$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: /ZYaC7HauynpITV2mJjmvbrpjDJTHpey3y2t+43I79w= Subject key identifier: B7:E4:9A:8C:1C:55:C3:1F:6B:63:4C:75:F9:17:CC:0E:C8:F0:F7:00 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 09BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 09A9 Signing time: Fri 04 Apr 2025 20:14:11 +0000 Manifest this update: Fri 04 Apr 2025 20:14:11 +0000 Manifest next update: Fri 11 Apr 2025 20:14:10 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: 2ubkWybKXylTdaXrNaebxBr9hWd2E1vVxlVdeuqppT0=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE Validity Not Before: Apr 4 20:14:11 2025 GMT Not After : Apr 11 20:14:10 2025 GMT Subject: CN=67f03d93-7aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:bd:48:64:1b:a3:18:d6:f4:01:19:fa:08: 8d:b8:a6:c0:50:61:be:18:8b:ae:9d:03:8a:74:75: b2:28:95:10:9b:cc:8b:60:3d:28:88:3a:4f:f5:fa: b5:f7:e2:5f:c5:2e:ef:35:92:79:05:e5:28:5b:5e: bc:52:c8:dd:25:f4:29:ea:f9:ab:7f:07:83:e0:6a: 7f:2d:d6:37:00:77:03:21:04:6d:3b:a7:94:32:ff: 46:5b:93:b2:cf:03:ac:1f:68:10:87:e3:9b:d5:6e: 8c:1e:08:c9:a4:72:2e:a5:3a:ac:6f:cf:bb:e1:fe: 01:0c:8e:cf:2c:50:00:28:4a:0c:aa:3a:f8:72:b0: 77:34:07:36:e9:00:0c:bb:b3:29:fd:5f:63:c9:36: 31:44:66:0c:a5:e2:6c:b8:24:80:2c:a0:c6:c6:59: cd:15:e8:29:f1:2f:1e:3b:e8:ec:75:3e:63:ca:05: ac:bc:20:f6:89:8e:8f:92:31:01:f0:35:99:8b:4a: da:f9:b6:7e:eb:45:38:ab:ef:b0:d6:97:1a:0d:29: d1:7a:66:77:76:22:fc:8c:08:22:b5:79:bd:3a:ef: 7d:6e:78:a1:36:94:80:da:4e:6e:34:6f:49:44:dd: 35:e9:14:26:8c:6d:0b:10:19:9b:3b:0b:10:1c:36: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E4:9A:8C:1C:55:C3:1F:6B:63:4C:75:F9:17:CC:0E:C8:F0:F7:00 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ef:92:ae:2f:26:7e:b7:87:88:b0:81:6c:1b:93:42:42:16: 10:40:1b:62:24:c3:4a:fd:d0:87:5f:0b:0f:eb:eb:84:d4:b9: d8:84:ad:e8:a0:96:d5:0c:89:8b:97:74:a6:99:3f:6d:8a:9f: 3d:d1:20:85:28:fb:b3:13:c2:df:42:cc:60:8b:2e:6b:4f:5a: f6:9a:43:d6:bc:4a:bb:1e:ef:5c:5f:da:71:c0:25:ab:f2:fd: b1:d3:e4:e3:48:1f:94:bb:3a:ce:79:46:f0:a9:b8:14:40:42: 9a:54:f7:31:90:8d:c6:4f:2d:c2:73:54:44:d7:e7:19:2c:41: 47:14:fd:3f:82:49:c0:70:c3:a3:fd:b5:7d:53:ec:78:25:e0: 66:fd:c2:fc:26:fb:4f:24:32:ff:3c:af:b4:db:e8:34:ef:f7: d8:2e:3a:1b:0e:af:39:77:76:eb:ce:c3:d4:08:c4:b6:de:56: 98:45:74:6c:6b:3e:6f:81:f3:98:02:8d:27:47:e3:69:ad:24: 90:4e:04:92:c9:71:02:6c:17:96:77:b6:1d:1d:79:eb:e1:c7: 26:e5:81:6b:97:f0:c8:a1:c0:4e:8c:73:48:27:13:79:16:c8: 02:ec:93:ae:88:66:5a:f7:8d:dc:89:8a:71:28:1c:70:3d:2d: ff:9e:bd:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUwNDA0MjAxNDExWhcNMjUwNDExMjAxNDEwWjAYMRYwFAYD VQQDEw02N2YwM2Q5My03YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutO9SGQboxjW9AEZ+giNuKbAUGG+GIuunQOKdHWyKJUQm8yLYD0oiDpP9fq1 9+JfxS7vNZJ5BeUoW168UsjdJfQp6vmrfweD4Gp/LdY3AHcDIQRtO6eUMv9GW5Oy zwOsH2gQh+Ob1W6MHgjJpHIupTqsb8+74f4BDI7PLFAAKEoMqjr4crB3NAc26QAM u7Mp/V9jyTYxRGYMpeJsuCSALKDGxlnNFegp8S8eO+jsdT5jygWsvCD2iY6PkjEB 8DWZi0ra+bZ+60U4q++w1pcaDSnRemZ3diL8jAgitXm9Ou99bnihNpSA2k5uNG9J RN016RQmjG0LEBmbOwsQHDby3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfkmowc VcMfa2NMdfkXzA7I8PcAMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB875KuLyZ+t4eIsIFsG5NCQhYQQBtiJMNK/dCHXwsP6+uE1LnYhK3o oJbVDImLl3SmmT9tip890SCFKPuzE8LfQsxgiy5rT1r2mkPWvEq7Hu9cX9pxwCWr 8v2x0+TjSB+UuzrOeUbwqbgUQEKaVPcxkI3GTy3Cc1RE1+cZLEFHFP0/gknAcMOj /bV9U+x4JeBm/cL8JvtPJDL/PK+02+g07/fYLjobDq85d3brzsPUCMS23laYRXRs az5vgfOYAo0nR+NprSSQTgSSyXECbBeWd7YdHXnr4ccm5YFrl/DIocBOjHNIJxN5 FsgC7JOuiGZa943ciYpxKBxwPS3/nr1/ -----END CERTIFICATE-----Generated at Sat Apr 5 22:24:25 2025 by rpki-client