$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.mft File: o5TKy9vYxM31SvFn4m1WJKUk4u4.mft (raw, json) Hash identifier: of+i1S3ftNt3z0nSh11oJyxJN/+goN+LQ+0QWQ4RlsA= Subject key identifier: E5:13:72:02:4D:5C:14:C1:B8:9C:CD:D5:7F:62:96:75:E1:67:66:2E Authority key identifier: A3:94:CA:CB:DB:D8:C4:CD:F5:4A:F1:67:E2:6D:56:24:A5:24:E2:EE Certificate issuer: /CN=A918D7A4/serialNumber=A394CACBDBD8C4CDF54AF167E26D5624A524E2EE Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5TKy9vYxM31SvFn4m1WJKUk4u4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.mft Manifest number: AE Signing time: Fri 25 Apr 2025 05:04:32 +0000 Manifest this update: Fri 25 Apr 2025 05:04:31 +0000 Manifest next update: Fri 02 May 2025 05:04:31 +0000 Files and hashes: 1: o5TKy9vYxM31SvFn4m1WJKUk4u4.crl (hash: yLZbfHVZSJvxfm7eNVbZt9+Rp7iMtADMRb8zbyVj64g=) 2: 8D61B05219AE11EFB41EAC2CC4F9AE02.roa (hash: LydTto/QF734TxXbjD+YOeOmtAZVNFAjvOAnRG1pnYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.crl rsync://rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5TKy9vYxM31SvFn4m1WJKUk4u4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7A4, serialNumber=A394CACBDBD8C4CDF54AF167E26D5624A524E2EE Validity Not Before: Apr 25 05:04:31 2025 GMT Not After : May 2 05:04:31 2025 GMT Subject: CN=680b17e0-a946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:57:c6:51:d5:b3:b1:75:9e:53:68:4d:3a:af: 28:13:55:36:07:79:f1:1f:a6:a3:fb:bc:3e:f7:61: 8e:62:09:74:98:77:a8:bd:c5:ca:1e:8e:1d:f7:3d: 21:ed:cb:e6:f7:23:cb:4b:1a:f0:00:ab:2f:87:d0: 23:1d:9d:11:ce:24:7a:05:5c:50:fb:b6:89:ab:7e: 03:d4:0a:28:30:e4:49:73:22:1a:30:55:7e:10:8d: 0c:44:3b:a7:f4:9a:23:b9:90:4c:d3:a8:d2:05:c1: da:b8:74:e5:4a:93:53:16:e7:38:ef:27:25:94:06: f5:d4:fa:ab:05:e3:86:b3:21:b0:d4:e1:b9:fa:ab: af:b8:4a:8a:cd:7d:4d:82:2a:87:54:44:c2:4b:ed: 64:8e:80:0c:37:46:28:86:c5:a6:24:10:b2:b8:bf: f0:9b:af:42:3f:6b:ba:0f:ad:d4:8b:cd:11:b7:97: 36:6e:88:20:08:49:f2:ec:d4:1b:87:64:10:1c:20: 14:25:05:9d:7b:ff:ab:d4:22:f5:87:30:02:24:78: a8:53:04:3e:cd:b1:42:0a:ea:9f:3f:5b:2d:b1:14: 55:4b:a7:f0:9f:90:8d:13:16:e5:ee:5e:49:02:ee: fc:82:8b:a6:17:df:8b:1a:a2:8c:b0:7b:32:f2:d8: 09:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:13:72:02:4D:5C:14:C1:B8:9C:CD:D5:7F:62:96:75:E1:67:66:2E X509v3 Authority Key Identifier: keyid:A3:94:CA:CB:DB:D8:C4:CD:F5:4A:F1:67:E2:6D:56:24:A5:24:E2:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5TKy9vYxM31SvFn4m1WJKUk4u4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7A4/63ED4010198611EF89087E30C4F9AE02/o5TKy9vYxM31SvFn4m1WJKUk4u4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:c4:fa:76:22:e9:66:51:b0:bc:72:c5:b8:b0:07:b3:19:13: 