$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: ukqm5BjxqJXqo6b2iPSTXdJ/jcFHWmSFnAhUw2+BddE= Subject key identifier: 4A:3B:B2:2F:C9:FE:62:42:3E:C4:8E:8E:36:3A:6E:03:0C:9D:D7:86 Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 0622 Signing time: Fri 04 Apr 2025 22:49:37 +0000 Manifest this update: Fri 04 Apr 2025 22:49:37 +0000 Manifest next update: Fri 11 Apr 2025 22:49:37 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: juk5EWJ0rY1oVrVwpKyTWH9/QQMTLlVS2RlgzK7FYGw=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: GeZswpwVwmpN5JkYUADU3m9LKzzMiHleESILy/kILG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4 Validity Not Before: Apr 4 22:49:37 2025 GMT Not After : Apr 11 22:49:37 2025 GMT Subject: CN=67f06201-8004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:38:59:50:55:75:49:7b:dd:5c:9e:ba:61: 3e:72:81:4f:76:0f:44:0f:1e:d8:28:93:9a:ca:1e: a4:b7:2f:46:09:0a:98:74:15:01:a5:e3:9e:c4:b1: 7c:80:af:c0:98:77:96:51:0c:ce:85:40:9f:0a:25: bc:fb:26:69:97:a6:58:ca:b4:50:a2:1c:22:f2:83: 72:87:78:3b:27:38:97:55:dc:ae:f7:ec:20:3f:c3: 1e:2a:7e:75:4e:4a:86:66:f6:d6:74:e5:0d:6d:59: ec:e1:2e:a8:7f:af:75:f5:b2:01:7f:6c:ef:28:91: 49:ff:c6:4b:41:a6:3a:b6:aa:83:81:e4:81:cc:38: e2:16:f9:ae:5f:e0:e1:54:10:88:c8:d0:e0:fd:4e: d5:04:f3:ac:6b:91:16:2e:d4:5a:4c:3a:79:a2:a4: 7e:ea:a7:a6:cd:f8:0f:6e:aa:2a:47:39:59:ee:a6: c7:f9:b4:38:0a:ef:48:d6:54:93:c0:f7:d7:3f:bf: 0c:b8:4a:93:ec:50:67:06:ba:a2:7a:09:ce:39:f1: 90:7e:28:03:4b:9f:d1:b1:07:e2:03:35:21:45:36: 14:1d:81:ce:2d:b5:04:e1:7a:07:1a:cc:02:aa:f6: 92:b7:26:8a:3d:80:fe:8f:df:a6:d2:e4:f6:cb:4b: 93:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3B:B2:2F:C9:FE:62:42:3E:C4:8E:8E:36:3A:6E:03:0C:9D:D7:86 X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:8a:55:04:7e:58:fe:de:b6:98:df:ea:73:14:62:2d:c0:0f: 7a:ae:b5:21:b8:b5:d5:a4:1e:cf:11:f7:0d:7d:0e:9d:6e:2f: d7:3a:f8:5c:78:a8:70:dd:02:c7:66:49:45:26:cc:00:95:9b: 43:40:17:97:a8:aa:e9:db:a9:85:c9:0a:dd:c5:f4:da:63:1e: 3a:cd:d1:4e:b3:1a:82:63:33:57:27:35:73:c4:17:e1:26:f3: 41:88:ba:ef:37:bc:0e:e8:78:1a:35:9e:47:ff:f0:fd:44:3c: c3:e7:61:fa:e8:1f:95:aa:b4:8a:fc:7b:b9:28:0c:26:e8:7a: bb:97:2f:52:dd:de:f4:52:81:a1:24:21:cd:70:42:4a:11:a2: 40:b4:db:40:07:50:db:41:da:fa:52:9c:67:4b:7e:f8:f2:88: 82:c2:90:dd:c6:47:ae:15:61:d8:4d:c1:93:ef:2f:d2:3d:c7: af:0a:21:37:fc:77:c1:b2:c5:d7:9e:85:f5:ed:a1:fe:88:a9: 7a:61:e1:d0:c5:b6:c4:c1:a7:96:cf:03:ef:c5:f8:17:80:49: 35:ac:7b:3b:a3:ee:90:54:c5:38:34:64:40:69:96:49:9a:70: 7c:e3:2f:71:c4:88:32:8f:0b:95:05:d1:51:9b:f8:6c:f4:f6: 94:b6:3d:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjUwNDA0MjI0OTM3WhcNMjUwNDExMjI0OTM3WjAYMRYwFAYD VQQDEw02N2YwNjIwMS04MDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqko4WVBVdUl73VyeumE+coFPdg9EDx7YKJOayh6kty9GCQqYdBUBpeOexLF8 gK/AmHeWUQzOhUCfCiW8+yZpl6ZYyrRQohwi8oNyh3g7JziXVdyu9+wgP8MeKn51 TkqGZvbWdOUNbVns4S6of6919bIBf2zvKJFJ/8ZLQaY6tqqDgeSBzDjiFvmuX+Dh VBCIyNDg/U7VBPOsa5EWLtRaTDp5oqR+6qemzfgPbqoqRzlZ7qbH+bQ4Cu9I1lST wPfXP78MuEqT7FBnBrqiegnOOfGQfigDS5/RsQfiAzUhRTYUHYHOLbUE4XoHGswC qvaStyaKPYD+j9+m0uT2y0uTvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo7si/J /mJCPsSOjjY6bgMMndeGMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQilUEflj+3raY3+pzFGItwA96rrUhuLXVpB7PEfcNfQ6dbi/XOvhc eKhw3QLHZklFJswAlZtDQBeXqKrp26mFyQrdxfTaYx46zdFOsxqCYzNXJzVzxBfh JvNBiLrvN7wO6HgaNZ5H//D9RDzD52H66B+VqrSK/Hu5KAwm6Hq7ly9S3d70UoGh JCHNcEJKEaJAtNtAB1DbQdr6UpxnS3748oiCwpDdxkeuFWHYTcGT7y/SPcevCiE3 /HfBssXXnoX17aH+iKl6YeHQxbbEwaeWzwPvxfgXgEk1rHs7o+6QVMU4NGRAaZZJ mnB84y9xxIgyjwuVBdFRm/hs9PaUtj2l -----END CERTIFICATE-----Generated at Sun Apr 6 13:00:51 2025 by rpki-client