$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: 0nKQ5xUtXA4cihxegLVNo2frXo21EdjxJ0+vgiLL7bE= Subject key identifier: 11:64:4F:6F:4F:0A:43:D0:F4:73:A0:A1:DF:AC:7C:09:13:B1:25:03 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 077A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 0775 Signing time: Fri 18 Apr 2025 21:30:44 +0000 Manifest this update: Fri 18 Apr 2025 21:30:43 +0000 Manifest next update: Fri 25 Apr 2025 21:30:43 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: JOvirLKSYZAstomiDeW2UDPnYKY3GAXTi/ZPwo4YfFU=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Apr 18 21:30:43 2025 GMT Not After : Apr 25 21:30:43 2025 GMT Subject: CN=6802c483-6e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:4b:96:67:b5:40:f5:eb:a4:6f:73:cc:5a: 33:2d:a4:1a:6c:66:0a:30:9f:94:31:29:ca:eb:59: 1c:6d:fd:ea:8b:16:7d:9a:fc:ae:62:5b:5a:63:db: 87:d3:d5:98:f4:55:ad:1a:20:c0:ed:63:1f:90:79: 82:71:53:68:4c:7c:e7:74:d2:81:55:b0:82:26:af: 73:b5:9c:a2:38:09:ff:08:b2:d5:48:08:ff:04:7f: d7:eb:b1:a2:5a:21:a2:08:30:04:f9:70:48:73:86: 82:f5:50:1b:6f:47:4d:c8:c0:76:46:a6:4c:3b:fa: 83:40:2c:a1:2d:57:7b:1e:6c:ec:ac:5d:7d:3c:c8: 2c:26:bf:f7:8a:c9:c6:d6:13:84:dc:d4:89:16:ab: f8:ff:8e:1b:e4:a1:c7:2d:c7:b8:33:93:07:fd:03: 32:2e:e7:fc:95:3e:9c:6c:17:cb:3a:38:1e:d0:51: 7e:a3:93:2c:38:48:f1:ee:76:b4:58:92:9e:4d:ec: c8:c9:24:4f:27:90:15:0f:66:5d:9c:28:5d:8a:65: 8a:1a:4c:4c:a3:5d:37:59:04:31:4a:70:06:ac:c3: 5d:31:bf:ec:b4:b4:37:3a:83:4d:de:82:0b:b0:dc: 96:b2:c1:6a:e5:c1:ef:37:a9:0a:1c:fb:a9:b7:d6: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:64:4F:6F:4F:0A:43:D0:F4:73:A0:A1:DF:AC:7C:09:13:B1:25:03 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6d:46:ac:50:6f:79:ca:91:65:4f:71:7b:58:45:03:82:e2: c1:07:12:21:ec:96:bb:f5:ea:a9:09:25:2b:03:a7:fc:13:2e: 28:af:15:f9:7c:e5:10:b8:36:3b:46:0e:97:b2:55:57:4e:1e: 8a:3b:e4:94:ce:af:b9:92:06:a9:d8:9a:f9:0f:d5:91:a9:c2: 76:2a:56:c1:b9:b8:5a:2f:67:d0:65:ce:35:b1:d1:09:e3:b5: e5:9f:c5:be:96:12:23:7b:ae:9e:65:40:50:21:ab:6a:cf:7c: 70:4f:a2:e7:dc:5e:b5:e0:a5:ec:b4:25:a7:ed:45:c6:5f:e1: 00:b5:e1:c0:7c:90:4d:f9:34:7d:68:20:f2:9e:ff:2c:11:9b: b7:ea:3f:f4:57:da:ef:2e:f6:05:28:72:11:58:fd:f5:33:a1: bb:b9:70:69:d8:6c:de:cc:0b:df:34:fc:b7:1e:2b:13:5c:76: 90:bc:6f:f4:7c:ee:b1:00:09:a6:b4:27:00:25:6b:8d:8d:b6: 8b:48:a9:69:ab:3d:9e:f1:71:9f:d0:be:c0:66:36:8e:88:b9: 26:bd:f8:4a:a7:9c:46:13:b2:a1:17:19:f0:5c:66:d1:54:b6: 0a:ed:ed:4a:e2:06:90:0c:3f:f1:60:9d:89:86:ad:6b:1d:46: cc:0f:e4:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwNDE4MjEzMDQzWhcNMjUwNDI1MjEzMDQzWjAYMRYwFAYD VQQDEw02ODAyYzQ4My02ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNlLlme1QPXrpG9zzFozLaQabGYKMJ+UMSnK61kcbf3qixZ9mvyuYltaY9uH 09WY9FWtGiDA7WMfkHmCcVNoTHzndNKBVbCCJq9ztZyiOAn/CLLVSAj/BH/X67Gi WiGiCDAE+XBIc4aC9VAbb0dNyMB2RqZMO/qDQCyhLVd7HmzsrF19PMgsJr/3isnG 1hOE3NSJFqv4/44b5KHHLce4M5MH/QMyLuf8lT6cbBfLOjge0FF+o5MsOEjx7na0 WJKeTezIySRPJ5AVD2ZdnChdimWKGkxMo103WQQxSnAGrMNdMb/stLQ3OoNN3oIL sNyWssFq5cHvN6kKHPupt9amvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFkT29P CkPQ9HOgod+sfAkTsSUDMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAObUasUG95ypFlT3F7WEUDguLBBxIh7Ja79eqpCSUrA6f8Ey4orxX5 fOUQuDY7Rg6XslVXTh6KO+SUzq+5kgap2Jr5D9WRqcJ2KlbBubhaL2fQZc41sdEJ 47Xln8W+lhIje66eZUBQIatqz3xwT6Ln3F614KXstCWn7UXGX+EAteHAfJBN+TR9 aCDynv8sEZu36j/0V9rvLvYFKHIRWP31M6G7uXBp2GzezAvfNPy3HisTXHaQvG/0 fO6xAAmmtCcAJWuNjbaLSKlpqz2e8XGf0L7AZjaOiLkmvfhKp5xGE7KhFxnwXGbR VLYK7e1K4gaQDD/xYJ2Jhq1rHUbMD+Rx -----END CERTIFICATE-----Generated at Sat Apr 19 02:15:53 2025 by rpki-client