$ rpki-client -vvf rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft File: oxnfTQtEZSzooFXCNSUBGLSUBYU.mft (raw, json) Hash identifier: GtShyp4m52DWqGfx+bRHgcjLKnCqNmgzn49VRKfq5Lk= Subject key identifier: 05:C8:B1:0C:57:6C:F7:FC:AD:B7:81:8B:50:E5:A0:8D:26:7C:08:A4 Authority key identifier: A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 Certificate issuer: /CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Certificate serial: 074F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft Manifest number: 0746 Signing time: Fri 04 Apr 2025 21:50:27 +0000 Manifest this update: Fri 04 Apr 2025 21:50:26 +0000 Manifest next update: Fri 11 Apr 2025 21:50:26 +0000 Files and hashes: 1: oxnfTQtEZSzooFXCNSUBGLSUBYU.crl (hash: qraELzoDKZaYkg3R16kNngdM+74OUKqmlgEAUx8/Zx0=) 2: 29F6C42C1FD311EBA5D83A1EC4F9AE02.roa (hash: epre9gPrGweKOSwkMZsEVYJd5/RVczknOfwPtxQUKwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E881 Validity Not Before: Apr 4 21:50:26 2025 GMT Not After : Apr 11 21:50:26 2025 GMT Subject: CN=67f05422-e846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:51:f3:02:2c:df:2f:fa:9a:c3:a5:c8:a5:ab: d0:34:6d:a8:92:ef:7a:b1:35:d9:48:cd:d5:81:e8: 4a:14:31:cc:34:c8:a4:61:61:e5:6e:40:78:29:6a: fa:b4:63:0a:89:58:4e:19:24:03:64:d0:ea:34:dd: 88:e6:a9:28:43:ae:b8:a7:6a:d9:6d:48:d0:02:a4: 07:e9:ce:cc:27:c6:2c:a7:bd:93:de:f2:fb:cc:74: e5:99:64:c8:58:45:49:21:49:39:60:2c:bd:e8:2c: db:18:9b:5c:6f:0a:b1:77:e6:32:88:b4:bf:5c:3e: fa:02:9f:67:73:20:c3:47:c5:20:09:93:5c:b3:67: a9:54:8d:10:32:44:a8:5f:38:4b:d7:ea:dd:d1:2d: ee:4c:f5:42:23:b8:fa:36:ce:f2:06:32:eb:91:df: cc:ef:02:af:54:e0:1b:88:d5:f6:5e:c3:02:05:49: 6c:7c:95:0e:7e:04:a8:d4:53:5d:82:9b:0b:cb:9c: 60:a7:06:57:78:b4:1a:23:34:03:dd:b5:41:da:3e: 8e:5f:3f:dc:be:89:41:eb:9a:7f:7d:55:0a:6c:37: e1:6b:01:6b:25:14:86:38:a6:2d:51:9b:2e:29:c6: 8a:c5:8e:e1:43:81:30:03:a3:fd:3d:b9:b4:87:06: 31:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:B1:0C:57:6C:F7:FC:AD:B7:81:8B:50:E5:A0:8D:26:7C:08:A4 X509v3 Authority Key Identifier: keyid:A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:f6:74:14:35:c7:a1:88:bc:7c:db:ee:02:92:7c:21:33:af: 54:83:0c:ac:78:05:b5:36:e1:79:2d:07:4e:c3:9e:13:62:06: 6f:3f:cc:75:81:5d:83:79:d9:a8:12:ea:1b:e1:b6:48:38:2c: 97:ec:05:5b:22:1e:c5:f1:7f:0b:40:0d:68:78:6a:a6:24:cd: 86:31:a3:ed:f9:f2:63:2a:18:c0:22:1f:3e:fa:f5:be:6a:fc: a6:4d:3b:94:7b:39:d3:28:27:57:21:ec:a3:fa:b7:c3:ec:3a: 77:39:fb:d9:0d:6f:2b:28:f7:2a:5e:65:80:f6:66:56:2c:01: 7a:30:9e:dc:e6:92:87:f0:fd:54:d3:9d:61:b6:b6:ac:78:d1: d8:b5:49:74:d2:47:fe:c3:f4:ae:94:f8:20:6b:a6:cf:01:8c: a8:fd:5d:f6:0f:4d:95:8c:e2:92:2e:b8:05:74:8f:ce:3a:98: b5:2e:5e:93:af:28:6f:a9:54:63:cb:b4:9c:01:db:14:d5:46: 01:67:e7:eb:ce:d2:30:bf:8c:ab:b0:56:11:c0:21:d7:29:3c: 54:ce:d4:e5:51:63:68:12:5e:c2:14:bc:cb:66:c1:88:d3:30: 03:95:78:44:3e:47:3f:52:ed:84:f0:8d:eb:b2:48:f1:67:03: bd:a8:33:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4ODExMTAvBgNVBAUTKEEzMTlERjREMEI0NDY1MkNFOEEwNTVDMjM1MjUwMTE4 QjQ5NDA1ODUwHhcNMjUwNDA0MjE1MDI2WhcNMjUwNDExMjE1MDI2WjAYMRYwFAYD VQQDEw02N2YwNTQyMi1lODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFHzAizfL/qaw6XIpavQNG2oku96sTXZSM3VgehKFDHMNMikYWHlbkB4KWr6 tGMKiVhOGSQDZNDqNN2I5qkoQ664p2rZbUjQAqQH6c7MJ8Ysp72T3vL7zHTlmWTI WEVJIUk5YCy96CzbGJtcbwqxd+YyiLS/XD76Ap9ncyDDR8UgCZNcs2epVI0QMkSo XzhL1+rd0S3uTPVCI7j6Ns7yBjLrkd/M7wKvVOAbiNX2XsMCBUlsfJUOfgSo1FNd gpsLy5xgpwZXeLQaIzQD3bVB2j6OXz/cvolB65p/fVUKbDfhawFrJRSGOKYtUZsu KcaKxY7hQ4EwA6P9Pbm0hwYxewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXIsQxX bPf8rbeBi1DloI0mfAikMB8GA1UdIwQYMBaAFKMZ300LRGUs6KBVwjUlARi0lAWF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTg4MS8xRTY0MkVFNDFG RDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpTem9vRlhDTlNVQkdMU1VC WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL294bmZUUXRFWlN6b29GWENOU1VCR0xTVUJZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTg4MS8xRTY0MkVFNDFGRDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpT em9vRlhDTlNVQkdMU1VCWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo9nQUNcehiLx82+4CknwhM69UgwyseAW1NuF5LQdOw54TYgZvP8x1 gV2DedmoEuob4bZIOCyX7AVbIh7F8X8LQA1oeGqmJM2GMaPt+fJjKhjAIh8++vW+ avymTTuUeznTKCdXIeyj+rfD7Dp3OfvZDW8rKPcqXmWA9mZWLAF6MJ7c5pKH8P1U 051htraseNHYtUl00kf+w/SulPgga6bPAYyo/V32D02VjOKSLrgFdI/OOpi1Ll6T ryhvqVRjy7ScAdsU1UYBZ+frztIwv4yrsFYRwCHXKTxUztTlUWNoEl7CFLzLZsGI 0zADlXhEPkc/Uu2E8I3rskjxZwO9qDM1 -----END CERTIFICATE-----Generated at Sat Apr 5 12:35:00 2025 by rpki-client