$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: 9qJh+haTgQKTMkoQHFeQN0F55qfdFUGelgms1M6x9Q4= Subject key identifier: BA:22:09:54:24:97:8B:D2:2C:2C:6E:B4:09:A2:06:E2:E7:42:82:68 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 330A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 32B4 Signing time: Thu 24 Apr 2025 15:25:41 +0000 Manifest this update: Thu 24 Apr 2025 15:25:40 +0000 Manifest next update: Thu 01 May 2025 15:25:40 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: VDAKhzKrVzJmRHCOQTBj2ipIQLnCL4Q74i5gS6JudsM=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13066 (0x330a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Apr 24 15:25:40 2025 GMT Not After : May 1 15:25:40 2025 GMT Subject: CN=680a57f4-e3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:02:08:16:e4:29:1a:45:ba:c1:c6:c2:14: a2:c6:97:fc:6e:43:13:b2:0e:c7:33:54:db:2d:ff: cb:f3:eb:59:60:72:13:de:7a:28:11:2a:46:48:7d: 7a:74:54:8f:95:05:d5:5b:36:62:b5:67:67:75:ea: 93:bc:35:d2:3f:26:59:85:66:33:11:72:7d:81:7c: 1d:4a:48:33:2e:34:49:1a:0b:48:b4:8b:9a:3e:c8: 7e:4d:48:5b:5e:b8:fb:58:22:21:8c:1d:b9:61:6f: 16:65:fb:7f:b9:a1:99:0c:b3:77:1c:54:2f:38:72: 57:84:ae:db:11:13:1d:d0:62:38:1f:54:ab:e1:8a: aa:06:27:be:c9:b9:50:38:3d:8e:8d:61:7b:b0:2b: 11:57:c7:55:8d:76:83:4d:e1:43:45:ef:34:0c:0a: 3a:df:24:79:16:59:21:14:df:ad:23:66:36:f0:bc: 54:f3:ba:d0:a6:84:ec:c9:58:0f:74:22:b5:77:3d: 1a:ab:45:b9:bb:f3:97:e2:2d:8a:bb:37:07:9f:d5: 4a:0e:39:f7:21:f2:66:89:3a:d8:e1:b2:e2:af:5b: 4b:7b:ec:4d:9a:bd:c7:41:4d:f0:83:be:ad:0e:67: be:73:05:96:a3:1f:df:9d:8c:53:33:07:5e:c0:04: 97:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:22:09:54:24:97:8B:D2:2C:2C:6E:B4:09:A2:06:E2:E7:42:82:68 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:93:4b:6f:ca:91:e7:f9:37:8e:0a:bc:aa:4d:26:b1:fe:ab: 04:68:94:e6:39:4a:3a:12:5b:e4:7c:cc:02:2a:2f:b8:60:66: 54:16:fd:b5:28:ee:68:c5:9f:01:92:d4:d6:36:ee:4f:a7:be: 1b:f4:02:73:e2:77:9b:b4:84:b6:80:80:f6:94:90:aa:fd:17: f1:f4:71:b6:07:2f:5c:e8:80:29:82:71:67:fb:11:ab:85:9d: 7c:6f:7f:8f:62:f7:43:d0:01:af:e9:cf:b6:b3:33:61:9b:75: 1d:e5:2a:32:dd:49:69:ab:27:65:6b:c2:08:4b:56:6a:d4:55: 32:dc:6a:cb:f1:3a:2e:88:70:74:94:77:29:a7:2b:1b:b1:94: af:36:0a:21:39:16:1f:6f:7a:a6:6c:0f:ae:31:28:49:41:5d: a9:44:9d:b9:5f:64:b7:77:82:c9:48:d4:a8:02:08:ab:a7:e4: ff:ae:23:d1:ff:49:b5:2d:c3:88:15:06:26:84:76:ef:43:6b: a9:ad:a8:5b:54:4b:b8:0b:71:db:c1:bb:01:0d:e6:86:d5:53: 45:f5:c0:f2:c2:7e:a7:04:62:db:50:a5:b1:57:f0:68:92:7b: 78:46:79:d0:f8:58:f6:ff:f9:1f:96:ab:b3:f3:3c:54:d5:9f: d9:79:ea:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUwNDI0MTUyNTQwWhcNMjUwNTAxMTUyNTQwWjAYMRYwFAYD VQQDEw02ODBhNTdmNC1lM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmUCCBbkKRpFusHGwhSixpf8bkMTsg7HM1TbLf/L8+tZYHIT3nooESpGSH16 dFSPlQXVWzZitWdndeqTvDXSPyZZhWYzEXJ9gXwdSkgzLjRJGgtItIuaPsh+TUhb Xrj7WCIhjB25YW8WZft/uaGZDLN3HFQvOHJXhK7bERMd0GI4H1Sr4YqqBie+yblQ OD2OjWF7sCsRV8dVjXaDTeFDRe80DAo63yR5FlkhFN+tI2Y28LxU87rQpoTsyVgP dCK1dz0aq0W5u/OX4i2KuzcHn9VKDjn3IfJmiTrY4bLir1tLe+xNmr3HQU3wg76t Dme+cwWWox/fnYxTMwdewASXUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoiCVQk l4vSLCxutAmiBuLnQoJoMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0k0tvypHn+TeOCryqTSax/qsEaJTmOUo6ElvkfMwCKi+4YGZUFv21 KO5oxZ8BktTWNu5Pp74b9AJz4nebtIS2gID2lJCq/Rfx9HG2By9c6IApgnFn+xGr hZ18b3+PYvdD0AGv6c+2szNhm3Ud5Soy3Ulpqydla8IIS1Zq1FUy3GrL8TouiHB0 lHcppysbsZSvNgohORYfb3qmbA+uMShJQV2pRJ25X2S3d4LJSNSoAgirp+T/riPR /0m1LcOIFQYmhHbvQ2uprahbVEu4C3HbwbsBDeaG1VNF9cDywn6nBGLbUKWxV/Bo knt4RnnQ+Fj2//kflquz8zxU1Z/Zeeq0 -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:27 2025 by rpki-client