$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: DcOxPaUzm4fL9cNUySUSVMpC9MQKkhzYQ8SoziI2to4= Subject key identifier: F0:48:E3:F7:F7:27:C3:E5:A5:88:F1:45:F4:57:F9:4E:4A:CD:BC:FF Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 07CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 07C6 Signing time: Thu 24 Apr 2025 20:55:39 +0000 Manifest this update: Thu 24 Apr 2025 20:55:39 +0000 Manifest next update: Thu 01 May 2025 20:55:39 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: C43ei9Ht08rplfWtAcFr8avyGIEV87S+bUnViSFRGpY=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1998 (0x7ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Apr 24 20:55:39 2025 GMT Not After : May 1 20:55:39 2025 GMT Subject: CN=680aa54b-43b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:20:d6:79:a2:dd:21:93:d8:ad:ee:83:f3: 10:ef:18:23:fb:06:b2:c1:13:3b:1f:f4:ac:c3:a6: e1:cf:7f:68:53:c0:d8:cc:86:34:be:2b:d4:41:1d: 09:e1:25:7a:2e:49:09:42:8a:a6:b2:11:a7:67:03: 08:85:ba:d1:0f:72:4f:bf:f5:26:91:8c:24:94:f2: 55:ee:67:e7:bf:a3:64:20:50:14:ee:56:9d:de:ef: 45:f0:cb:8c:4e:57:fd:c1:b7:c9:b9:c9:8d:3b:91: 12:a9:fc:eb:0d:36:38:95:a7:c4:08:74:66:ec:60: 57:c7:f1:be:67:3f:4f:18:60:dc:79:7b:ac:06:b1: 78:e6:81:ea:e0:3e:0b:4b:0f:1b:d4:1e:2b:d6:c2: 7e:d2:5a:7d:e4:79:9f:ce:3e:1e:de:10:2b:71:9b: a4:a7:29:39:8b:3b:38:79:a3:e7:e8:26:f3:41:61: 2b:75:cb:8c:3b:61:82:76:3a:6a:66:12:57:a8:69: 7b:64:92:5f:b4:2c:48:17:33:79:21:60:bc:47:1d: 64:8d:a5:39:9f:97:12:d5:82:45:0a:20:95:9a:ce: 67:42:f3:4a:93:fb:45:ba:ca:04:a3:d1:b3:bf:e6: b3:e7:2f:fc:e5:d4:b3:d9:2e:25:e2:fa:54:68:be: 59:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:48:E3:F7:F7:27:C3:E5:A5:88:F1:45:F4:57:F9:4E:4A:CD:BC:FF X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:33:50:29:f1:4f:4d:85:a2:67:4e:1c:73:fd:fc:a9:0b:34: 0b:87:57:3d:d5:3d:be:34:d5:30:fe:ff:56:74:ce:e3:8d:7e: 41:6c:8e:7f:25:b3:7b:1c:25:13:2f:91:30:06:bc:23:09:6f: 13:c5:14:d7:3f:ea:32:cd:a1:cc:69:72:3d:45:9a:52:3f:14: ed:f4:ad:a7:0a:98:dc:f7:3a:a8:9a:19:18:42:d5:ec:10:6f: 86:7c:07:80:5b:7f:a0:32:e8:0c:1f:f1:e4:e5:68:a1:e3:00: 7d:7f:9d:73:ca:15:38:86:a2:9a:f6:79:cb:b7:a9:1d:b9:f5: 27:ce:1c:7c:b0:c3:f7:38:01:4f:2a:cd:94:cf:2a:39:2a:f6: 72:ac:60:40:18:49:79:14:11:92:d6:40:99:7a:0d:6f:ba:e2: 52:c7:9f:22:01:74:e1:3c:f0:45:82:0d:07:dc:98:a0:09:59: 36:cd:29:35:a3:a9:f0:30:89:17:21:f2:2c:b4:4b:0e:2f:63: 20:57:9a:ae:c3:5d:6d:ba:a3:7e:4e:50:4e:de:b2:85:e2:a6: 0e:7b:94:bf:1f:e1:03:18:1b:3b:8d:27:a1:ca:ff:1b:21:df: c5:48:3d:24:d6:51:d6:73:fe:2c:e2:e5:7f:88:b6:35:f3:ac: d6:a5:3a:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwNDI0MjA1NTM5WhcNMjUwNTAxMjA1NTM5WjAYMRYwFAYD VQQDEw02ODBhYTU0Yi00M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAUg1nmi3SGT2K3ug/MQ7xgj+waywRM7H/Ssw6bhz39oU8DYzIY0vivUQR0J 4SV6LkkJQoqmshGnZwMIhbrRD3JPv/UmkYwklPJV7mfnv6NkIFAU7lad3u9F8MuM Tlf9wbfJucmNO5ESqfzrDTY4lafECHRm7GBXx/G+Zz9PGGDceXusBrF45oHq4D4L Sw8b1B4r1sJ+0lp95Hmfzj4e3hArcZukpyk5izs4eaPn6CbzQWErdcuMO2GCdjpq ZhJXqGl7ZJJftCxIFzN5IWC8Rx1kjaU5n5cS1YJFCiCVms5nQvNKk/tFusoEo9Gz v+az5y/85dSz2S4l4vpUaL5ZfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBI4/f3 J8PlpYjxRfRX+U5Kzbz/MB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeM1Ap8U9NhaJnThxz/fypCzQLh1c91T2+NNUw/v9WdM7jjX5BbI5/ JbN7HCUTL5EwBrwjCW8TxRTXP+oyzaHMaXI9RZpSPxTt9K2nCpjc9zqomhkYQtXs EG+GfAeAW3+gMugMH/Hk5Wih4wB9f51zyhU4hqKa9nnLt6kdufUnzhx8sMP3OAFP Ks2Uzyo5KvZyrGBAGEl5FBGS1kCZeg1vuuJSx58iAXThPPBFgg0H3JigCVk2zSk1 o6nwMIkXIfIstEsOL2MgV5quw11tuqN+TlBO3rKF4qYOe5S/H+EDGBs7jSehyv8b Id/FSD0k1lHWc/4s4uV/iLY186zWpTpA -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:31 2025 by rpki-client