$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: QVmav1AZ53elWNdkN2eSRV6KuPHDmc6S4rcGwOnCSTI= Subject key identifier: 64:2F:DF:29:CD:8A:91:8D:76:D7:D9:C4:56:B8:F0:81:3C:6D:08:8A Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 37 Signing time: Fri 25 Apr 2025 06:33:44 +0000 Manifest this update: Fri 25 Apr 2025 06:33:43 +0000 Manifest next update: Fri 02 May 2025 06:33:43 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: 41XtMTZWW7lwcsCMtvCoF+SKhFWnc9+343fNx5v4iiY=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Apr 25 06:33:43 2025 GMT Not After : May 2 06:33:43 2025 GMT Subject: CN=680b2cc7-0d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c1:2b:5a:c5:76:0a:ca:c2:65:62:a1:88:8d: f4:1f:0e:f4:1a:91:c8:ba:c1:9b:af:ee:d5:cd:fd: ee:d9:ef:ea:73:f7:36:69:98:fb:ac:3c:11:ed:32: e0:af:86:dd:c3:cf:5b:78:df:cc:e6:c9:93:1c:e6: b6:e9:8e:4b:7e:39:b1:67:0d:1a:dd:0c:a7:56:bf: 16:4f:7b:73:53:ca:39:e1:95:f1:7e:8f:6f:1e:76: 73:80:4d:e3:2b:8a:05:63:de:2e:0f:21:18:35:45: 9d:da:3e:3a:60:09:2a:1a:d8:07:10:59:1e:2d:86: 72:4c:8e:1b:c3:47:38:13:b0:c9:d2:e4:b8:38:01: 83:72:34:ad:5e:3b:a8:7c:86:62:30:34:46:f8:b4: a9:37:40:ae:23:33:9c:b8:18:09:20:c7:20:3a:a2: 06:ca:55:c2:41:82:f2:60:b8:d7:fb:42:f5:47:b5: b9:8c:79:11:4e:62:ae:2a:11:22:c4:32:e4:83:03: c8:9b:9e:c9:d6:48:79:40:db:1e:17:77:b2:f0:44: 96:54:4a:ab:8a:45:03:81:09:d5:c6:dd:79:87:82: 4b:db:b4:77:72:4c:bd:4d:a3:ba:ad:2c:99:1c:83: d5:4c:8e:0c:26:eb:8a:bc:75:1c:af:aa:50:c1:56: c1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2F:DF:29:CD:8A:91:8D:76:D7:D9:C4:56:B8:F0:81:3C:6D:08:8A X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b4:74:de:18:c5:82:16:55:d2:bb:11:21:0e:e9:15:e1:6b: f3:a9:a6:8f:af:5f:6a:f9:3b:8c:4d:08:c6:e7:2e:ac:84:ea: 04:9f:04:e4:b8:6f:62:1b:01:52:ab:a0:a6:f6:74:2b:cd:b1: a7:a8:b2:8b:23:6a:1b:3b:99:78:c3:e1:97:fa:ac:82:82:cb: 8f:d4:17:ff:bc:32:bf:2b:17:79:13:03:fd:b4:29:41:f3:28: 0c:0e:48:ff:88:2d:cc:bb:7a:ad:4e:9e:ec:e2:b6:35:90:34: 48:e6:02:7a:ed:1e:e9:db:b6:8d:40:18:5f:f0:8e:d6:d7:d3: 7f:f9:55:97:8d:cd:e0:ef:e9:25:1d:ad:df:f7:72:93:24:42: 76:7f:af:93:57:2c:9c:b4:e3:ea:e6:41:0d:c7:8f:cf:f9:fb: 82:6e:bd:b9:8b:71:4a:93:76:58:b3:7e:fc:ba:59:86:21:77: 02:f6:16:ed:2c:04:ff:75:0e:f5:32:de:67:7f:d7:fb:17:dd: bc:1f:6b:5a:ed:01:fa:cd:96:bd:77:03:b4:54:a4:28:08:ba: ba:7d:6f:b5:da:5a:e5:65:63:c2:c8:23:99:0e:44:32:88:7c: e3:6e:ce:94:2d:d6:b5:89:b7:74:88:00:a7:63:45:e2:4f:c0: bc:f4:10:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA0MjUwNjMzNDNaFw0yNTA1MDIwNjMzNDNaMBgxFjAUBgNV BAMTDTY4MGIyY2M3LTBkMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIwStaxXYKysJlYqGIjfQfDvQakci6wZuv7tXN/e7Z7+pz9zZpmPusPBHtMuCv ht3Dz1t438zmyZMc5rbpjkt+ObFnDRrdDKdWvxZPe3NTyjnhlfF+j28ednOATeMr igVj3i4PIRg1RZ3aPjpgCSoa2AcQWR4thnJMjhvDRzgTsMnS5Lg4AYNyNK1eO6h8 hmIwNEb4tKk3QK4jM5y4GAkgxyA6ogbKVcJBgvJguNf7QvVHtbmMeRFOYq4qESLE MuSDA8ibnsnWSHlA2x4Xd7LwRJZUSquKRQOBCdXG3XmHgkvbtHdyTL1No7qtLJkc g9VMjgwm64q8dRyvqlDBVsGNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZC/fKc2K kY1219nEVrjwgTxtCIowHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHC0dN4YxYIWVdK7ESEO6RXha/Oppo+vX2r5O4xNCMbnLqyE6gSfBOS4 b2IbAVKroKb2dCvNsaeososjahs7mXjD4Zf6rIKCy4/UF/+8Mr8rF3kTA/20KUHz KAwOSP+ILcy7eq1OnuzitjWQNEjmAnrtHunbto1AGF/wjtbX03/5VZeNzeDv6SUd rd/3cpMkQnZ/r5NXLJy04+rmQQ3Hj8/5+4JuvbmLcUqTdlizfvy6WYYhdwL2Fu0s BP91DvUy3md/1/sX3bwfa1rtAfrNlr13A7RUpCgIurp9b7XaWuVlY8LII5kORDKI fONuzpQt1rWJt3SIAKdjReJPwLz0EC4= -----END CERTIFICATE-----Generated at Sat Apr 26 17:25:54 2025 by rpki-client