$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft File: w0Ozu4On4j-tla-NIytSBSoP3nI.mft (raw, json) Hash identifier: j+0jCnieRcpLuAD5udiYcJ+BjUthNJPg+Ke2oTdfkz0= Subject key identifier: 0A:A8:A6:24:E5:61:9E:C4:25:46:C4:84:01:18:6A:4B:E1:03:63:6C Authority key identifier: C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 Certificate issuer: /CN=A91C66B7/serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Certificate serial: 098B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft Manifest number: 0970 Signing time: Thu 24 Apr 2025 20:05:06 +0000 Manifest this update: Thu 24 Apr 2025 20:05:06 +0000 Manifest next update: Thu 01 May 2025 20:05:06 +0000 Files and hashes: 1: w0Ozu4On4j-tla-NIytSBSoP3nI.crl (hash: Nhfq7BM8wXRxxzh0gCqETzrZvCf+ssWZ6192v4UOnQE=) 2: 8A480EFE80EE11EBA01B8C79C4F9AE02.roa (hash: nGCSzyeCGWb2by2Ok6xODoRNUK8MF0tF735aj9iyb9Y=) 3: 63FE6F90232411EB87A6CB0DC4F9AE02.roa (hash: MFp+TQFdjUkWq8YrpZoPX+xKXmHG4qHFMaA4FACPOxE=) 4: 023564E6D5BE11ECA8BE4666C4F9AE02.roa (hash: wHZWRXwKbEVincv7YJ3e25Slz3Zw4ni306PAKoBPm2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B7, serialNumber=C343B3BB83A7E23FAD95AF8D232B52052A0FDE72 Validity Not Before: Apr 24 20:05:06 2025 GMT Not After : May 1 20:05:06 2025 GMT Subject: CN=680a9972-ceab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:4c:4e:6b:49:ac:4c:4c:b4:bf:d7:2f:82: cb:b8:3a:80:ae:74:8c:64:4f:9c:e2:7e:59:9f:26: ce:71:92:6f:c3:a3:26:c9:b5:27:ab:c7:25:74:e6: 13:d2:0f:9e:b1:42:b6:2d:81:71:76:3c:82:71:14: 27:cf:3c:38:67:52:ac:7d:cb:a8:df:e6:3b:12:d9: c3:e9:85:7d:c4:f0:47:ae:96:b4:16:31:5a:61:9f: 12:71:1e:87:1e:f2:d4:19:db:19:30:95:53:65:74: ae:da:cd:8a:7e:2a:6c:bd:5c:8a:e9:af:b2:77:04: f1:30:bc:5c:a5:31:86:aa:f3:74:4a:7d:be:fe:00: 0e:ce:b3:44:1d:a8:87:45:25:86:89:79:3b:39:c8: ca:40:68:48:63:e1:3b:a5:8e:6c:89:7d:82:d3:fb: a9:fe:6c:11:84:b2:0e:b5:e7:4c:b6:fc:f3:7e:80: cd:11:0b:5d:50:f4:aa:11:d0:85:3c:9b:b4:09:9d: 42:53:e2:f5:b6:be:47:66:72:17:d6:d5:4a:8a:f1: 03:bd:84:54:f9:14:8d:80:6a:e0:67:b7:63:53:a0: b8:f2:98:db:ff:72:70:3f:7c:94:96:03:5a:fd:ef: c0:d3:6a:43:6f:bf:5b:24:45:63:80:cd:45:d2:ba: 87:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A8:A6:24:E5:61:9E:C4:25:46:C4:84:01:18:6A:4B:E1:03:63:6C X509v3 Authority Key Identifier: keyid:C3:43:B3:BB:83:A7:E2:3F:AD:95:AF:8D:23:2B:52:05:2A:0F:DE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w0Ozu4On4j-tla-NIytSBSoP3nI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B7/66CDA4E8911611EA91C4650CC4F9AE02/w0Ozu4On4j-tla-NIytSBSoP3nI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:3b:6d:93:18:bd:72:c5:d5:b1:1a:69:7a:16:7a:2a:b7:42: 