$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: 9rshrMftQ83El3sVYbZxUH54IXjQ4htHtzAz8Zzk1SA= Subject key identifier: F3:D8:00:A1:D1:2E:0D:78:D6:2E:E1:32:5E:83:87:A7:F3:8F:C7:9C Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: B6 Signing time: Fri 25 Apr 2025 02:53:54 +0000 Manifest this update: Fri 25 Apr 2025 02:53:53 +0000 Manifest next update: Fri 02 May 2025 02:53:53 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: VtkwlFvlz/l3nrfdEPu9zxZZxEHxlyAbQprQhyRCcwo=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: bdHgyKcyyyLsXCxe6xjw+MULUMGxfLoTKKgonGSTImI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Apr 25 02:53:53 2025 GMT Not After : May 2 02:53:53 2025 GMT Subject: CN=680af941-84c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:10:34:a3:d3:38:25:1c:8e:1e:64:ad:2e: 31:f0:c4:14:9c:a4:44:3c:93:65:7d:2b:1f:d3:aa: 69:2a:aa:26:9c:ae:8c:09:32:fa:75:e5:0b:40:7d: 5d:05:73:0c:16:ae:0e:51:f0:e4:c6:54:fe:30:30: 05:eb:8c:ae:f8:14:e6:11:70:b0:6f:9a:bb:56:ed: 46:6c:8f:c1:ed:f6:e5:09:54:99:d5:91:e5:d8:81: a3:20:2e:1b:ce:21:56:57:c3:01:ef:3f:17:73:c6: 65:c1:6c:b5:38:57:7b:2d:b5:65:52:0a:dd:d6:33: b6:18:4c:68:a5:63:ac:22:f2:fe:fb:e8:7e:51:b7: e2:ed:d1:af:19:65:d0:2f:bf:11:9a:9f:76:10:3a: 43:79:cd:90:a6:42:42:2c:9e:6d:82:d7:f3:44:37: b9:86:45:9d:54:40:2b:b9:3f:0e:56:a8:c0:87:94: 6f:12:e8:51:62:e9:1c:7f:d3:40:ef:48:64:6c:19: 30:dc:eb:fd:8c:32:f2:86:87:9a:96:93:42:d5:b5: 5c:51:9b:94:9b:3f:99:b0:f1:9c:b7:27:e8:1c:9b: 1c:52:76:e5:9d:64:8a:84:b4:f7:e1:bb:8d:20:92: 86:a7:9f:1b:79:0c:e3:79:a6:bc:91:01:21:28:ea: c2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D8:00:A1:D1:2E:0D:78:D6:2E:E1:32:5E:83:87:A7:F3:8F:C7:9C X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:56:18:77:18:6e:76:2c:3f:0c:37:f8:0d:f7:ad:67:0b:ee: 99:e5:26:ab:f6:87:4c:f1:2e:7e:73:52:70:86:0f:19:41:21: fc:c5:08:36:aa:26:33:be:d6:57:8d:72:97:ea:b3:40:ec:ae: 3d:42:e3:39:d8:45:32:73:ae:0f:09:d4:9c:50:d5:5b:c8:35: 95:44:31:61:f2:f1:ca:d5:43:f2:15:e9:b1:2a:00:d5:b6:0c: 03:ac:7d:d8:76:59:0a:00:6f:3e:61:c5:5d:2f:43:40:c3:f3: 3a:39:db:3c:f5:62:9f:c2:89:2c:fd:76:b4:71:2b:ea:98:61: 33:a6:b0:38:ee:70:be:d3:db:48:d4:5e:c1:0b:25:4f:54:36: 36:f8:32:b1:08:a0:ce:51:be:91:63:a5:f9:06:2f:ec:6d:01: 05:d0:35:dc:33:bc:c2:76:cb:12:10:3d:2b:e5:9f:95:25:28: 70:b6:00:32:2a:a7:ed:15:74:03:ff:9d:b7:78:23:62:48:e3: 16:91:db:d7:2a:45:da:eb:4f:98:29:2e:97:75:43:32:95:d6: 27:85:4d:de:b6:05:ad:3b:5b:ad:7e:39:ef:33:b9:e8:b2:02: c0:0c:06:05:85:47:f9:bb:d9:e7:91:26:50:a9:73:72:cd:47: 33:32:91:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNDI1MDI1MzUzWhcNMjUwNTAyMDI1MzUzWjAYMRYwFAYD VQQDEw02ODBhZjk0MS04NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEkQNKPTOCUcjh5krS4x8MQUnKREPJNlfSsf06ppKqomnK6MCTL6deULQH1d BXMMFq4OUfDkxlT+MDAF64yu+BTmEXCwb5q7Vu1GbI/B7fblCVSZ1ZHl2IGjIC4b ziFWV8MB7z8Xc8ZlwWy1OFd7LbVlUgrd1jO2GExopWOsIvL+++h+Ubfi7dGvGWXQ L78Rmp92EDpDec2QpkJCLJ5tgtfzRDe5hkWdVEAruT8OVqjAh5RvEuhRYukcf9NA 70hkbBkw3Ov9jDLyhoealpNC1bVcUZuUmz+ZsPGctyfoHJscUnblnWSKhLT34buN IJKGp58beQzjeaa8kQEhKOrCuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPYAKHR Lg141i7hMl6Dh6fzj8ecMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChVhh3GG52LD8MN/gN961nC+6Z5Sar9odM8S5+c1Jwhg8ZQSH8xQg2 qiYzvtZXjXKX6rNA7K49QuM52EUyc64PCdScUNVbyDWVRDFh8vHK1UPyFemxKgDV tgwDrH3YdlkKAG8+YcVdL0NAw/M6Ods89WKfwoks/Xa0cSvqmGEzprA47nC+09tI 1F7BCyVPVDY2+DKxCKDOUb6RY6X5Bi/sbQEF0DXcM7zCdssSED0r5Z+VJShwtgAy KqftFXQD/523eCNiSOMWkdvXKkXa60+YKS6XdUMyldYnhU3etgWtO1utfjnvM7no sgLADAYFhUf5u9nnkSZQqXNyzUczMpHo -----END CERTIFICATE-----Generated at Sat Apr 26 13:47:09 2025 by rpki-client