$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: Eyf1hoJdemQPC/CSxC66czOUY/icDR16RuPIDuRRJMI= Subject key identifier: A8:46:96:2E:49:67:1D:8F:C4:D7:22:27:B1:B2:9C:6E:8E:8A:97:BE Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 47 Signing time: Fri 25 Apr 2025 02:53:49 +0000 Manifest this update: Fri 25 Apr 2025 02:53:49 +0000 Manifest next update: Fri 02 May 2025 02:53:49 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: 9O31fR150m0UqNjabFsoBwm1bKEbmOYmSgecuUXTtYA=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: NUffLHq82hY3xMoVf55lHNGR19ZjrAZu9OH8lX1bsUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Apr 25 02:53:49 2025 GMT Not After : May 2 02:53:49 2025 GMT Subject: CN=680af93d-05fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:66:c6:7f:26:ee:e0:84:e7:0e:09:df:87: b9:c8:fa:56:6a:53:51:d5:55:f3:98:25:37:94:79: d4:b5:aa:59:5c:e2:14:eb:63:5e:22:77:cb:2b:57: 39:0a:5b:c7:39:ca:38:51:cf:10:47:9b:a6:b7:a6: 7e:5f:06:8b:a6:ef:68:fa:60:18:fd:a3:9d:6e:b3: 76:d9:6e:e2:bf:99:65:72:5e:2c:72:0d:fa:23:46: 82:ff:64:3a:b6:ca:05:c7:26:61:7c:57:1c:77:bc: de:da:e4:8d:c6:f9:a9:ab:f5:5d:fb:38:bb:ab:5b: 61:c9:d0:b5:98:7f:1a:71:05:50:cd:46:d0:6b:5f: 41:55:57:24:6f:5f:d7:a9:8d:90:62:48:c3:75:7b: ab:ec:93:91:fd:0f:dc:39:46:29:7e:28:2c:2c:a4: ca:33:cf:a7:ec:cc:6b:89:46:55:cc:f6:64:ba:f9: ff:46:b7:b5:53:98:59:4a:4b:cb:18:2f:44:67:8e: aa:89:2e:50:43:45:58:4b:11:fb:af:40:60:43:8d: ed:1e:ef:2c:c9:53:d6:55:95:24:e5:52:d3:52:96: df:62:21:e9:82:ec:fd:b6:90:b4:83:51:26:3c:28: 6e:71:28:e5:7a:aa:d5:68:dc:0d:fb:cf:e4:f0:ee: a9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:46:96:2E:49:67:1D:8F:C4:D7:22:27:B1:B2:9C:6E:8E:8A:97:BE X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:95:f4:e0:7f:82:9d:e0:e4:97:de:9e:9e:67:48:e3:ac:b8: 5a:a8:f0:2d:d1:70:69:cc:28:cb:6d:1d:cb:02:c8:13:d0:f6: 67:78:38:79:8c:4d:f5:78:95:a6:5b:19:1a:ae:97:b3:81:92: 9c:1b:87:d1:1a:f1:e7:b4:46:3a:fd:15:5f:ed:32:45:98:49: 1c:57:eb:ed:5f:d7:45:c8:31:f2:97:d3:ad:de:02:15:dd:77: a1:e4:f2:27:c6:46:9e:05:b8:3e:a2:ad:d1:4b:aa:e4:5d:8a: ec:10:59:f0:d9:be:9f:c3:36:89:cd:4b:31:99:f6:d8:43:7f: 84:ef:8b:ea:80:d0:a3:2c:1c:9a:39:4f:cb:9d:08:4f:f8:7e: c0:ef:b9:be:26:f3:0e:bf:3d:28:88:e9:82:51:50:8f:e8:79: 27:c5:be:72:53:a4:8a:2e:77:d0:fc:5a:0d:06:f3:b4:03:f1: fc:57:35:91:98:52:5a:eb:6e:7e:a7:10:ec:8a:60:a7:93:55: e2:0b:47:39:85:b5:2a:d3:80:ab:2b:82:e5:02:74:a8:53:12: 11:e5:61:b0:df:cb:23:34:f1:04:dd:fb:34:d5:4a:42:b5:d7: cf:c4:ae:ce:ae:77:bb:9e:3f:74:4a:3e:b4:f4:43:b8:7b:1b: 68:e0:aa:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA0MjUwMjUzNDlaFw0yNTA1MDIwMjUzNDlaMBgxFjAUBgNV BAMTDTY4MGFmOTNkLTA1ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIR2bGfybu4ITnDgnfh7nI+lZqU1HVVfOYJTeUedS1qllc4hTrY14id8srVzkK W8c5yjhRzxBHm6a3pn5fBoum72j6YBj9o51us3bZbuK/mWVyXixyDfojRoL/ZDq2 ygXHJmF8Vxx3vN7a5I3G+amr9V37OLurW2HJ0LWYfxpxBVDNRtBrX0FVVyRvX9ep jZBiSMN1e6vsk5H9D9w5Ril+KCwspMozz6fszGuJRlXM9mS6+f9Gt7VTmFlKS8sY L0RnjqqJLlBDRVhLEfuvQGBDje0e7yzJU9ZVlSTlUtNSlt9iIemC7P22kLSDUSY8 KG5xKOV6qtVo3A37z+Tw7qmBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqEaWLkln HY/E1yInsbKcbo6Kl74wHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+V9OB/gp3g5Jfenp5nSOOsuFqo8C3RcGnMKMttHcsCyBPQ9md4OHmM TfV4laZbGRqul7OBkpwbh9Ea8ee0Rjr9FV/tMkWYSRxX6+1f10XIMfKX063eAhXd d6Hk8ifGRp4FuD6irdFLquRdiuwQWfDZvp/DNonNSzGZ9thDf4Tvi+qA0KMsHJo5 T8udCE/4fsDvub4m8w6/PSiI6YJRUI/oeSfFvnJTpIoud9D8Wg0G87QD8fxXNZGY Ulrrbn6nEOyKYKeTVeILRzmFtSrTgKsrguUCdKhTEhHlYbDfyyM08QTd+zTVSkK1 18/Ers6ud7ueP3RKPrT0Q7h7G2jgqlE= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:16 2025 by rpki-client