7b:ff:3f:33:02:54:d1:10:45:74:66:ae:0c:e6:df:81:cd:67: 36:d2:95:c8:d0:cb:b2:97:82:6e:2a:be:67:4e:fc:c4:db:d4: f9:50:80:c1:d3:0f:ab:3d:6a:2f:5a:37:99:54:e6:ff:27:63: b9:14:a1:86:c1:49:4c:bc:8b:ae:23:40:3e:99:3f:02:49:23: 25:7c:a6:58:2e:79:c8:7f:7b:33:b7:87:d5:ac:74:1d:28:e7: d7:e7:2b:8c:11:5b:55:9e:47:b2:68:27:26:80:bf:9b:a8:04: a5:2c:68:ba:ad:ff:4a:7a:11:05:c5:c9:10:40:0a:3b:6b:19: 0b:4a:74:63:85:22:97:e0:b5:9a:71:2f:9e:be:f4:12:13:31: 6b:8c:f8:4f:b2:13:8a:32:1b:0e:da:ac:55:0f:5b:a4:d9:ff: 2b:1b:dd:cc:90:62:83:0a:d6:a3:82:9d:a0:d7:47:3e:92:13: c9:e4:f9:af:98:75:5e:2d:7b:3b:21:58:66:b8:a3:ff:79:e2: 87:4e:cc:43:75:94:69:b9:82:1b:b0:a5:c4:75:cd:d6:54:68: ee:d3:5d:b4:94:ae:23:ac:c7:c7:36:86:82:84:88:09:7d:9d: c7:7c:96:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjcxMTAvBgNVBAUTKEMzNDNCM0JCODNBN0UyM0ZBRDk1QUY4RDIzMkI1MjA1 MkEwRkRFNzIwHhcNMjUwNDI0MjAwNTA2WhcNMjUwNTAxMjAwNTA2WjAYMRYwFAYD VQQDEw02ODBhOTk3Mi1jZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVlMTmtJrExMtL/XL4LLuDqArnSMZE+c4n5ZnybOcZJvw6MmybUnq8cldOYT 0g+esUK2LYFxdjyCcRQnzzw4Z1Ksfcuo3+Y7EtnD6YV9xPBHrpa0FjFaYZ8ScR6H HvLUGdsZMJVTZXSu2s2KfipsvVyK6a+ydwTxMLxcpTGGqvN0Sn2+/gAOzrNEHaiH RSWGiXk7OcjKQGhIY+E7pY5siX2C0/up/mwRhLIOtedMtvzzfoDNEQtdUPSqEdCF PJu0CZ1CU+L1tr5HZnIX1tVKivEDvYRU+RSNgGrgZ7djU6C48pjb/3JwP3yUlgNa /e/A02pDb79bJEVjgM1F0rqHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqopiTl YZ7EJUbEhAEYakvhA2NsMB8GA1UdIwQYMBaAFMNDs7uDp+I/rZWvjSMrUgUqD95y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCNy82NkNEQTRFODkx MTYxMUVBOTFDNDY1MENDNEY5QUUwMi93ME96dTRPbjRqLXRsYS1OSXl0U0JTb1Az bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3cwT3p1NE9uNGotdGxhLU5JeXRTQlNvUDNuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCNy82NkNEQTRFODkxMTYxMUVBOTFDNDY1MENDNEY5QUUwMi93ME96dTRPbjRq LXRsYS1OSXl0U0JTb1AzbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJO22TGL1yxdWxGml6Fnoqt0J7/z8zAlTREEV0Zq4M5t+BzWc20pXI 0Muyl4JuKr5nTvzE29T5UIDB0w+rPWovWjeZVOb/J2O5FKGGwUlMvIuuI0A+mT8C SSMlfKZYLnnIf3szt4fVrHQdKOfX5yuMEVtVnkeyaCcmgL+bqASlLGi6rf9KehEF xckQQAo7axkLSnRjhSKX4LWacS+evvQSEzFrjPhPshOKMhsO2qxVD1uk2f8rG93M kGKDCtajgp2g10c+khPJ5PmvmHVeLXs7IVhmuKP/eeKHTsxDdZRpuYIbsKXEdc3W VGju0120lK4jrMfHNoaChIgJfZ3HfJY7 -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:23 2025 by rpki-client