$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: kX79hoTafS1nyLpox4Dakpt7Fb9Fklmy/i7ls0cvAZo= Subject key identifier: 8D:28:D6:6F:27:93:CB:B6:99:AE:C6:1A:8B:DE:35:CB:52:51:5F:E3 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 01D8 Signing time: Tue 29 Apr 2025 02:52:49 +0000 Manifest this update: Tue 29 Apr 2025 02:52:49 +0000 Manifest next update: Tue 06 May 2025 02:52:49 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: 9+pVTjc7ymYokRh2iHaUMh7oLP+f538O1Z6TK09n/KU=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Apr 29 02:52:49 2025 GMT Not After : May 6 02:52:49 2025 GMT Subject: CN=68103f01-e64b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:a9:eb:d8:fc:70:d3:8a:26:d8:fb:c6:97: 81:ce:55:bb:27:95:b3:64:78:ea:96:8a:76:a6:81: 53:d9:54:38:93:24:7f:50:81:fc:52:74:e8:3a:89: b4:60:8d:6f:ed:53:e1:55:3d:c4:24:77:09:7a:ba: 7b:3b:aa:e8:f5:c9:9a:9b:f6:83:42:aa:98:59:08: 2c:cd:7b:ed:bc:11:55:4d:d3:18:cf:92:f2:0e:5e: df:16:2c:8a:a9:0f:2a:83:ae:e3:7d:db:a1:b2:75: 4d:30:e8:8a:50:9f:a2:f0:3d:99:83:94:0f:5f:60: 42:59:c2:5f:70:51:2e:17:c3:bc:f1:e4:6b:5d:22: 79:ec:aa:7e:c2:15:ed:64:6d:18:f1:fa:42:ec:ab: 01:b5:06:97:41:d5:42:04:12:fe:6f:b8:94:5d:dd: 83:7b:f2:96:4c:fb:78:f7:3c:d5:f9:1c:9d:7e:b2: 2d:ce:d2:1d:b4:5b:e4:3c:c7:50:69:f1:64:e9:e4: 3e:91:8a:9e:a3:24:4a:97:e0:ee:97:08:ab:e9:ee: fb:a1:77:ea:f2:43:d4:fd:c6:93:48:45:8b:bc:18: 5d:d5:28:fe:fd:01:81:f0:60:a7:8f:51:f9:81:f1: cb:60:f9:b4:12:59:66:66:5d:28:32:fa:9e:74:43: 59:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:28:D6:6F:27:93:CB:B6:99:AE:C6:1A:8B:DE:35:CB:52:51:5F:E3 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c8:82:df:bd:d3:94:67:c5:24:e9:1f:50:b8:a9:dc:de:f9: 9f:45:5a:6a:ce:1d:79:b2:af:83:52:aa:ee:87:51:17:25:56: 95:64:44:d4:73:2e:7f:ab:46:b8:1b:35:9f:5b:11:99:7b:ea: 56:85:18:74:6e:e0:ac:ae:62:6b:27:ae:b8:e1:1a:e6:0a:2a: 13:bb:53:03:d1:b7:12:ff:e1:82:0a:2c:29:32:d3:2a:bd:30: 82:15:e5:87:84:6a:3d:d6:11:21:83:3c:5c:6c:3a:e1:7f:b5: 9c:57:e3:85:e4:94:12:30:50:bb:4f:25:e8:49:83:05:a7:9d: 92:10:2e:82:c8:dc:21:4e:7e:24:b1:49:2c:47:f9:3a:8b:d1: e1:66:ca:32:8c:86:f9:56:99:de:c0:a7:c2:60:07:49:6f:c8: 48:35:48:1e:21:a0:56:42:04:5b:72:ca:e3:97:1f:05:e7:f4: 24:22:9e:ff:40:65:08:c4:31:9e:31:85:9a:ab:26:fa:60:c4: 9f:f5:58:ef:96:c6:60:b0:9d:21:a4:4f:c8:49:0c:32:62:94: 7d:8a:92:04:18:b2:02:e1:4d:14:5a:ce:6a:ab:9e:9d:8f:68: 5b:aa:86:00:de:34:a6:12:02:7a:fc:58:0c:85:16:32:b7:bc: be:f9:3f:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwNDI5MDI1MjQ5WhcNMjUwNTA2MDI1MjQ5WjAYMRYwFAYD VQQDEw02ODEwM2YwMS1lNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sup69j8cNOKJtj7xpeBzlW7J5WzZHjqlop2poFT2VQ4kyR/UIH8UnToOom0 YI1v7VPhVT3EJHcJerp7O6ro9cmam/aDQqqYWQgszXvtvBFVTdMYz5LyDl7fFiyK qQ8qg67jfduhsnVNMOiKUJ+i8D2Zg5QPX2BCWcJfcFEuF8O88eRrXSJ57Kp+whXt ZG0Y8fpC7KsBtQaXQdVCBBL+b7iUXd2De/KWTPt49zzV+RydfrItztIdtFvkPMdQ afFk6eQ+kYqeoyRKl+Dulwir6e77oXfq8kPU/caTSEWLvBhd1Sj+/QGB8GCnj1H5 gfHLYPm0EllmZl0oMvqedENZQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0o1m8n k8u2ma7GGoveNctSUV/jMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNyILfvdOUZ8Uk6R9QuKnc3vmfRVpqzh15sq+DUqruh1EXJVaVZETU cy5/q0a4GzWfWxGZe+pWhRh0buCsrmJrJ6644RrmCioTu1MD0bcS/+GCCiwpMtMq vTCCFeWHhGo91hEhgzxcbDrhf7WcV+OF5JQSMFC7TyXoSYMFp52SEC6CyNwhTn4k sUksR/k6i9HhZsoyjIb5VpnewKfCYAdJb8hINUgeIaBWQgRbcsrjlx8F5/QkIp7/ QGUIxDGeMYWaqyb6YMSf9VjvlsZgsJ0hpE/ISQwyYpR9ipIEGLIC4U0UWs5qq56d j2hbqoYA3jSmEgJ6/FgMhRYyt7y++T8v -----END CERTIFICATE-----Generated at Tue Apr 29 04:57:40 2025 by rpki-client