$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: aq8lvhAgJbEn5p/9Ps8NgQ5DdXf75gwL+RzPqhxdO3U= Subject key identifier: AA:70:F4:F6:23:82:67:99:74:C5:6F:37:5B:E4:60:F6:99:34:7D:C3 Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: 3E Signing time: Thu 03 Apr 2025 06:46:00 +0000 Manifest this update: Thu 03 Apr 2025 06:46:00 +0000 Manifest next update: Thu 10 Apr 2025 06:46:00 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: 5TVKoFZub4nGdVjF/XE++Mrj2N55W0lQLDu3eeiAMp4=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: QjVymMQkhSRXc5iAPDed7b6jCqBrI7id3/8XlN7uo+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0 Validity Not Before: Apr 3 06:46:00 2025 GMT Not After : Apr 10 06:46:00 2025 GMT Subject: CN=67ee2ea8-27bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c1:5a:b0:63:29:09:5d:df:5f:81:38:04:4e: 03:86:b5:6f:f0:84:77:4a:7f:86:45:30:fe:b2:28: 6e:a1:33:f4:9e:9a:17:0e:5e:43:47:da:3b:35:be: b9:18:27:5c:df:64:47:2f:1d:ba:80:7e:f9:4f:39: 48:9b:ea:81:6b:2a:bf:a0:f5:9c:4f:42:59:13:dc: 63:a8:15:6a:29:db:8c:70:46:48:11:f9:33:d1:a2: 9e:bb:18:7f:5a:52:2b:84:74:d4:6d:36:14:9c:3a: be:7a:59:a3:7e:8d:0d:55:00:04:c1:0a:2c:fa:e5: 12:b0:ce:52:27:e9:77:de:27:bc:c3:cd:c7:17:7f: 9a:68:d2:35:b5:11:53:f4:38:1e:6d:8a:86:94:cd: 36:33:b5:da:1b:cb:35:3e:a4:e9:67:a8:b9:3f:ea: 11:89:9a:03:a6:4e:3c:9f:5b:1a:93:13:aa:71:34: 08:d0:a7:1c:7a:0c:21:64:ce:8a:1b:58:ef:70:de: 3d:d8:35:2d:cd:0b:16:ab:a5:56:32:8d:66:e0:04: ae:5b:02:13:15:6f:fe:c9:46:27:bb:22:f4:9d:24: 5f:97:cd:cc:20:8f:ca:f5:74:98:e1:f9:af:75:84: 27:5d:bf:6b:4b:e9:40:c3:4d:15:7c:fd:06:e6:ec: d3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:70:F4:F6:23:82:67:99:74:C5:6F:37:5B:E4:60:F6:99:34:7D:C3 X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a0:e8:cb:97:45:83:10:02:f9:69:3a:eb:7a:80:af:57:17: 4d:fb:b0:24:ec:be:8d:3c:e4:7c:21:54:04:95:d9:e2:ed:5c: cd:ec:8c:7b:5c:b1:2a:f7:21:ce:b0:f4:1f:08:e3:80:19:c3: 73:10:f3:53:a5:88:42:95:1e:b6:1d:2d:a4:76:00:36:31:f0: 00:4c:88:b6:69:e1:a2:f2:90:d6:ab:8d:bf:7a:4a:f2:dd:f8: 1c:14:d5:30:61:29:ea:41:67:97:5b:a4:22:a4:24:4b:d0:15: 42:69:dc:db:7e:74:b5:d2:1b:24:00:5d:d6:b3:0c:9b:b9:42: da:6b:8e:ce:68:e9:f8:35:5d:9f:48:7d:ad:cb:80:ce:18:29: 9f:7b:97:7e:49:10:9b:92:74:9a:89:d2:41:a7:21:dc:99:f3: 6f:39:4e:7b:73:c4:00:45:d8:d4:90:cc:e4:54:c4:95:24:16: ae:e6:69:ee:85:cb:34:c5:e8:45:8a:55:c1:46:4d:29:47:38: fd:26:3e:2c:fe:ab:d3:f9:bc:d1:41:1f:8f:d0:4b:0c:3c:24: 91:23:70:c6:b7:0b:f1:f6:c3:d7:47:0a:cf:0b:4f:ce:33:64: e0:49:87:e1:c7:f6:1b:d2:fd:f5:d7:57:7b:dc:7e:d9:c6:33: 88:98:1d:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTBDMDExMC8GA1UEBRMoQTI2NjE2N0EwNEZBRkVFNUFFMUE1MEUwNDU3MEFENUZE NDRFRDY5MjAeFw0yNTA0MDMwNjQ2MDBaFw0yNTA0MTAwNjQ2MDBaMBgxFjAUBgNV BAMTDTY3ZWUyZWE4LTI3YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpwVqwYykJXd9fgTgETgOGtW/whHdKf4ZFMP6yKG6hM/SemhcOXkNH2js1vrkY J1zfZEcvHbqAfvlPOUib6oFrKr+g9ZxPQlkT3GOoFWop24xwRkgR+TPRop67GH9a UiuEdNRtNhScOr56WaN+jQ1VAATBCiz65RKwzlIn6XfeJ7zDzccXf5po0jW1EVP0 OB5tioaUzTYztdobyzU+pOlnqLk/6hGJmgOmTjyfWxqTE6pxNAjQpxx6DCFkzoob WO9w3j3YNS3NCxarpVYyjWbgBK5bAhMVb/7JRie7IvSdJF+Xzcwgj8r1dJjh+a91 hCddv2tL6UDDTRV8/Qbm7NPlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqnD09iOC Z5l0xW83W+Rg9pk0fcMwHwYDVR0jBBgwFoAUomYWegT6/uWuGlDgRXCtX9RO1pIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMEMwLzRBMkVEQzgwQjVF QzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb21ZV2VnVDZfdVd1R2xEZ1JYQ3RYOVJPMXBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MEMwLzRBMkVEQzgwQjVFQzExRUZCMDJFQzEwQUM0RjlBRTAyL29tWVdlZ1Q2X3VX dUdsRGdSWEN0WDlSTzFwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFeg6MuXRYMQAvlpOut6gK9XF037sCTsvo085HwhVASV2eLtXM3sjHtc sSr3Ic6w9B8I44AZw3MQ81OliEKVHrYdLaR2ADYx8ABMiLZp4aLykNarjb96SvLd +BwU1TBhKepBZ5dbpCKkJEvQFUJp3Nt+dLXSGyQAXdazDJu5Qtprjs5o6fg1XZ9I fa3LgM4YKZ97l35JEJuSdJqJ0kGnIdyZ8285TntzxABF2NSQzORUxJUkFq7mae6F yzTF6EWKVcFGTSlHOP0mPiz+q9P5vNFBH4/QSww8JJEjcMa3C/H2w9dHCs8LT84z ZOBJh+HH9hvS/fXXV3vcftnGM4iYHSc= -----END CERTIFICATE-----Generated at Fri Apr 4 21:45:43 2025 by rpki-client