$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: OU8tetGWg0oo/zkvlYS/E07UCWxGfGVmdzXKpDZADLY= Subject key identifier: 48:58:B2:93:59:D2:2B:1B:CF:5B:73:90:88:18:4D:EF:88:8E:27:6C Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0114 Signing time: Thu 03 Apr 2025 04:06:53 +0000 Manifest this update: Thu 03 Apr 2025 04:06:53 +0000 Manifest next update: Thu 10 Apr 2025 04:06:53 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: fZ4BJHiuf5uEc9is4xuFIlV2Kl4FvKb/Mov54Xmj9CA=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B Validity Not Before: Apr 3 04:06:53 2025 GMT Not After : Apr 10 04:06:53 2025 GMT Subject: CN=67ee095d-e12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fe:8d:6d:83:ca:c0:bf:63:6b:0e:4d:74:c5: bb:2b:b2:14:7b:b8:24:aa:c2:2e:73:3d:7a:64:63: 6e:f2:39:6c:de:bf:1b:16:4c:2a:96:d7:4e:33:ed: b7:59:ac:6a:15:03:0b:f7:05:88:f4:c7:72:9a:67: fc:cb:0e:8e:4b:57:38:7e:25:36:a7:a1:8b:3a:e1: c2:28:ec:c7:0c:26:c7:30:6b:c0:46:79:a7:58:d8: 41:7b:25:00:4f:b6:e0:4f:b0:85:48:d7:65:64:6b: 16:32:c8:76:39:a7:78:83:1a:ae:b3:d8:d3:57:26: 91:97:84:01:d0:35:89:60:ff:13:b3:d3:5b:95:83: 01:1a:f2:58:da:ca:4d:f2:08:52:c2:c6:10:63:b5: 7b:ad:ed:c0:7d:9f:0d:ef:1c:1d:4a:86:48:27:3e: 15:ba:95:49:a0:a5:89:e2:3e:62:1c:b9:6d:9b:5e: b8:85:80:6a:af:6f:c6:b9:5f:b9:2a:a5:46:c5:3a: e7:09:83:db:4b:ea:bf:e3:33:66:1b:68:9b:e4:75: 65:e8:62:67:29:66:99:45:bb:a8:a4:e4:58:fd:4f: d9:3d:40:1a:bf:0a:29:01:3c:99:1a:08:5a:3f:61: 67:26:70:09:2b:3f:26:ff:e0:47:54:de:ba:f1:ae: 00:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:58:B2:93:59:D2:2B:1B:CF:5B:73:90:88:18:4D:EF:88:8E:27:6C X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:49:c3:7f:5b:f3:3d:90:fc:b3:f8:26:d4:0f:8a:12:a0:59: cc:ab:7d:07:cc:8e:98:82:b8:82:78:95:2e:65:83:f3:24:78: c7:fc:34:8f:35:07:40:bc:e2:f5:b3:de:30:c1:60:90:84:de: f6:75:a6:fe:8e:7c:6c:a4:48:14:67:8e:7d:ea:b1:5a:c1:8b: 97:0b:e0:7a:f6:e0:03:37:c7:b2:61:a8:ac:4e:03:bc:79:45: 45:e7:84:53:d6:1e:25:21:26:31:9e:96:e0:a7:58:ca:9a:e2: ff:0e:f5:3a:d8:5d:29:10:40:77:36:79:9d:51:6e:cd:3a:3a: cf:28:2e:3f:df:19:4c:d7:e4:5b:fb:89:25:89:08:18:4a:24: 93:9f:de:9f:a5:36:f0:97:a5:cb:9b:63:96:0f:52:e0:b6:13: 2f:bf:5f:13:77:88:4b:3d:06:e7:8c:c3:39:c4:47:25:c9:f0: 3e:f5:b4:f5:f6:03:11:27:74:46:69:eb:21:b7:68:af:1c:bd: 06:78:e0:c2:32:e7:7f:a7:fa:2c:d4:50:1f:c9:59:12:78:70: 5c:bb:7d:6b:0f:e4:e4:16:58:93:41:75:e8:de:13:5a:3e:a5: 8f:ba:bd:5b:7f:6c:c9:62:e5:43:70:cc:09:a7:f8:ba:a2:90: 35:4f:f5:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwNDAzMDQwNjUzWhcNMjUwNDEwMDQwNjUzWjAYMRYwFAYD VQQDEw02N2VlMDk1ZC1lMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/6NbYPKwL9jaw5NdMW7K7IUe7gkqsIucz16ZGNu8jls3r8bFkwqltdOM+23 WaxqFQML9wWI9Mdymmf8yw6OS1c4fiU2p6GLOuHCKOzHDCbHMGvARnmnWNhBeyUA T7bgT7CFSNdlZGsWMsh2Oad4gxqus9jTVyaRl4QB0DWJYP8Ts9NblYMBGvJY2spN 8ghSwsYQY7V7re3AfZ8N7xwdSoZIJz4VupVJoKWJ4j5iHLltm164hYBqr2/GuV+5 KqVGxTrnCYPbS+q/4zNmG2ib5HVl6GJnKWaZRbuopORY/U/ZPUAavwopATyZGgha P2FnJnAJKz8m/+BHVN668a4ADwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhYspNZ 0isbz1tzkIgYTe+IjidsMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcScN/W/M9kPyz+CbUD4oSoFnMq30HzI6YgriCeJUuZYPzJHjH/DSP NQdAvOL1s94wwWCQhN72dab+jnxspEgUZ4596rFawYuXC+B69uADN8eyYaisTgO8 eUVF54RT1h4lISYxnpbgp1jKmuL/DvU62F0pEEB3NnmdUW7NOjrPKC4/3xlM1+Rb +4kliQgYSiSTn96fpTbwl6XLm2OWD1LgthMvv18Td4hLPQbnjMM5xEclyfA+9bT1 9gMRJ3RGaesht2ivHL0GeODCMud/p/os1FAfyVkSeHBcu31rD+TkFliTQXXo3hNa PqWPur1bf2zJYuVDcMwJp/i6opA1T/Wd -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:09 2025 by rpki-client