$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: 4PsJxn/A6WR+fdsl5h9ebAv2MiecOzJ40eQiGmfrVGM= Subject key identifier: 48:68:08:B8:4B:32:84:B2:62:21:EE:41:79:D9:BE:27:9F:FA:7E:1C Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 08DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 08D3 Signing time: Thu 24 Apr 2025 20:19:30 +0000 Manifest this update: Thu 24 Apr 2025 20:19:30 +0000 Manifest next update: Thu 01 May 2025 20:19:30 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: VIEAL5HPlqs8U7V9hi6H/lciTWFCT66w+k0I0Tjr6zk=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: 3hcEUgYqoshOk8lFFnh68Ppk5C9DLTGbNkZXNe5ZLqA=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: ao7owdTBxv72fQFQJlEFwxw2v4nLgAcrWGOJHUBmOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2270 (0x8de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Apr 24 20:19:30 2025 GMT Not After : May 1 20:19:30 2025 GMT Subject: CN=680a9cd2-9eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:50:4e:45:de:16:29:a3:9f:e1:94:eb:0f: 63:1b:f7:9c:71:13:5d:3b:de:57:52:5f:cb:e0:bb: 06:c6:76:b7:8c:5b:94:27:ae:6b:19:b7:d8:84:6c: a4:c4:f3:c3:45:04:1e:dd:6f:cc:95:75:44:02:a8: 70:6e:83:df:3f:ba:67:6e:e8:5e:24:79:a1:97:35: b5:f3:bb:b4:43:31:a4:79:17:fb:cd:3c:ae:47:bc: 10:32:08:f6:9c:f2:38:82:9b:12:88:f7:cd:df:18: e6:68:94:9a:3a:0c:04:d1:25:41:3c:94:2a:79:6c: 82:f7:ca:a0:4b:c7:27:25:9f:f2:2f:56:00:08:67: 44:69:92:54:a8:df:a1:f4:33:60:bc:f3:de:b4:b8: cb:1f:7d:8b:90:a8:82:cf:dc:8a:32:39:5c:d3:34: e8:1e:81:2a:65:c6:c7:ec:5f:f3:98:96:54:1e:a0: eb:6b:08:05:25:26:da:80:6b:b6:6f:5d:68:d6:80: c1:71:d8:17:b9:54:f1:42:4e:2a:5f:1b:3b:20:af: d7:f1:45:04:96:0c:87:8f:c4:88:58:95:19:59:c1: ca:20:3c:36:3f:97:1c:ae:2d:84:7a:b4:db:83:42: 81:42:6f:83:30:49:73:f7:8f:f5:fe:23:d2:5d:59: b6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:68:08:B8:4B:32:84:B2:62:21:EE:41:79:D9:BE:27:9F:FA:7E:1C X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:48:49:1c:1e:36:91:fb:2a:ed:7f:84:3c:f3:f2:11:22:d9: 1e:41:01:b1:d6:56:e3:96:88:3c:e9:c9:0c:b6:ba:6a:1e:ed: 22:b8:3d:91:b0:dc:d5:50:d3:1d:c2:7c:b8:33:bc:39:1a:b4: 95:a8:2a:45:62:1b:6f:45:9e:ee:3d:b3:e6:2b:43:a1:17:72: ad:d4:83:ae:13:28:57:ea:c1:98:f8:8a:a4:04:c1:43:cd:79: 29:3f:bc:4d:10:96:d7:de:51:3a:ce:43:dd:00:c4:0d:47:89: a7:bf:1e:90:33:d3:6b:8f:8c:79:5b:3d:c6:16:fa:18:5e:0b: 08:94:de:86:19:a6:9d:b0:f8:93:c3:c9:98:2e:6d:7c:9c:d5: 93:21:5c:a9:8d:eb:b6:a6:1c:1b:3b:4f:f8:87:25:af:31:02: db:1c:6b:23:58:da:2e:e6:5e:98:bd:55:75:e7:e0:6e:89:cc: a6:9c:b0:0a:9d:96:4d:51:9e:92:30:59:22:a3:41:f3:f7:44: e0:b8:ab:bd:1c:fc:7c:a0:a2:50:15:07:95:18:5c:d5:dc:47: 76:46:28:78:bb:ab:26:9d:f0:d1:75:ee:52:1c:da:c4:d3:33: 38:a6:d5:a9:cb:f8:57:a2:ee:49:db:e8:6c:8f:2e:ff:61:09: 86:1b:9a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwNDI0MjAxOTMwWhcNMjUwNTAxMjAxOTMwWjAYMRYwFAYD VQQDEw02ODBhOWNkMi05ZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XxQTkXeFimjn+GU6w9jG/eccRNdO95XUl/L4LsGxna3jFuUJ65rGbfYhGyk xPPDRQQe3W/MlXVEAqhwboPfP7pnbuheJHmhlzW187u0QzGkeRf7zTyuR7wQMgj2 nPI4gpsSiPfN3xjmaJSaOgwE0SVBPJQqeWyC98qgS8cnJZ/yL1YACGdEaZJUqN+h 9DNgvPPetLjLH32LkKiCz9yKMjlc0zToHoEqZcbH7F/zmJZUHqDrawgFJSbagGu2 b11o1oDBcdgXuVTxQk4qXxs7IK/X8UUElgyHj8SIWJUZWcHKIDw2P5ccri2EerTb g0KBQm+DMElz94/1/iPSXVm2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhoCLhL MoSyYiHuQXnZvief+n4cMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClSEkcHjaR+yrtf4Q88/IRItkeQQGx1lbjlog86ckMtrpqHu0iuD2R sNzVUNMdwny4M7w5GrSVqCpFYhtvRZ7uPbPmK0OhF3Kt1IOuEyhX6sGY+IqkBMFD zXkpP7xNEJbX3lE6zkPdAMQNR4mnvx6QM9Nrj4x5Wz3GFvoYXgsIlN6GGaadsPiT w8mYLm18nNWTIVypjeu2phwbO0/4hyWvMQLbHGsjWNou5l6YvVV15+BuicymnLAK nZZNUZ6SMFkio0Hz90TguKu9HPx8oKJQFQeVGFzV3Ed2Rih4u6smnfDRde5SHNrE 0zM4ptWpy/hXou5J2+hsjy7/YQmGG5oW -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:00 2025 by rpki-client