$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: vg4rwgnrYbEVWxYZVLfcH/d5W/briGEJrXw+a4IqwLw= Subject key identifier: B7:E4:9F:C4:B9:7C:1C:EE:5C:A1:2E:7D:3D:1D:21:4B:42:59:EE:A0 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 07F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 07EB Signing time: Fri 04 Apr 2025 21:07:47 +0000 Manifest this update: Fri 04 Apr 2025 21:07:46 +0000 Manifest next update: Fri 11 Apr 2025 21:07:46 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: knb5fK+LLim5BSJQE8Kcyov2bYHJiHRuGqKGX3SyxqY=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: rKz6S4ig+3Nn3Uq5Htmq9rz0thwBeC0p821+eve0GW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2033 (0x7f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B Validity Not Before: Apr 4 21:07:46 2025 GMT Not After : Apr 11 21:07:46 2025 GMT Subject: CN=67f04a22-1184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:26:71:54:82:46:de:58:1d:4c:02:a6:a1: f5:9b:6c:73:dc:6f:24:53:18:11:fb:7c:92:87:f2: b1:e1:fc:41:bf:b5:9d:49:9d:d9:ac:3a:d1:f1:95: 6f:fc:c9:53:73:d3:5a:02:38:be:c6:6e:b1:08:e9: cb:2c:84:50:43:48:91:3a:6b:29:19:93:4f:f3:58: a1:ee:ab:60:d9:d9:9f:e4:d9:0c:50:c0:68:5d:fe: 11:5f:80:fb:63:10:a9:fd:d2:ff:93:3a:8e:13:3f: f2:14:ee:fe:a1:78:a9:1d:34:35:6c:58:3b:e9:e3: 4a:63:20:64:e8:a8:70:dd:26:f1:e4:f7:7c:30:1a: 2c:8e:0d:02:9e:43:5e:88:a3:65:08:11:3b:41:4c: aa:ba:2b:0e:4d:d7:1d:c5:ec:7a:9d:c7:0b:3d:b0: 19:8a:f6:a8:c7:0d:0d:32:0d:e8:cb:13:8c:98:2c: ba:15:76:6b:fd:37:aa:fc:42:ac:a3:0d:28:7d:88: 84:54:94:6b:4a:b1:25:bf:e5:d3:da:d7:ca:e5:dc: 97:55:af:41:04:77:3e:92:d3:bf:32:8f:ab:ba:a9: 01:c0:38:4a:92:4d:72:30:26:84:1f:10:65:40:fa: 3b:f3:13:c2:07:c0:d2:da:1c:64:45:3b:f8:78:b7: a7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E4:9F:C4:B9:7C:1C:EE:5C:A1:2E:7D:3D:1D:21:4B:42:59:EE:A0 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:13:14:4b:70:54:21:04:12:74:92:81:64:d1:d8:e1:92:17: 74:f8:46:db:6c:79:ff:a4:8e:bb:6f:da:af:ee:a8:21:93:63: 7d:12:79:05:e2:74:10:9e:92:23:ee:0d:67:5a:d8:f5:d9:23: f1:e2:3a:2f:00:a7:e7:5c:de:79:95:0d:38:37:c2:89:db:94: 12:85:a9:77:3e:0a:81:80:25:a2:67:7f:17:19:e4:ba:f7:9c: 7e:d9:80:f4:2a:63:f4:6a:27:a7:79:ec:23:35:aa:fd:3e:0d: 91:bc:f6:01:e7:b0:5d:0f:42:2c:33:a7:4a:f3:c8:f7:71:4b: 47:5f:8d:c6:e0:e0:73:76:7f:81:8e:a7:d2:88:6c:ac:e1:33: 48:dc:e6:10:53:95:f5:52:11:17:76:bc:3c:0a:3e:cf:18:25: c3:34:5e:44:b4:aa:6c:eb:62:3a:0d:ac:76:3f:3a:bb:9f:a7: 06:22:78:fb:53:67:1b:16:ae:80:72:d7:c3:3d:00:71:1d:e5: 24:f4:7e:1f:e1:44:56:3f:3d:f4:44:4a:33:48:b8:42:ad:82: 60:f7:c9:83:4c:e8:ac:83:70:a8:57:8c:bc:70:ca:3e:48:82: 04:b9:11:ac:b1:38:a3:f9:94:36:bc:e5:bc:16:e3:78:44:17: f4:55:52:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwNDA0MjEwNzQ2WhcNMjUwNDExMjEwNzQ2WjAYMRYwFAYD VQQDEw02N2YwNGEyMi0xMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdImcVSCRt5YHUwCpqH1m2xz3G8kUxgR+3ySh/Kx4fxBv7WdSZ3ZrDrR8ZVv /MlTc9NaAji+xm6xCOnLLIRQQ0iROmspGZNP81ih7qtg2dmf5NkMUMBoXf4RX4D7 YxCp/dL/kzqOEz/yFO7+oXipHTQ1bFg76eNKYyBk6Khw3Sbx5Pd8MBosjg0CnkNe iKNlCBE7QUyquisOTdcdxex6nccLPbAZivaoxw0NMg3oyxOMmCy6FXZr/Teq/EKs ow0ofYiEVJRrSrElv+XT2tfK5dyXVa9BBHc+ktO/Mo+ruqkBwDhKkk1yMCaEHxBl QPo78xPCB8DS2hxkRTv4eLen1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfkn8S5 fBzuXKEufT0dIUtCWe6gMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdExRLcFQhBBJ0koFk0djhkhd0+EbbbHn/pI67b9qv7qghk2N9EnkF 4nQQnpIj7g1nWtj12SPx4jovAKfnXN55lQ04N8KJ25QShal3PgqBgCWiZ38XGeS6 95x+2YD0KmP0aieneewjNar9Pg2RvPYB57BdD0IsM6dK88j3cUtHX43G4OBzdn+B jqfSiGys4TNI3OYQU5X1UhEXdrw8Cj7PGCXDNF5EtKps62I6Dax2Pzq7n6cGInj7 U2cbFq6ActfDPQBxHeUk9H4f4URWPz30REozSLhCrYJg98mDTOisg3CoV4y8cMo+ SIIEuRGssTij+ZQ2vOW8FuN4RBf0VVI0 -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:22 2025 by rpki-client