$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: h+RCLyhIeuTOVVRhxb3XLYGw2b2bHHZjVp/H59BDiVg= Subject key identifier: AD:9A:10:B6:85:6A:1C:95:74:3B:00:D9:D6:0E:B2:CA:60:AD:33:D4 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 0164 Signing time: Fri 25 Apr 2025 03:28:44 +0000 Manifest this update: Fri 25 Apr 2025 03:28:43 +0000 Manifest next update: Fri 02 May 2025 03:28:43 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: r+/1VNP6Q1VkXb4+sW0tFGpbU+On8o1Tp5gvBRjH5gk=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Apr 25 03:28:43 2025 GMT Not After : May 2 03:28:43 2025 GMT Subject: CN=680b016c-31de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e6:a2:04:d8:86:6b:3e:44:41:c4:a0:05:11: 97:af:04:46:d1:a3:5e:e7:62:84:73:09:57:ca:2c: ee:41:8f:c0:ef:b7:96:90:9f:1d:4b:cd:36:95:78: e5:d7:b8:b1:6b:a4:5e:ab:a0:12:a1:0b:f4:22:98: b0:97:0f:e7:fd:2c:c2:f9:92:87:b1:14:04:f7:41: cb:84:ad:b6:0b:c0:5e:71:ca:f2:cd:22:d7:4f:a4: b6:ff:ec:bb:be:da:2f:3d:77:be:6f:ed:29:28:80: 9a:06:48:9a:35:47:19:38:59:bd:8f:d2:c2:bd:6c: 90:d0:fa:e2:71:18:60:5f:de:cf:f0:91:ec:59:16: 64:f7:4c:51:9e:ea:ad:32:33:cf:4c:80:bd:e4:b6: 0a:f1:77:57:fb:d4:3e:fa:fc:45:67:eb:9e:19:8e: 88:41:f0:a0:55:3e:3d:eb:50:93:28:9b:07:eb:fc: a1:f3:de:06:2e:69:7e:19:de:aa:4d:3b:61:e5:98: 67:f4:2b:1c:bf:8f:19:d4:26:bf:43:7d:14:ff:ba: 04:c9:70:4d:27:e9:3f:3b:54:7c:3b:0a:e6:15:52: a6:ec:2d:df:6e:82:d2:0f:1d:35:13:d0:93:b2:71: 4b:e4:df:da:c2:3c:0b:ba:80:91:cd:1f:2f:b1:df: 26:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9A:10:B6:85:6A:1C:95:74:3B:00:D9:D6:0E:B2:CA:60:AD:33:D4 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:92:1e:00:d2:d8:30:a2:d3:09:68:3c:05:12:8b:36:70:ba: 5b:c3:78:3b:37:1a:2b:70:90:02:8b:90:3b:d5:78:d1:c9:34: 6e:4e:12:6e:ef:66:b8:c2:3d:25:54:bf:1e:9b:16:dc:c2:8a: b9:55:32:6d:7d:45:a3:0e:1a:31:74:d1:5c:ac:29:a8:e4:ed: 05:09:18:07:7a:72:28:a2:6a:4b:46:2a:fe:60:ba:68:50:a2: 88:4d:ac:e9:3a:be:db:11:00:0c:99:97:2d:f3:92:7f:f6:e7: 6e:99:5a:19:02:11:a6:02:13:5a:3b:e0:d7:8d:d6:17:c0:f5: ee:8f:3f:5e:21:51:b0:d7:0b:6b:33:16:e3:0a:ff:77:43:31: a6:57:4f:db:1d:c3:7e:0c:bc:e6:3f:bf:52:a8:65:42:b6:11: 53:c1:50:00:6d:e0:1d:44:fb:54:35:ab:ad:2e:ab:b2:42:77: ab:45:12:db:0d:17:c2:88:7e:ce:69:d2:f6:8c:e5:37:39:70: 2a:98:c5:8f:0b:82:b3:c4:21:99:56:ce:cf:d1:68:78:65:12: b1:72:81:ab:26:5c:0c:d8:d9:c9:6b:1d:c7:f3:82:43:c3:7f: 1e:df:a5:73:b1:db:cf:ed:40:5a:ce:a3:20:36:e5:69:18:fe: 68:39:5e:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUwNDI1MDMyODQzWhcNMjUwNTAyMDMyODQzWjAYMRYwFAYD VQQDEw02ODBiMDE2Yy0zMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOaiBNiGaz5EQcSgBRGXrwRG0aNe52KEcwlXyizuQY/A77eWkJ8dS802lXjl 17ixa6Req6ASoQv0Ipiwlw/n/SzC+ZKHsRQE90HLhK22C8BeccryzSLXT6S2/+y7 vtovPXe+b+0pKICaBkiaNUcZOFm9j9LCvWyQ0PricRhgX97P8JHsWRZk90xRnuqt MjPPTIC95LYK8XdX+9Q++vxFZ+ueGY6IQfCgVT4961CTKJsH6/yh894GLml+Gd6q TTth5Zhn9Cscv48Z1Ca/Q30U/7oEyXBNJ+k/O1R8OwrmFVKm7C3fboLSDx01E9CT snFL5N/awjwLuoCRzR8vsd8mRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2aELaF ahyVdDsA2dYOsspgrTPUMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKkh4A0tgwotMJaDwFEos2cLpbw3g7NxorcJACi5A71XjRyTRuThJu 72a4wj0lVL8emxbcwoq5VTJtfUWjDhoxdNFcrCmo5O0FCRgHenIoompLRir+YLpo UKKITazpOr7bEQAMmZct85J/9udumVoZAhGmAhNaO+DXjdYXwPXujz9eIVGw1wtr MxbjCv93QzGmV0/bHcN+DLzmP79SqGVCthFTwVAAbeAdRPtUNautLquyQnerRRLb DRfCiH7OadL2jOU3OXAqmMWPC4KzxCGZVs7P0Wh4ZRKxcoGrJlwM2NnJax3H84JD w38e36VzsdvP7UBazqMgNuVpGP5oOV5E -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:28 2025 by rpki-client