$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: Rwzj/Qqe3LGORo+muMB8N3iB76yOG5hleGJvdcGGnMg= Subject key identifier: D2:BA:5C:0B:BC:98:35:15:A4:00:03:85:65:82:A1:80:51:3B:8C:2E Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0E96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0E8D Signing time: Thu 24 Apr 2025 17:40:50 +0000 Manifest this update: Thu 24 Apr 2025 17:40:49 +0000 Manifest next update: Thu 01 May 2025 17:40:49 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: IwJUW1uIYbltZfOUMXPxxb6T2CnvZ5zSO1GKEmyrq/o=) 2: 83974F92EF7C11EF9079DB1CC4F9AE02.roa (hash: yybAeEAc62kbf0vMICJ/T2r9CwvlPXBXXe+0zfXPjFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3734 (0xe96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Apr 24 17:40:49 2025 GMT Not After : May 1 17:40:49 2025 GMT Subject: CN=680a77a2-5dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f1:91:1a:ec:48:43:e8:7e:4f:15:ae:74:7d: d5:15:d1:92:cf:8f:d2:0c:a6:2d:eb:92:46:49:a3: d0:59:62:35:aa:42:d7:51:96:a8:f0:99:55:d7:c3: 7e:c0:bd:12:0f:77:76:8e:0a:fb:ad:27:a3:9a:b7: f9:aa:c8:3e:35:61:88:d9:a5:35:7d:2f:ce:6a:00: 6e:8c:ae:aa:a3:47:0a:94:08:0a:ac:cd:dd:40:e1: 99:d2:a8:7e:87:51:21:d9:93:05:6c:42:57:6f:04: a8:23:36:1c:31:48:2d:57:5e:52:91:33:ef:95:44: db:ef:a0:b7:b6:18:f2:25:b9:7d:ac:d0:70:3b:ff: 64:f5:b6:09:41:07:59:4f:0b:16:bf:94:9e:c5:27: 3f:a7:ee:8d:fe:95:56:58:39:3c:b0:34:ec:4c:5a: cd:54:67:ae:d9:83:b2:c5:30:49:bd:9c:04:d6:c9: 65:6f:ec:6f:12:42:f4:54:c5:23:6d:a2:06:cf:9d: c8:5a:c3:88:e0:90:be:73:4f:31:30:40:18:b0:4b: 6f:68:48:a4:b9:37:b3:d8:11:02:42:ea:0b:29:87: 65:f5:8e:9a:0a:35:97:ec:61:45:48:ea:9a:2c:02: 07:9a:03:34:56:69:22:10:63:9e:b2:d3:97:88:64: 55:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BA:5C:0B:BC:98:35:15:A4:00:03:85:65:82:A1:80:51:3B:8C:2E X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:d9:cc:b0:a6:cf:c9:28:09:23:3d:6a:57:17:93:53:61:73: e8:bd:6c:2b:1f:62:13:b4:0e:59:f3:62:5f:b7:97:59:8b:86: 19:2b:25:06:e5:cf:70:43:82:be:4c:ce:be:b0:93:e2:18:6e: a1:2d:e3:30:bb:53:25:56:6f:89:aa:c9:da:b6:ab:04:5d:15: 97:87:7f:71:52:23:74:35:50:6e:51:52:1e:7e:2f:da:06:26: 96:52:1f:f2:33:e8:22:e1:34:45:3f:1d:30:d6:34:fe:18:66: 8e:31:7b:59:8a:47:47:67:50:1e:33:84:87:33:ec:21:f7:3f: a2:f1:af:17:c1:85:53:16:c2:b3:b3:8f:dc:51:b3:13:7e:05: 64:65:48:f6:eb:e0:df:76:86:e6:a7:01:16:e4:22:b8:18:90: 81:bd:f5:3e:01:88:d0:20:9d:e1:2a:6e:93:8f:8b:dc:63:0f: b6:4c:b0:04:60:95:49:4e:60:36:d7:48:17:c9:44:95:6d:b5: 6e:44:cb:87:04:97:19:1f:cf:a1:6e:71:1e:08:b6:70:89:67: e6:0b:4b:05:8e:cc:c3:ab:33:7c:5d:7d:4a:58:1f:0b:3d:3c: 5d:16:1c:a1:37:90:e3:96:31:69:8b:66:b2:78:52:3f:d0:04: e2:fa:bf:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjUwNDI0MTc0MDQ5WhcNMjUwNTAxMTc0MDQ5WjAYMRYwFAYD VQQDEw02ODBhNzdhMi01ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fGRGuxIQ+h+TxWudH3VFdGSz4/SDKYt65JGSaPQWWI1qkLXUZao8JlV18N+ wL0SD3d2jgr7rSejmrf5qsg+NWGI2aU1fS/OagBujK6qo0cKlAgKrM3dQOGZ0qh+ h1Eh2ZMFbEJXbwSoIzYcMUgtV15SkTPvlUTb76C3thjyJbl9rNBwO/9k9bYJQQdZ TwsWv5SexSc/p+6N/pVWWDk8sDTsTFrNVGeu2YOyxTBJvZwE1sllb+xvEkL0VMUj baIGz53IWsOI4JC+c08xMEAYsEtvaEikuTez2BECQuoLKYdl9Y6aCjWX7GFFSOqa LAIHmgM0VmkiEGOestOXiGRVPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK6XAu8 mDUVpAADhWWCoYBRO4wuMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR2cywps/JKAkjPWpXF5NTYXPovWwrH2ITtA5Z82Jft5dZi4YZKyUG 5c9wQ4K+TM6+sJPiGG6hLeMwu1MlVm+JqsnatqsEXRWXh39xUiN0NVBuUVIefi/a BiaWUh/yM+gi4TRFPx0w1jT+GGaOMXtZikdHZ1AeM4SHM+wh9z+i8a8XwYVTFsKz s4/cUbMTfgVkZUj26+DfdobmpwEW5CK4GJCBvfU+AYjQIJ3hKm6Tj4vcYw+2TLAE YJVJTmA210gXyUSVbbVuRMuHBJcZH8+hbnEeCLZwiWfmC0sFjszDqzN8XX1KWB8L PTxdFhyhN5DjljFpi2ayeFI/0ATi+r9d -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:55 2025 by rpki-client