$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: j2ZSRyJ31jvT8TZnCRIAsaligtB244VWggV6PD89+dY= Subject key identifier: C6:CE:FC:4F:2D:82:7C:D7:88:AC:61:F2:7B:B2:22:BE:31:90:F1:A3 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0107 Signing time: Fri 25 Apr 2025 04:10:12 +0000 Manifest this update: Fri 25 Apr 2025 04:10:12 +0000 Manifest next update: Fri 02 May 2025 04:10:12 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: AAm/lsfPDUXMUuojVXnWBIqgYonngGGKv0mH/nvPwRg=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Apr 25 04:10:12 2025 GMT Not After : May 2 04:10:12 2025 GMT Subject: CN=680b0b24-218b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2b:7e:fc:7d:fa:d9:e1:cf:13:71:75:23:6c: a8:32:42:b8:f9:22:a0:08:25:bd:56:26:56:e2:14: 11:8e:7c:94:39:3d:73:4c:87:24:70:a8:8a:e3:e4: 0e:22:5c:8d:0f:a0:0a:71:30:b4:a6:c3:9c:d0:d9: 74:d3:ef:e5:df:a0:bd:ff:fb:7a:fa:4b:88:a0:86: fe:88:6a:0a:ac:d4:fd:47:17:4c:b1:08:fb:b2:a0: 8b:82:4c:70:0a:fd:23:c2:7e:ac:b3:58:2d:25:64: 58:eb:e3:a0:fd:d3:f2:b9:24:ee:88:b4:85:39:42: 8c:b2:ad:25:3c:e6:df:f3:b9:46:52:39:95:83:e8: e4:07:eb:88:3b:0b:c0:19:2a:e5:70:8c:89:41:5d: bf:bc:e8:4c:d6:aa:8d:f1:74:5f:3b:4e:97:18:01: 57:cd:a3:ac:61:cf:29:bb:b6:99:12:72:48:43:40: 17:52:b8:13:3a:2b:b9:02:fb:6b:07:9e:3f:b9:53: cf:c3:9d:e4:59:da:ba:e7:28:6d:84:33:80:34:eb: 38:c4:74:94:cc:ef:07:f0:48:6b:cd:2d:ae:ca:4f: a3:43:e9:98:e6:13:cc:9f:4f:a0:62:ca:06:4e:31: 25:74:71:eb:cf:72:51:9a:c3:2b:ad:11:a3:5a:77: 50:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CE:FC:4F:2D:82:7C:D7:88:AC:61:F2:7B:B2:22:BE:31:90:F1:A3 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:68:9c:93:51:9a:1a:83:93:45:a2:07:9e:9d:4b:a0:7d:0b: b2:19:8f:a3:eb:c6:27:38:07:ba:de:ba:1b:15:f0:06:24:33: 52:5e:6d:23:cf:5c:e1:2c:28:9b:c3:89:f2:34:50:22:2a:f3: ae:28:45:ff:7d:79:57:cd:09:be:4b:aa:9f:26:35:68:a3:71: fb:ce:bf:fc:5d:63:78:22:6e:e6:65:aa:7c:4a:dd:46:d1:25: 78:25:ae:a0:03:be:3e:66:3e:d1:c6:50:ee:29:05:47:c5:eb: db:0b:92:8b:e3:69:08:01:2c:10:52:5d:c9:7e:95:2e:60:6d: cf:53:8c:8d:ba:0f:ca:07:72:58:8c:b6:cf:bd:b1:39:1e:74: 0c:db:64:a4:4c:e8:c8:93:a7:99:7a:71:d5:da:9d:6f:00:2f: 78:49:9b:48:bd:c2:40:ac:81:58:9e:c8:81:1c:2a:f0:cd:90: ac:10:28:41:c8:74:86:f8:a2:81:e6:34:69:1f:3d:f2:03:aa: b3:a9:d5:3b:43:06:22:1e:8c:33:f9:1e:be:e8:65:08:fe:8f: 57:2a:29:9a:54:42:ac:0b:54:99:f6:af:76:6f:36:f3:37:49: 5b:a0:b9:fb:23:a6:6c:65:68:95:5f:4a:13:61:43:70:9f:b4: 60:03:78:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNDI1MDQxMDEyWhcNMjUwNTAyMDQxMDEyWjAYMRYwFAYD VQQDEw02ODBiMGIyNC0yMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCt+/H362eHPE3F1I2yoMkK4+SKgCCW9ViZW4hQRjnyUOT1zTIckcKiK4+QO IlyND6AKcTC0psOc0Nl00+/l36C9//t6+kuIoIb+iGoKrNT9RxdMsQj7sqCLgkxw Cv0jwn6ss1gtJWRY6+Og/dPyuSTuiLSFOUKMsq0lPObf87lGUjmVg+jkB+uIOwvA GSrlcIyJQV2/vOhM1qqN8XRfO06XGAFXzaOsYc8pu7aZEnJIQ0AXUrgTOiu5Avtr B54/uVPPw53kWdq65yhthDOANOs4xHSUzO8H8EhrzS2uyk+jQ+mY5hPMn0+gYsoG TjEldHHrz3JRmsMrrRGjWndQawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbO/E8t gnzXiKxh8nuyIr4xkPGjMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7aJyTUZoag5NFogeenUugfQuyGY+j68YnOAe63robFfAGJDNSXm0j z1zhLCibw4nyNFAiKvOuKEX/fXlXzQm+S6qfJjVoo3H7zr/8XWN4Im7mZap8St1G 0SV4Ja6gA74+Zj7RxlDuKQVHxevbC5KL42kIASwQUl3JfpUuYG3PU4yNug/KB3JY jLbPvbE5HnQM22SkTOjIk6eZenHV2p1vAC94SZtIvcJArIFYnsiBHCrwzZCsEChB yHSG+KKB5jRpHz3yA6qzqdU7QwYiHowz+R6+6GUI/o9XKimaVEKsC1SZ9q92bzbz N0lboLn7I6ZsZWiVX0oTYUNwn7RgA3jG -----END CERTIFICATE-----Generated at Sat Apr 26 05:00:26 2025 by rpki-client