$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft File: OYVAYLL1jUyRnGTapLfrHwzfaDA.mft (raw, json) Hash identifier: cSBrXJys+bov9gJLnoNQQy2GnPqhzKZiJDNjurkdPHc= Subject key identifier: 65:A3:A6:E0:62:7A:C7:89:FE:EF:E4:ED:71:79:03:32:97:E3:FB:C9 Authority key identifier: 39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 Certificate issuer: /CN=A91A1A51/serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Certificate serial: 0338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft Manifest number: 0338 Signing time: Fri 25 Apr 2025 00:49:14 +0000 Manifest this update: Fri 25 Apr 2025 00:49:13 +0000 Manifest next update: Fri 02 May 2025 00:49:13 +0000 Files and hashes: 1: OYVAYLL1jUyRnGTapLfrHwzfaDA.crl (hash: BxLEJFajJFqeNi5dL7zi2j1oMUWNpgMgspEysJe3z3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1A51, serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Validity Not Before: Apr 25 00:49:13 2025 GMT Not After : May 2 00:49:13 2025 GMT Subject: CN=680adc09-9d59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:91:89:1a:9a:72:ee:79:ce:5c:1f:5e:71: f5:97:aa:50:ed:36:7a:5e:3a:54:75:cd:d8:9e:8e: 1a:46:bd:9f:3e:50:5c:00:36:d7:4d:71:92:45:e4: cb:b9:75:4a:a1:65:a0:9c:e9:9f:22:1b:09:22:35: 06:5d:cb:63:cb:ef:1a:29:d3:25:15:45:a9:5c:af: 11:45:5d:c9:51:79:9d:0c:2f:bf:00:ac:1f:40:57: 58:ca:13:72:9e:49:98:5d:f6:76:4f:9d:07:4f:b8: f6:c1:99:2a:a1:78:5f:7f:64:74:9e:28:f0:17:0b: 53:6c:67:bf:12:e9:51:8c:f7:3f:50:ca:09:3a:d6: 54:65:66:74:1c:0c:e4:43:8d:02:49:29:72:ba:a3: f5:06:e3:f6:56:be:7a:59:c3:c5:5f:04:bf:75:db: 96:38:35:9a:fa:7a:97:b9:1e:d6:64:a5:2e:0f:34: bf:7d:9a:98:a4:a6:81:0a:57:42:1f:c3:62:1e:ff: a5:24:1c:4d:72:74:1b:47:94:5b:29:6f:16:a3:56: e0:9a:5c:c3:22:43:63:7a:a3:f3:2b:57:6f:a7:f6: 3d:cb:ca:ba:40:91:c7:fc:e9:9d:10:43:7c:5d:bf: 7e:45:69:94:54:fb:cc:c5:35:a0:88:ac:de:05:37: 08:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A3:A6:E0:62:7A:C7:89:FE:EF:E4:ED:71:79:03:32:97:E3:FB:C9 X509v3 Authority Key Identifier: keyid:39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:0a:51:97:31:51:9e:40:d8:21:ef:4e:26:31:6a:27:19:40: 2a:1c:6e:81:8a:2d:88:cb:8a:2d:97:b2:ef:69:85:8f:ef:e2: 40:d9:4c:b2:8d:43:7c:1a:57:fc:5e:b3:5a:4e:1d:4d:4b:54: a7:f9:7e:da:a1:55:87:d3:9c:85:29:52:d7:7c:88:1d:1b:f1: 03:7c:19:77:a9:72:03:47:a8:78:69:d4:23:c3:d3:44:de:a1: 93:1c:21:21:01:64:94:79:d1:f6:1e:4b:b4:40:d9:df:28:a9: 6d:50:f6:b2:44:98:52:67:97:db:39:bd:d3:77:f6:63:f7:82: 72:00:fb:4c:46:e2:6c:a3:a1:e8:b9:31:da:83:c5:2c:79:02: cc:2e:df:c3:23:07:b2:b6:6d:41:0c:66:3e:20:9b:1c:e6:6e: bb:4d:2a:35:15:ee:42:1e:79:dd:ce:7e:8b:4c:23:d8:e9:5d: 51:f8:35:40:55:5a:25:4b:af:c6:d6:ef:96:7b:1d:03:3c:e0: 95:d8:61:dc:31:06:01:92:0c:be:c2:e5:99:f7:20:bc:8f:02: 77:f7:bd:04:46:d1:58:fe:11:c3:f0:64:f4:86:a3:2b:8a:8b: 1d:c3:fa:b1:3c:b2:2b:91:54:77:d4:76:b3:62:7b:f0:18:2b: e5:fc:7c:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFBNTExMTAvBgNVBAUTKDM5ODU0MDYwQjJGNThENEM5MTlDNjREQUE0QjdFQjFG MENERjY4MzAwHhcNMjUwNDI1MDA0OTEzWhcNMjUwNTAyMDA0OTEzWjAYMRYwFAYD VQQDEw02ODBhZGMwOS05ZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/WRiRqacu55zlwfXnH1l6pQ7TZ6XjpUdc3Yno4aRr2fPlBcADbXTXGSReTL uXVKoWWgnOmfIhsJIjUGXctjy+8aKdMlFUWpXK8RRV3JUXmdDC+/AKwfQFdYyhNy nkmYXfZ2T50HT7j2wZkqoXhff2R0nijwFwtTbGe/EulRjPc/UMoJOtZUZWZ0HAzk Q40CSSlyuqP1BuP2Vr56WcPFXwS/dduWODWa+nqXuR7WZKUuDzS/fZqYpKaBCldC H8NiHv+lJBxNcnQbR5RbKW8Wo1bgmlzDIkNjeqPzK1dvp/Y9y8q6QJHH/OmdEEN8 Xb9+RWmUVPvMxTWgiKzeBTcIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWjpuBi eseJ/u/k7XF5AzKX4/vJMB8GA1UdIwQYMBaAFDmFQGCy9Y1MkZxk2qS36x8M32gw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUE1MS9BRjY5MEY2MEI5 MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpVeVJuR1RhcExmckh3emZh REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ZVkFZTEwxalV5Um5HVGFwTGZySHd6ZmFEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUE1MS9BRjY5MEY2MEI5MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpV eVJuR1RhcExmckh3emZhREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrClGXMVGeQNgh704mMWonGUAqHG6Bii2Iy4otl7LvaYWP7+JA2Uyy jUN8Glf8XrNaTh1NS1Sn+X7aoVWH05yFKVLXfIgdG/EDfBl3qXIDR6h4adQjw9NE 3qGTHCEhAWSUedH2Hku0QNnfKKltUPayRJhSZ5fbOb3Td/Zj94JyAPtMRuJso6Ho uTHag8UseQLMLt/DIweytm1BDGY+IJsc5m67TSo1Fe5CHnndzn6LTCPY6V1R+DVA VVolS6/G1u+Wex0DPOCV2GHcMQYBkgy+wuWZ9yC8jwJ3970ERtFY/hHD8GT0hqMr iosdw/qxPLIrkVR31HazYnvwGCvl/HzO -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:19 2025 by rpki-client