/GepXcDivG8+//ITtnf zRnVxywfuAknBZZuJib+wF4EBSr1ER1lqx0T8PrlCC+1aPKGxP7pGb5Z/IFrvGeK 3mJZqvmg2RVBfi71Q3mXbbOn0MQjkbr3jOmhPegBJ6dHUb2D75EtqL0KTGljg/pT 27fAwt9LCxYlON/jLTNGTKi5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7bJr74Ld 8Uo6VVk6GAJ7EpptVHQwHwYDVR0jBBgwFoAUomYWegT6/uWuGlDgRXCtX9RO1pIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMEMwLzRBMkVEQzgwQjVF QzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb21ZV2VnVDZfdVd1R2xEZ1JYQ3RYOVJPMXBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MEMwLzRBMkVEQzgwQjVFQzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VX dUdsRGdSWEN0WDlSTzFwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKyRXJVcg8eTpRMgJG6uvjRnz2CrgyTx5/KaJ9K8SJoQmNR+0gFqF/Sb N8KIiMd+WPmPOV9xhC1r/7tSk46RYtGuHs1ROGIGPisyl+azpap5VN0HoQFBnSAM 57LIfZN3l6ojhwrX3CRykRAu6JlxtHn/arbfF5CvyOZ6SXYkLvT+wQTA4c0+R1YT cnhXiHVYVDJVPf+heASO1h+1AmSEaKSydE3QrQrV6QYr83rnbYpajw7eO2iEI+51 FyVQUjB8qX9kU6wQlOmqO3q0k/Rz1G2RwABsUXBsNjJud4YdE7KTMEt9CR1m4zz5 sUYlFffQ5i574sWMIKhHaWZxPhVeL7w= -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:11 2025 by rpki-client