$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: 0amH449ZPidmlv1d2yMFzSw7gXIUHjBne6a5yJVhN+U= Subject key identifier: E6:7A:31:92:06:F4:7C:D4:E7:C1:E1:55:BB:6A:A4:8D:68:8C:4D:AF Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 0108 Signing time: Sat 03 May 2025 04:22:30 +0000 Manifest this update: Sat 03 May 2025 04:22:30 +0000 Manifest next update: Sat 10 May 2025 04:22:30 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: chkuSWFDQt4ON9MK1h8U+3d43yFTh3xVek7S/InmUng=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: OB7rtGPc0fkmD0lX/j5TtVMfzbTV8gxLM92j8j+P3vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 3 04:22:30 2025 GMT Not After : May 10 04:22:30 2025 GMT Subject: CN=68159a06-e449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:00:89:97:fe:b4:03:e0:57:04:28:95:91:63: 70:17:64:95:b9:31:0f:da:1c:fc:7b:8c:e0:08:fd: 3d:0b:61:8e:9e:01:38:60:eb:62:a5:6f:cd:6b:50: 0c:93:aa:1f:7d:b2:0b:23:68:90:67:40:3f:e1:45: 4e:8e:21:84:98:bc:4b:70:7b:a6:5f:f6:db:4e:b4: 67:c6:00:2e:e8:b3:c2:e0:0b:8a:63:fa:5c:0d:93: 92:aa:3a:4b:d0:12:d9:65:5e:4b:4f:2f:8f:19:57: 56:5b:8e:e3:da:b4:0f:46:5e:19:3d:89:83:7e:b7: 38:3c:b2:0a:d3:54:61:ea:ff:1c:66:1f:ed:a4:86: 4d:0d:96:13:3c:0d:58:44:5d:7d:4d:ca:1a:bc:80: ca:cc:a5:94:e0:28:9f:f2:48:ec:b2:5f:59:4b:4b: ff:66:19:46:2e:fc:32:62:86:39:e1:ea:86:64:fd: 54:82:ab:87:ac:38:40:0d:51:65:a7:6d:55:9b:70: 1f:f5:bc:88:6d:77:73:60:49:1b:fb:73:37:09:4a: 05:88:89:98:a3:10:dc:6b:74:c7:84:8b:3f:a8:20: c5:7b:4c:11:7c:e5:a9:e0:78:da:af:0d:71:03:f6: 82:74:7b:31:58:b8:a7:dd:a8:c6:ee:28:94:3b:19: d3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7A:31:92:06:F4:7C:D4:E7:C1:E1:55:BB:6A:A4:8D:68:8C:4D:AF X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:64:fe:04:a6:db:0d:34:3a:a1:93:94:5e:9d:14:1f:2b:bb: 50:fc:77:cd:c4:31:49:ba:47:a7:45:73:66:22:e9:06:b7:80: 1a:d1:fe:d0:db:47:13:2c:d1:8f:ff:ee:5b:38:ea:85:07:a6: be:a3:a1:f8:c6:9a:08:78:13:e4:3c:0d:3d:77:e9:06:21:3e: 49:7c:5d:7d:73:b1:21:ad:34:ba:a0:39:20:12:be:36:a4:f8: e7:17:94:39:c6:7a:05:b6:1e:4a:29:e6:ec:15:f4:de:7d:86: 65:02:73:fd:fc:9c:aa:21:89:01:ae:ea:18:77:45:42:59:02: e1:c9:6a:a2:41:8e:c3:f9:db:84:bf:ca:0e:dc:38:42:9a:88: 67:4c:9f:40:03:27:44:64:d4:f4:a7:ca:35:7d:af:d4:d5:6d: 79:92:c0:49:82:13:1f:df:5b:25:79:95:4c:58:a1:dd:19:6f: 2f:c6:ab:4d:33:d0:32:b9:af:a1:d3:c6:66:29:e5:d2:74:1d: e7:a0:c8:b4:a7:fe:9c:fe:db:b8:71:48:80:cc:c2:db:ff:b2: a7:6f:21:56:89:e9:01:54:91:e0:91:be:68:55:db:13:43:83: 40:43:51:a0:81:2f:1a:da:45:44:c8:0c:49:5a:d1:1c:8d:03: 03:e8:9a:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNTAzMDQyMjMwWhcNMjUwNTEwMDQyMjMwWjAYMRYwFAYD VQQDEw02ODE1OWEwNi1lNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/QCJl/60A+BXBCiVkWNwF2SVuTEP2hz8e4zgCP09C2GOngE4YOtipW/Na1AM k6offbILI2iQZ0A/4UVOjiGEmLxLcHumX/bbTrRnxgAu6LPC4AuKY/pcDZOSqjpL 0BLZZV5LTy+PGVdWW47j2rQPRl4ZPYmDfrc4PLIK01Rh6v8cZh/tpIZNDZYTPA1Y RF19TcoavIDKzKWU4Cif8kjssl9ZS0v/ZhlGLvwyYoY54eqGZP1UgquHrDhADVFl p21Vm3Af9byIbXdzYEkb+3M3CUoFiImYoxDca3THhIs/qCDFe0wRfOWp4Hjarw1x A/aCdHsxWLin3ajG7iiUOxnTWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ6MZIG 9HzU58HhVbtqpI1ojE2vMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDZP4EptsNNDqhk5RenRQfK7tQ/HfNxDFJukenRXNmIukGt4Aa0f7Q 20cTLNGP/+5bOOqFB6a+o6H4xpoIeBPkPA09d+kGIT5JfF19c7EhrTS6oDkgEr42 pPjnF5Q5xnoFth5KKebsFfTefYZlAnP9/JyqIYkBruoYd0VCWQLhyWqiQY7D+duE v8oO3DhCmohnTJ9AAydEZNT0p8o1fa/U1W15ksBJghMf31sleZVMWKHdGW8vxqtN M9Ayua+h08ZmKeXSdB3noMi0p/6c/tu4cUiAzMLb/7KnbyFWiekBVJHgkb5oVdsT Q4NAQ1GggS8a2kVEyAxJWtEcjQMD6Jpk -----END CERTIFICATE-----Generated at Sun May 4 12:22:55 2025 by rpki-client