93:2f:e3:a8:66:c7:90:a0:27:fe:35:a8:95:ad:b9:33:b5:72: f9:96:05:73:0d:6b:83:80:2f:3e:9a:cb:34:ae:ac:9d:1e:e6: 01:28:81:d2:b1:a2:db:d2:1b:a6:cc:d7:1e:25:fd:5e:a4:16: f6:75:c6:86:d7:d2:96:02:09:b5:b8:37:7c:c4:f4:5d:0c:30: 79:04:5c:1c:51:4a:e8:0d:67:da:1c:b9:d2:48:ac:04:0d:b4: bc:9f:be:ec:a1:e2:c4:51:23:8d:7e:b0:dd:ad:7d:21:f6:83: 75:df:80:89:30:ab:2e:ec:33:53:93:b8:34:cb:43:28:ad:27: 41:5d:30:56:30:be:ac:49:b1:d6:fb:1f:51:44:a3:44:48:b2: 50:25:01:21:69:e7:00:36:73:a5:8f:4c:be:ec:bc:4d:a4:f7: 2f:a1:3b:fa:17:62:53:52:48:24:4f:17:e1:8c:c3:b3:08:f9: fb:92:b3:0a:64:9e:f2:cf:a1:99:32:80:79:df:5f:42:18:1f: 17:11:2e:a2:b7:d8:3a:4d:ff:b4:73:25:17:12:97:35:4e:51: f5:65:46:07:a0:c3:34:ec:36:0c:2f:16:75:dc:26:6e:5e:66: 1b:84:d3:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3QTQxMTAvBgNVBAUTKEEzOTRDQUNCREJEOEM0Q0RGNTRBRjE2N0UyNkQ1NjI0 QTUyNEUyRUUwHhcNMjUwNDI1MDUwNDMxWhcNMjUwNTAyMDUwNDMxWjAYMRYwFAYD VQQDEw02ODBiMTdlMC1hOTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmFfGUdWzsXWeU2hNOq8oE1U2B3nxH6aj+7w+92GOYgl0mHeovcXKHo4d9z0h 7cvm9yPLSxrwAKsvh9AjHZ0RziR6BVxQ+7aJq34D1AooMORJcyIaMFV+EI0MRDun 9JojuZBM06jSBcHauHTlSpNTFuc47ycllAb11PqrBeOGsyGw1OG5+quvuEqKzX1N giqHVETCS+1kjoAMN0YohsWmJBCyuL/wm69CP2u6D63Ui80Rt5c2boggCEny7NQb h2QQHCAUJQWde/+r1CL1hzACJHioUwQ+zbFCCuqfP1stsRRVS6fwn5CNExbl7l5J Au78goumF9+LGqKMsHsy8tgJTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUTcgJN XBTBuJzN1X9ilnXhZ2YuMB8GA1UdIwQYMBaAFKOUysvb2MTN9UrxZ+JtViSlJOLu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdBNC82M0VENDAxMDE5 ODYxMUVGODkwODdFMzBDNEY5QUUwMi9vNVRLeTl2WXhNMzFTdkZuNG0xV0pLVWs0 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281VEt5OXZZeE0zMVN2Rm40bTFXSktVazR1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdBNC82M0VENDAxMDE5ODYxMUVGODkwODdFMzBDNEY5QUUwMi9vNVRLeTl2WXhN MzFTdkZuNG0xV0pLVWs0dTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAxPp2IulmUbC8csW4sAezGROTL+OoZseQoCf+NaiVrbkztXL5lgVz DWuDgC8+mss0rqydHuYBKIHSsaLb0humzNceJf1epBb2dcaG19KWAgm1uDd8xPRd DDB5BFwcUUroDWfaHLnSSKwEDbS8n77soeLEUSONfrDdrX0h9oN134CJMKsu7DNT k7g0y0MorSdBXTBWML6sSbHW+x9RRKNESLJQJQEhaecANnOlj0y+7LxNpPcvoTv6 F2JTUkgkTxfhjMOzCPn7krMKZJ7yz6GZMoB5319CGB8XES6it9g6Tf+0cyUXEpc1 TlH1ZUYHoMM07DYMLxZ13CZuXmYbhNNg -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:02 2025 by rpki-client