$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: ptei8GcfL05q4vzD2XPu1EfwGVBci2+yOa4y8CESoz4= Subject key identifier: 1E:87:47:79:F8:4C:EC:DF:50:CF:08:46:4D:12:75:D7:35:99:37:08 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: 3A Signing time: Fri 25 Apr 2025 06:30:36 +0000 Manifest this update: Fri 25 Apr 2025 06:30:36 +0000 Manifest next update: Fri 02 May 2025 06:30:36 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: 2LH5EqxJrOQ9cvryAs1V2r0JaiD3r1g7t3rM4Rtupds=) 2: 731ABC30CB5A11EFBEE64062C4F9AE02.roa (hash: Q1rZZ9iM/5ZnKcT/2gghzGKoj09HJfMAmvtogcokE8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Apr 25 06:30:36 2025 GMT Not After : May 2 06:30:36 2025 GMT Subject: CN=680b2c0c-a1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:00:a7:b9:90:66:fd:76:e4:06:1c:2a:f8: 9e:56:35:38:9d:fb:83:56:a7:89:f5:a5:9a:8e:6f: 2f:12:be:7f:fc:00:0b:5c:56:ab:54:06:2c:cd:84: 30:0c:5e:dd:43:da:5f:6a:e1:15:1f:70:28:50:e6: c6:95:b0:ae:a3:0f:76:a0:7f:46:4f:08:c2:9c:ab: d9:ea:65:c8:d4:20:16:99:c4:12:ac:59:4f:d9:ff: 0b:e5:81:46:88:7e:ec:66:22:58:d1:5b:dd:f8:9c: ee:0b:de:db:42:d4:dc:11:51:8c:eb:cb:01:13:91: 42:37:0e:bf:27:6a:8c:90:6d:89:12:f7:5b:52:71: 28:6a:e1:a5:4b:3b:ea:e3:1e:8b:b9:15:7b:ec:4b: be:10:95:c8:2a:ea:04:eb:03:62:10:75:7f:55:40: 1b:37:c3:97:cd:e0:39:07:c6:d0:88:b2:09:90:fa: c7:48:c3:e1:37:2b:e8:f3:1e:b1:5a:3f:82:d6:3f: c6:57:28:07:4f:f0:22:ce:78:e0:b7:02:0e:fd:9c: 8b:62:e9:a1:b1:72:2e:33:e1:79:3b:e9:d8:29:d3: 53:d2:f6:0c:9a:2d:81:5c:06:3e:fe:94:06:d7:bb: 6f:b8:b3:d4:8a:4d:d2:f2:b6:c8:c0:7f:6e:c8:09: b5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:87:47:79:F8:4C:EC:DF:50:CF:08:46:4D:12:75:D7:35:99:37:08 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:f5:50:16:42:10:98:b0:c6:4e:26:44:e7:b9:ec:d5:a1:f0: 38:aa:a8:dc:b0:56:06:77:0b:bb:34:08:26:fd:1b:8f:97:bf: 84:2c:07:5b:39:07:b5:bf:be:69:75:bb:e0:31:09:1c:62:a7: ce:37:ee:c4:f4:36:ae:ca:4e:be:c1:95:69:de:3a:47:1f:bf: 36:14:e2:9b:49:d7:6f:8b:f9:f3:d5:69:1a:e1:18:c1:3c:bc: 7b:ac:bf:0a:09:31:14:52:e7:47:03:7c:51:3d:ed:1c:00:a7: e1:bd:eb:a3:20:8b:6c:34:3a:06:20:8f:db:10:ac:89:34:a7: e6:74:15:ec:a0:96:42:83:fc:a8:9a:3e:22:c2:b4:01:e3:f4: 66:f8:3e:a6:92:0c:b5:9f:e3:e6:c4:fa:5f:cf:bb:8c:82:d7: 06:63:b6:53:be:69:6b:c4:ce:6b:b2:03:50:c0:2a:23:e9:02: cb:c5:43:9d:14:57:6d:fd:88:07:15:89:c0:3a:2d:bf:8f:52: d8:9b:37:d1:53:f4:14:30:78:b1:0b:ec:f8:e9:b3:33:f6:e1: c4:fb:fb:b3:a2:ee:89:a3:d9:53:b1:a9:3f:05:ba:54:a8:c8: 7e:09:96:75:98:4a:20:62:f9:ce:01:32:36:ac:d9:c1:82:29: d7:1e:81:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTA0MjUwNjMwMzZaFw0yNTA1MDIwNjMwMzZaMBgxFjAUBgNV BAMTDTY4MGIyYzBjLWExZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5/QCnuZBm/XbkBhwq+J5WNTid+4NWp4n1pZqOby8Svn/8AAtcVqtUBizNhDAM Xt1D2l9q4RUfcChQ5saVsK6jD3agf0ZPCMKcq9nqZcjUIBaZxBKsWU/Z/wvlgUaI fuxmIljRW934nO4L3ttC1NwRUYzrywETkUI3Dr8naoyQbYkS91tScShq4aVLO+rj Hou5FXvsS74Qlcgq6gTrA2IQdX9VQBs3w5fN4DkHxtCIsgmQ+sdIw+E3K+jzHrFa P4LWP8ZXKAdP8CLOeOC3Ag79nIti6aGxci4z4Xk76dgp01PS9gyaLYFcBj7+lAbX u2+4s9SKTdLytsjAf27ICbX/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHodHefhM 7N9QzwhGTRJ11zWZNwgwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0RFN0UzMjFFQ0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1Nv czhwNWhEYVNWVmQ4c2I2VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALv1UBZCEJiwxk4mROe57NWh8DiqqNywVgZ3C7s0CCb9G4+Xv4QsB1s5 B7W/vml1u+AxCRxip8437sT0Nq7KTr7BlWneOkcfvzYU4ptJ12+L+fPVaRrhGME8 vHusvwoJMRRS50cDfFE97RwAp+G966Mgi2w0OgYgj9sQrIk0p+Z0FeyglkKD/Kia PiLCtAHj9Gb4PqaSDLWf4+bE+l/Pu4yC1wZjtlO+aWvEzmuyA1DAKiPpAsvFQ50U V239iAcVicA6Lb+PUtibN9FT9BQweLEL7PjpszP24cT7+7Oi7omj2VOxqT8FulSo yH4JlnWYSiBi+c4BMjas2cGCKdcegeA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:28 2025 by rpki-client