$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft File: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft (raw, json) Hash identifier: uRbgTtkq/LtGfzE+1neFAX39B0cdsd33xl0AWdMGOXw= Subject key identifier: 79:BB:A4:A4:C1:9E:6B:B8:78:32:A1:41:7F:04:2C:D6:5E:6D:17:7C Authority key identifier: EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF Certificate issuer: /CN=A916DB72/serialNumber=ECE2E0160161B6F77FC74976FA7D46C3E4232DEF Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft Manifest number: 95 Signing time: Sat 05 Apr 2025 05:39:23 +0000 Manifest this update: Sat 05 Apr 2025 05:39:22 +0000 Manifest next update: Sat 12 Apr 2025 05:39:22 +0000 Files and hashes: 1: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl (hash: CgFqjnzi8uD0pmv/QQP3fxuWj9YSyXqENMcf6o2UjDA=) 2: 6C722C5A6C8311EF90BD1B76C4F9AE02.roa (hash: 7gIQlEaY6p9FZPwnLquANP+Ly+DUi94SCHLL5QY24Hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB72 Validity Not Before: Apr 5 05:39:22 2025 GMT Not After : Apr 12 05:39:22 2025 GMT Subject: CN=67f0c20a-d309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f5:40:90:07:0f:ce:83:c2:62:51:a9:88:27: d5:cd:a6:77:fd:7a:6d:71:01:77:d4:d0:86:c8:6e: c3:ce:78:c0:a5:14:56:e9:94:7e:e7:d4:79:f4:cc: e4:b8:ab:bf:24:45:be:53:5d:59:76:88:17:7a:64: b9:a4:f9:68:f3:4b:0c:d3:e2:dc:19:ca:1e:b3:bc: a2:b8:20:fb:1b:9e:5f:1b:5e:2a:b6:4f:69:9b:b8: c9:d4:0c:4b:6b:23:b0:86:a7:7b:38:74:20:42:53: d9:05:69:f8:9b:6c:e6:e4:46:cd:1d:21:d3:57:ac: 4d:a8:c3:6e:6a:c3:34:ea:fe:4f:ac:1c:f6:f9:1b: 05:0b:4c:a0:01:7f:03:04:44:a5:ad:5f:79:c4:60: 68:57:c7:bf:eb:25:e8:c0:e8:fd:e6:3a:2b:c2:27: 07:09:c8:d4:83:0f:f3:37:1f:db:5e:c9:ff:69:db: c6:5b:d2:fa:09:1a:3d:e8:c3:8b:c1:af:de:95:1e: 1a:43:3e:ac:40:e0:d1:2c:b2:a9:00:d2:dc:20:e6: fb:0c:ce:48:4b:f4:50:b0:be:1c:d2:42:81:5b:47: 81:ea:6f:3d:39:11:45:6b:d7:50:10:a4:75:0a:00: 79:9f:5c:ad:b5:d1:9c:95:2c:05:ce:8e:df:a7:64: d7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BB:A4:A4:C1:9E:6B:B8:78:32:A1:41:7F:04:2C:D6:5E:6D:17:7C X509v3 Authority Key Identifier: keyid:EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b7:80:34:fc:ba:ed:29:fd:63:3c:a2:72:fb:70:b9:7d:4e: 0c:27:cd:b3:a0:41:db:c8:69:8f:27:d6:fb:3e:8f:3e:4e:05: 7e:44:2c:db:d1:1f:6b:c3:bd:06:03:72:c2:c0:26:75:cc:8c: 94:82:74:c0:eb:87:63:a6:d5:eb:2e:ce:da:9d:07:53:35:02: d8:db:48:1d:03:32:5e:19:d8:ee:d9:22:78:06:b6:7f:17:cc: ea:5a:48:e9:84:96:3f:d6:bb:2a:17:fc:60:2b:dc:88:df:46: 39:3b:7a:df:e9:93:b1:c7:83:65:8b:e1:2e:4c:cc:1f:77:fd: c4:d2:66:0d:21:2e:98:a9:ca:58:10:e9:7e:44:eb:7a:25:db: a1:73:cd:fe:fb:48:32:e4:7c:14:77:ac:49:f5:5f:3d:56:84: be:a5:dc:8d:e9:6b:f7:35:48:7f:c7:54:58:e7:da:c2:43:95: fa:1e:b5:fb:cf:17:12:85:4b:d3:24:e8:1b:82:25:43:75:c5: 10:47:fd:25:22:07:48:17:5d:c5:57:eb:43:bb:80:ea:96:1b: 6e:aa:1b:86:53:e7:8e:6c:64:52:0d:aa:02:cc:09:43:b8:e7: 93:35:aa:27:76:ab:ab:ae:75:aa:d3:38:ec:ad:b5:e1:cb:d1: 2e:72:89:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCNzIxMTAvBgNVBAUTKEVDRTJFMDE2MDE2MUI2Rjc3RkM3NDk3NkZBN0Q0NkMz RTQyMzJERUYwHhcNMjUwNDA1MDUzOTIyWhcNMjUwNDEyMDUzOTIyWjAYMRYwFAYD VQQDEw02N2YwYzIwYS1kMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPVAkAcPzoPCYlGpiCfVzaZ3/XptcQF31NCGyG7DznjApRRW6ZR+59R59Mzk uKu/JEW+U11ZdogXemS5pPlo80sM0+LcGcoes7yiuCD7G55fG14qtk9pm7jJ1AxL ayOwhqd7OHQgQlPZBWn4m2zm5EbNHSHTV6xNqMNuasM06v5PrBz2+RsFC0ygAX8D BESlrV95xGBoV8e/6yXowOj95jorwicHCcjUgw/zNx/bXsn/advGW9L6CRo96MOL wa/elR4aQz6sQODRLLKpANLcIOb7DM5IS/RQsL4c0kKBW0eB6m89ORFFa9dQEKR1 CgB5n1yttdGclSwFzo7fp2TXnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm7pKTB nmu4eDKhQX8ELNZebRd8MB8GA1UdIwQYMBaAFOzi4BYBYbb3f8dJdvp9RsPkIy3v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REI3Mi83RDk5QUNBQzMx RjQxMUVGQUU5MUEwMENDNEY5QUUwMi83T0xnRmdGaHR2ZF94MGwyLW4xR3ctUWpM ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdPTGdGZ0ZodHZkX3gwbDItbjFHdy1RakxlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REI3Mi83RDk5QUNBQzMxRjQxMUVGQUU5MUEwMENDNEY5QUUwMi83T0xnRmdGaHR2 ZF94MGwyLW4xR3ctUWpMZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBat4A0/LrtKf1jPKJy+3C5fU4MJ82zoEHbyGmPJ9b7Po8+TgV+RCzb 0R9rw70GA3LCwCZ1zIyUgnTA64djptXrLs7anQdTNQLY20gdAzJeGdju2SJ4BrZ/ F8zqWkjphJY/1rsqF/xgK9yI30Y5O3rf6ZOxx4Nli+EuTMwfd/3E0mYNIS6YqcpY EOl+ROt6Jduhc83++0gy5HwUd6xJ9V89VoS+pdyN6Wv3NUh/x1RY59rCQ5X6HrX7 zxcShUvTJOgbgiVDdcUQR/0lIgdIF13FV+tDu4DqlhtuqhuGU+eObGRSDaoCzAlD uOeTNaondqurrnWq0zjsrbXhy9Eucont -----END CERTIFICATE-----Generated at Sun Apr 6 17:58:34 2025 by rpki-client