$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: 6oeHwrFC3DRNKuul+qf3VlP2sHrMIFpAicNg6yU/rTE= Subject key identifier: 9C:D5:15:98:EB:A7:D8:A9:F5:D8:11:06:67:E7:9D:DB:BB:81:D9:9D Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1725 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1711 Signing time: Tue 08 Apr 2025 16:39:06 +0000 Manifest this update: Tue 08 Apr 2025 16:39:06 +0000 Manifest next update: Tue 15 Apr 2025 16:39:06 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: h6HQxAd8rvAE945EBi3yggoj4WKDGUW0WT23hSPmDmQ=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: iXjwV45fwne/rI84HJKZlfBWV1ptmSntosF8B4rHHyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5925 (0x1725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB Validity Not Before: Apr 8 16:39:06 2025 GMT Not After : Apr 15 16:39:06 2025 GMT Subject: CN=67f5512a-4068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e6:e5:3f:13:80:57:8a:44:77:cd:53:ff:b0: 7f:7f:82:cc:f0:f8:35:11:09:73:b3:f8:0d:cb:7e: c1:5b:4d:19:f4:1d:8f:82:3e:67:e5:86:37:9e:19: 54:7c:83:26:61:99:a3:20:e2:47:bf:d9:60:c6:6d: c3:80:7d:4e:c9:8a:1d:98:17:9a:e0:78:a2:20:fb: db:22:99:28:8c:d8:b7:62:a6:5e:b3:f7:38:aa:4b: ff:06:37:e0:8e:7c:d1:2e:a3:38:47:ec:c7:43:f0: d1:49:75:27:34:75:af:73:4b:de:c2:9b:29:43:8f: 48:d3:e0:ee:10:b6:e2:42:98:eb:39:1d:fd:85:87: 11:b0:a6:09:21:66:9e:56:18:4d:49:dd:22:b3:82: af:49:1c:f3:70:2a:03:5d:1e:66:d6:4f:e5:f3:27: ed:3e:e6:39:3d:d7:c2:0e:4a:65:bf:c0:86:dc:9c: 81:bf:33:1c:4c:6f:05:f7:b7:60:96:e1:37:a0:16: 75:29:76:48:46:55:a8:e7:c9:f0:99:c3:4e:55:b0: 7e:4a:dc:bb:48:74:ec:e7:e5:ea:c1:97:2e:48:07: b4:8d:97:aa:4d:87:89:6d:1d:e7:11:76:22:88:9f: 07:05:c6:ae:c0:4b:91:4d:cc:e7:37:69:9f:19:1f: 8d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D5:15:98:EB:A7:D8:A9:F5:D8:11:06:67:E7:9D:DB:BB:81:D9:9D X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:94:39:e9:9a:99:a5:1e:35:47:7b:47:4e:9e:84:5e:fb:f9: 20:46:60:05:99:05:2c:8b:02:50:f2:70:9e:f6:b5:28:cb:fd: a5:f0:63:61:e8:ae:43:0f:9e:33:57:92:df:0f:a1:93:b0:1f: 79:54:c9:b1:16:16:9e:8d:e8:f4:9f:b5:64:9f:a6:38:8b:67: 1b:38:26:b7:2f:cb:de:07:1c:4a:0a:1a:b4:66:ef:a8:c8:38: 8b:68:0a:29:99:16:2b:23:00:cf:38:35:0d:1d:09:e6:58:66: 4e:29:dd:dc:53:ba:25:66:95:2e:bc:af:c6:66:89:64:c6:48: db:cb:95:75:ba:56:80:58:35:5c:36:c0:d4:47:52:bc:45:4c: 80:51:8a:6f:64:4a:d3:54:69:b7:f3:73:a2:8c:cb:64:1b:1b: 2e:3c:4f:40:13:ce:5a:d9:ad:43:71:e8:eb:93:ca:03:0c:8b: e4:32:34:72:d9:8c:55:95:66:5c:4e:a0:2b:f3:3e:27:ac:ac: 0d:8d:27:ae:f2:9a:ec:6b:c9:eb:93:e4:41:b1:e5:b3:b3:19: b5:b6:82:a2:57:58:bc:58:0f:a5:dc:61:26:94:7b:01:d6:44: a2:db:44:3a:d4:3d:a6:af:71:28:f4:ff:07:57:03:d6:de:68: 02:30:8c:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNDA4MTYzOTA2WhcNMjUwNDE1MTYzOTA2WjAYMRYwFAYD VQQDEw02N2Y1NTEyYS00MDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOblPxOAV4pEd81T/7B/f4LM8Pg1EQlzs/gNy37BW00Z9B2Pgj5n5YY3nhlU fIMmYZmjIOJHv9lgxm3DgH1OyYodmBea4HiiIPvbIpkojNi3YqZes/c4qkv/Bjfg jnzRLqM4R+zHQ/DRSXUnNHWvc0vewpspQ49I0+DuELbiQpjrOR39hYcRsKYJIWae VhhNSd0is4KvSRzzcCoDXR5m1k/l8yftPuY5PdfCDkplv8CG3JyBvzMcTG8F97dg luE3oBZ1KXZIRlWo58nwmcNOVbB+Sty7SHTs5+XqwZcuSAe0jZeqTYeJbR3nEXYi iJ8HBcauwEuRTcznN2mfGR+NIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzVFZjr p9ip9dgRBmfnndu7gdmdMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBClDnpmpmlHjVHe0dOnoRe+/kgRmAFmQUsiwJQ8nCe9rUoy/2l8GNh 6K5DD54zV5LfD6GTsB95VMmxFhaejej0n7Vkn6Y4i2cbOCa3L8veBxxKChq0Zu+o yDiLaAopmRYrIwDPODUNHQnmWGZOKd3cU7olZpUuvK/GZolkxkjby5V1ulaAWDVc NsDUR1K8RUyAUYpvZErTVGm383OijMtkGxsuPE9AE85a2a1Dcejrk8oDDIvkMjRy 2YxVlWZcTqAr8z4nrKwNjSeu8prsa8nrk+RBseWzsxm1toKiV1i8WA+l3GEmlHsB 1kSi20Q61D2mr3Eo9P8HVwPW3mgCMIxJ -----END CERTIFICATE-----Generated at Tue Apr 8 20:12:15 2025 by rpki-client