$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft File: oo2gvpAdmDpDPYM1idFnv0hvZPw.mft (raw, json) Hash identifier: 0iBarv2Eb/2+d+w8zQyhtQkaJ9h076eLAP2xqAL3p6Y= Subject key identifier: E8:10:23:A2:10:A5:63:AE:EE:A5:AE:CD:C3:68:BF:EE:74:29:52:CA Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft Manifest number: 0153 Signing time: Thu 03 Apr 2025 03:24:20 +0000 Manifest this update: Thu 03 Apr 2025 03:24:20 +0000 Manifest next update: Thu 10 Apr 2025 03:24:20 +0000 Files and hashes: 1: oo2gvpAdmDpDPYM1idFnv0hvZPw.crl (hash: tj3UgAzdcT1NHPe17SGX3y7TtaQXz91G624gF6c510c=) 2: DB27568209DA11EEBA18A082C4F9AE02.roa (hash: e38NftZeclZtbzcVCk509TYbTR+zv3+tyooBUtjix+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E Validity Not Before: Apr 3 03:24:20 2025 GMT Not After : Apr 10 03:24:20 2025 GMT Subject: CN=67edff64-8643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:3e:3b:17:6c:81:e1:b4:de:25:76:f9:b2: a5:ae:e0:93:10:f0:d8:8a:b0:8f:4b:d3:d7:b1:63: b6:2a:4f:6e:bf:4a:01:da:13:d1:21:64:01:33:28: ed:bf:47:d1:ec:a4:62:7f:9a:26:06:f3:f2:ea:25: b3:e3:f5:d3:92:ca:1d:75:b9:e4:56:59:ac:83:2b: a4:df:24:4d:78:24:e3:b2:f4:8d:e5:8d:6a:0b:59: 06:e7:c6:88:db:b0:1f:bc:e6:ec:75:9f:d5:fb:42: 29:a5:2e:6a:4a:ad:b3:4a:f5:54:ad:16:09:90:d5: a3:ae:98:88:0e:10:92:9c:a9:32:eb:cb:f5:34:77: 60:5d:36:02:b4:14:c8:72:8a:c6:c7:0b:6c:e1:a3: e4:c6:57:ec:27:b2:e1:ed:90:7f:6c:20:a5:55:25: f2:87:1d:70:ba:ec:a9:9f:7c:0b:ad:72:b3:10:7d: d5:46:78:d4:b3:f0:ca:e8:a1:5f:ab:70:30:16:f8: 22:9c:c5:2e:26:9f:91:97:c2:a2:b3:d1:d9:9f:b9: fc:08:34:04:24:ce:77:c3:70:34:7b:b3:23:5d:e2: a1:a5:13:65:2d:03:05:a1:5b:85:b4:09:f7:54:30: e0:46:e5:b8:3f:7a:86:de:e6:b8:0d:e9:e0:ac:e5: f4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:23:A2:10:A5:63:AE:EE:A5:AE:CD:C3:68:BF:EE:74:29:52:CA X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:77:c1:28:05:87:fe:e3:b9:62:12:db:da:1c:31:1e:94:f4: 58:d1:f3:54:fc:03:16:9f:60:e0:ec:67:71:98:e5:6b:c1:69: 95:d4:72:f2:bf:12:df:93:c7:0c:bb:29:b6:d6:bc:55:28:1b: 1a:4b:bb:4a:9b:4a:21:0c:8e:15:6e:b3:63:35:2c:06:e5:d3: d8:54:ca:00:60:30:1c:11:48:56:3c:d9:fc:5d:14:a9:8d:74: a0:84:d0:b8:5a:2f:41:b0:fc:50:87:0f:10:58:0a:54:3a:be: f5:28:59:05:2a:ac:0c:6a:ae:54:a4:14:9c:cb:09:6b:83:e7: 95:35:53:0b:88:3a:c4:ea:08:e3:9f:2f:78:87:60:06:16:26: a9:ed:fc:65:c2:f2:ff:f6:25:66:c2:8b:fd:98:98:5e:27:40: d7:69:f1:19:07:5f:8c:9c:5a:1e:0f:50:63:81:dc:97:c3:8a: b3:57:5d:45:7f:9a:4a:80:13:3b:92:13:18:96:c8:22:ec:97: 69:b1:c7:6a:55:a9:fc:fe:0c:c3:49:13:17:56:04:10:0c:12: 1b:c2:cd:a4:a0:a9:bc:bb:da:eb:db:51:3c:74:06:c3:b5:64: 5c:18:f6:02:bf:84:c0:1c:89:ac:42:2c:cd:89:0e:22:f4:ea: b2:0e:89:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyMEUxMTAvBgNVBAUTKEEyOERBMEJFOTAxRDk4M0E0MzNEODMzNTg5RDE2N0JG NDg2RjY0RkMwHhcNMjUwNDAzMDMyNDIwWhcNMjUwNDEwMDMyNDIwWjAYMRYwFAYD VQQDEw02N2VkZmY2NC04NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd4+OxdsgeG03iV2+bKlruCTEPDYirCPS9PXsWO2Kk9uv0oB2hPRIWQBMyjt v0fR7KRif5omBvPy6iWz4/XTksoddbnkVlmsgyuk3yRNeCTjsvSN5Y1qC1kG58aI 27AfvObsdZ/V+0IppS5qSq2zSvVUrRYJkNWjrpiIDhCSnKky68v1NHdgXTYCtBTI corGxwts4aPkxlfsJ7Lh7ZB/bCClVSXyhx1wuuypn3wLrXKzEH3VRnjUs/DK6KFf q3AwFvginMUuJp+Rl8Kis9HZn7n8CDQEJM53w3A0e7MjXeKhpRNlLQMFoVuFtAn3 VDDgRuW4P3qG3ua4DengrOX0+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgQI6IQ pWOu7qWuzcNov+50KVLKMB8GA1UdIwQYMBaAFKKNoL6QHZg6Qz2DNYnRZ79Ib2T8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzIwRS81RTUxRDQ1QzA5 RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1EcERQWU0xaWRGbnYwaHZa UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzIwRS81RTUxRDQ1QzA5RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1E cERQWU0xaWRGbnYwaHZaUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAd8EoBYf+47liEtvaHDEelPRY0fNU/AMWn2Dg7GdxmOVrwWmV1HLy vxLfk8cMuym21rxVKBsaS7tKm0ohDI4VbrNjNSwG5dPYVMoAYDAcEUhWPNn8XRSp jXSghNC4Wi9BsPxQhw8QWApUOr71KFkFKqwMaq5UpBScywlrg+eVNVMLiDrE6gjj ny94h2AGFiap7fxlwvL/9iVmwov9mJheJ0DXafEZB1+MnFoeD1BjgdyXw4qzV11F f5pKgBM7khMYlsgi7JdpscdqVan8/gzDSRMXVgQQDBIbws2koKm8u9rr21E8dAbD tWRcGPYCv4TAHImsQizNiQ4i9OqyDon3 -----END CERTIFICATE-----Generated at Fri Apr 4 21:45:44 2025 by rpki-client