$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: qzLd5YVaaryUISSsKOVqxwsl29fMPYzQpcY/MtXACs0= Subject key identifier: C9:3D:10:58:07:B3:49:E2:33:9F:D8:29:EC:86:F2:44:3B:71:CA:EB Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0BC2 Signing time: Thu 24 Apr 2025 18:46:07 +0000 Manifest this update: Thu 24 Apr 2025 18:46:07 +0000 Manifest next update: Thu 01 May 2025 18:46:07 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: NDdIa5IhULivdGufcozYPKLI3Fx/8EkilXLnX7L5T58=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: j0DWhsEHoal3Q4LsD1CyE+J4i6jhKjEMjW9pXFwYCvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205, serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Apr 24 18:46:07 2025 GMT Not After : May 1 18:46:07 2025 GMT Subject: CN=680a86ef-21cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9d:7c:b7:32:ec:1f:94:99:6c:0e:04:46:dd: 80:4a:8e:25:91:d3:c2:7a:5b:5c:94:f4:49:6c:08: fd:8e:f7:c8:9c:da:6d:80:d2:a3:79:68:8b:27:33: b9:5d:01:56:c5:1b:21:e0:f9:1e:28:ca:9e:14:4d: 3e:7b:d9:57:a0:75:c8:24:9a:f5:56:91:a5:47:f1: 8e:c5:b4:a9:52:a7:02:82:38:22:41:a9:dd:53:72: b3:3b:e6:d5:26:dc:09:2b:aa:5a:7d:1a:62:68:3b: 2a:90:a7:55:89:e3:50:c8:6d:67:da:d1:84:b3:a9: 70:57:27:c3:90:d7:ce:f4:0d:d6:c4:3d:55:c1:5c: 24:f0:08:36:e9:59:f8:b1:78:54:21:98:1f:04:90: 4c:8a:22:a2:f7:c6:0d:4a:0e:3c:20:78:fd:61:35: 5e:4b:5c:20:a9:95:3f:a3:c2:a0:64:13:86:d3:e6: c3:ee:33:80:06:53:ca:08:ef:05:4c:61:0f:cb:61: 3c:e3:06:84:75:b6:83:24:25:58:b4:a2:1b:1e:ad: 22:2a:6d:1b:45:d3:f6:26:14:3f:d9:9d:1d:3b:c9: 73:df:58:9c:b8:f6:1d:80:7a:10:d1:16:f2:45:94: 5b:d4:1d:2e:d1:17:09:1f:b6:ec:a9:67:fd:c2:a6: 47:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3D:10:58:07:B3:49:E2:33:9F:D8:29:EC:86:F2:44:3B:71:CA:EB X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:91:51:12:2c:6f:46:82:4c:4f:a9:7a:96:17:77:09:d3:f0: 41:0a:f1:c3:0d:c0:a8:ed:b8:41:19:d5:5c:ad:1e:50:ce:72: 82:97:fe:7a:1f:21:62:ff:77:6c:9f:71:b6:3d:5c:f9:c4:aa: a9:1e:ea:d6:91:6d:98:3d:02:02:7e:69:76:cb:e5:6d:2e:a6: 68:94:94:e2:7d:ee:c6:80:a6:50:68:5a:15:f8:41:71:fe:34: dd:ff:15:6b:7e:94:dd:66:50:7b:dd:a8:f6:af:80:e6:02:0e: 32:c3:23:75:59:43:91:5b:df:33:86:e4:a6:44:ba:13:0a:88: c5:86:1f:f3:80:40:09:79:b2:0c:32:30:1b:19:85:af:ea:e2: 0c:4c:f2:0b:f9:fe:af:7f:c4:3c:ef:70:26:72:34:95:77:33: 5b:bc:17:11:69:dc:3c:8c:b7:3e:72:81:60:63:f9:33:ba:90: 66:af:63:60:55:1c:27:50:e5:55:51:7e:04:05:39:4d:ec:39: a2:37:a5:60:97:5f:37:75:b9:e8:5f:a0:f7:73:92:a5:fb:7c: dc:5d:ba:53:2a:d0:ed:9c:60:19:9a:f6:2d:56:25:c8:85:a7: 8f:95:ca:37:3a:e6:c2:59:47:cc:85:62:ea:47:15:5b:ec:e6: da:48:f6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjUwNDI0MTg0NjA3WhcNMjUwNTAxMTg0NjA3WjAYMRYwFAYD VQQDEw02ODBhODZlZi0yMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup18tzLsH5SZbA4ERt2ASo4lkdPCeltclPRJbAj9jvfInNptgNKjeWiLJzO5 XQFWxRsh4PkeKMqeFE0+e9lXoHXIJJr1VpGlR/GOxbSpUqcCgjgiQandU3KzO+bV JtwJK6pafRpiaDsqkKdVieNQyG1n2tGEs6lwVyfDkNfO9A3WxD1VwVwk8Ag26Vn4 sXhUIZgfBJBMiiKi98YNSg48IHj9YTVeS1wgqZU/o8KgZBOG0+bD7jOABlPKCO8F TGEPy2E84waEdbaDJCVYtKIbHq0iKm0bRdP2JhQ/2Z0dO8lz31icuPYdgHoQ0Rby RZRb1B0u0RcJH7bsqWf9wqZHnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMk9EFgH s0niM5/YKeyG8kQ7ccrrMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXkVESLG9GgkxPqXqWF3cJ0/BBCvHDDcCo7bhBGdVcrR5QznKCl/56 HyFi/3dsn3G2PVz5xKqpHurWkW2YPQICfml2y+VtLqZolJTife7GgKZQaFoV+EFx /jTd/xVrfpTdZlB73aj2r4DmAg4ywyN1WUORW98zhuSmRLoTCojFhh/zgEAJebIM MjAbGYWv6uIMTPIL+f6vf8Q873AmcjSVdzNbvBcRadw8jLc+coFgY/kzupBmr2Ng VRwnUOVVUX4EBTlN7DmiN6Vgl183dbnoX6D3c5Kl+3zcXbpTKtDtnGAZmvYtViXI haePlco3OubCWUfMhWLqRxVb7ObaSPYe -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:45 2025 by rpki-client