$ rpki-client -vvf rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft File: oPv941FZcJK2h-zGQOyF3CnyAXM.mft (raw, json) Hash identifier: O1aT1+kfmqmttfcrGTcm+8XadrWNbHLv3tjy5G5PBpQ= Subject key identifier: 44:41:75:06:F0:97:B8:0E:03:8B:F3:59:2D:C6:58:53:E4:A5:94:51 Authority key identifier: A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 Certificate issuer: /CN=A9140B3F/serialNumber=A0FBFDE351597092B687ECC640EC85DC29F20173 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft Manifest number: 0177 Signing time: Sat 29 Mar 2025 03:17:39 +0000 Manifest this update: Sat 29 Mar 2025 03:17:38 +0000 Manifest next update: Sat 05 Apr 2025 03:17:38 +0000 Files and hashes: 1: oPv941FZcJK2h-zGQOyF3CnyAXM.crl (hash: iev0lDA9D6Q0zSSg+qNcQnYw06yzN0paoH+Tj7lICMc=) 2: 1F63D776D29011EDA849876CC4F9AE02.roa (hash: LK0ZOJt3bvu7IHmDVNJ+cUrmzRXOPpiZ1YyLnrDVzpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140B3F Validity Not Before: Mar 29 03:17:38 2025 GMT Not After : Apr 5 03:17:38 2025 GMT Subject: CN=67e76653-a129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1d:04:11:b6:5d:2a:36:dd:ed:32:14:14:9e: b9:9b:48:b7:14:51:de:77:d2:83:9d:7a:01:6e:c3: 7e:7b:c2:2a:36:d3:b4:85:f5:3e:9a:40:4a:09:21: b6:96:37:93:b2:3d:82:43:a1:57:39:11:e0:35:69: 37:2b:14:7e:71:59:92:d6:d3:7d:43:f7:f1:b4:54: 80:d2:66:68:4b:13:00:eb:d4:c7:91:7b:a9:f6:8a: 8d:bf:ce:50:3a:86:ec:88:6f:ef:c1:85:01:49:db: 0c:12:b8:6f:e2:a9:5c:a8:54:fb:88:0b:06:bc:26: ca:ce:0f:95:cf:60:8e:89:d1:f7:e6:57:df:62:d8: 25:e6:df:1c:d2:d4:76:6c:e9:6b:7f:a4:c8:17:01: f4:d7:dd:c3:ab:9b:41:5e:f8:85:62:6c:e2:d3:4c: de:77:c5:f6:f8:f7:17:c2:81:39:35:2d:d2:2d:5b: b4:d5:e1:63:5c:18:68:ea:04:1b:a1:ba:2d:97:a7: f5:22:97:ba:04:0d:47:f0:f4:d8:15:75:07:b5:a0: 4a:b7:dd:49:74:59:8c:ff:1e:9b:9a:08:13:27:86: 54:28:26:82:d1:8b:26:67:79:ab:93:99:dd:53:4c: e5:f2:65:01:8b:91:02:51:1e:30:9b:72:b1:9a:3f: 3c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:41:75:06:F0:97:B8:0E:03:8B:F3:59:2D:C6:58:53:E4:A5:94:51 X509v3 Authority Key Identifier: keyid:A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f8:13:25:1d:1e:1c:e0:22:65:00:91:c1:d1:43:06:a7:89: 28:95:7d:c8:bd:80:45:a5:4d:93:78:f5:bb:cd:ff:4f:a6:35: 5d:98:0c:f3:f3:75:ec:cc:6e:db:38:c5:09:18:a4:43:d7:39: b0:84:50:78:28:52:f1:74:18:4f:27:b8:3a:75:74:ff:15:f6: 14:3f:a3:f7:bd:e0:ea:a2:f6:c8:e5:32:cb:2e:3d:ab:b4:b4: 1c:31:d7:d8:3b:f7:3f:fc:3e:aa:f9:a8:22:3b:03:9c:5c:b5: 29:b4:c6:1c:5f:15:58:13:66:41:21:8e:a2:7f:de:6f:c6:96: 8a:80:4f:f6:ea:06:28:e0:9c:dd:92:6b:a3:5c:97:74:f2:90: 1b:a6:aa:5d:c1:1f:8d:a4:bd:65:45:e9:7e:a3:10:00:48:30: 3f:e7:ac:8e:3e:2e:c3:dc:e3:6e:d9:4d:81:a1:47:3f:49:34: 70:15:d9:57:ac:ee:ad:25:5f:bb:40:3c:83:ad:84:bb:7b:e5: 9f:80:95:c4:38:c6:76:78:79:e4:63:79:c9:a1:c1:09:79:bb: 18:0a:59:13:1b:7d:cc:d8:66:ee:73:92:88:85:69:c4:02:99: 98:af:0c:5c:8b:26:b8:83:56:d4:63:80:ef:b0:2d:18:2d:6c: ae:8f:6f:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCM0YxMTAvBgNVBAUTKEEwRkJGREUzNTE1OTcwOTJCNjg3RUNDNjQwRUM4NURD MjlGMjAxNzMwHhcNMjUwMzI5MDMxNzM4WhcNMjUwNDA1MDMxNzM4WjAYMRYwFAYD VQQDEw02N2U3NjY1My1hMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB0EEbZdKjbd7TIUFJ65m0i3FFHed9KDnXoBbsN+e8IqNtO0hfU+mkBKCSG2 ljeTsj2CQ6FXORHgNWk3KxR+cVmS1tN9Q/fxtFSA0mZoSxMA69THkXup9oqNv85Q OobsiG/vwYUBSdsMErhv4qlcqFT7iAsGvCbKzg+Vz2COidH35lffYtgl5t8c0tR2 bOlrf6TIFwH0193Dq5tBXviFYmzi00zed8X2+PcXwoE5NS3SLVu01eFjXBho6gQb obotl6f1Ipe6BA1H8PTYFXUHtaBKt91JdFmM/x6bmggTJ4ZUKCaC0YsmZ3mrk5nd U0zl8mUBi5ECUR4wm3Kxmj886wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERBdQbw l7gOA4vzWS3GWFPkpZRRMB8GA1UdIwQYMBaAFKD7/eNRWXCStofsxkDshdwp8gFz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEIzRi9GOEQ3MkNEQ0Qy OEMxMUVEQkFFOUVFNkFDNEY5QUUwMi9vUHY5NDFGWmNKSzJoLXpHUU95RjNDbnlB WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qdjk0MUZaY0pLMmgtekdRT3lGM0NueUFYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEIzRi9GOEQ3MkNEQ0QyOEMxMUVEQkFFOUVFNkFDNEY5QUUwMi9vUHY5NDFGWmNK SzJoLXpHUU95RjNDbnlBWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB+BMlHR4c4CJlAJHB0UMGp4kolX3IvYBFpU2TePW7zf9PpjVdmAzz 83XszG7bOMUJGKRD1zmwhFB4KFLxdBhPJ7g6dXT/FfYUP6P3veDqovbI5TLLLj2r tLQcMdfYO/c//D6q+agiOwOcXLUptMYcXxVYE2ZBIY6if95vxpaKgE/26gYo4Jzd kmujXJd08pAbpqpdwR+NpL1lRel+oxAASDA/56yOPi7D3ONu2U2BoUc/STRwFdlX rO6tJV+7QDyDrYS7e+WfgJXEOMZ2eHnkY3nJocEJebsYClkTG33M2Gbuc5KIhWnE ApmYrwxciya4g1bUY4DvsC0YLWyuj2// -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:27 2025 by rpki-client