$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: G4p9Zp2dcQ9jINRw1A/QGjMuHnBVDKWUM8xZJyQuCSg= Subject key identifier: CC:5A:5B:A3:4A:86:6A:FD:E9:CC:6C:87:C8:5C:70:2A:C9:5D:E6:6D Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: FC Signing time: Wed 09 Apr 2025 04:04:00 +0000 Manifest this update: Wed 09 Apr 2025 04:04:00 +0000 Manifest next update: Wed 16 Apr 2025 04:04:00 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: Aopcom427Q/ADdcaY/WOAnB57cEP7A22913g98kZ+3I=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: OB7rtGPc0fkmD0lX/j5TtVMfzbTV8gxLM92j8j+P3vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7 Validity Not Before: Apr 9 04:04:00 2025 GMT Not After : Apr 16 04:04:00 2025 GMT Subject: CN=67f5f1b0-9a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7e:76:cf:09:8d:cb:1b:7f:39:fc:e9:3e:bc: 6a:f2:cf:8a:7c:2a:c7:9e:a6:4d:f6:e9:6b:46:5f: 32:50:ef:bf:70:de:be:90:67:b2:b6:5d:ef:c1:94: 9c:d2:4b:29:a3:22:52:28:8c:fb:c0:b6:ee:c5:57: ad:28:b3:5c:f0:09:be:0b:96:d8:45:28:e4:8a:c3: 76:e6:2a:d1:2a:b8:c1:81:ef:e8:7d:63:2a:e0:04: 29:12:4b:6f:79:54:34:f0:bb:91:15:8b:5c:4e:08: 20:93:60:7f:8c:a2:c9:2a:8a:0f:f7:4a:7b:8c:f4: 93:9a:d5:90:f7:7b:a7:8c:9f:b6:61:f6:40:72:e3: 99:0c:96:29:b8:34:9e:28:65:4b:2a:fc:52:0f:c2: 55:20:39:b6:c1:f0:96:27:04:b5:f1:93:30:27:d8: b0:74:f2:4a:20:1f:25:89:d7:c4:68:8a:43:58:ff: 36:d6:33:38:7e:7d:94:99:4d:48:10:e9:8c:ee:c8: 47:a0:c4:d8:71:35:f3:05:d3:cf:0a:ad:e7:8b:08: ab:c8:5c:bd:e9:f9:09:28:67:5e:1f:93:75:cd:48: f2:9f:54:70:bd:bf:90:91:65:b2:58:b6:ad:7f:d8: 24:18:72:af:25:25:e6:0b:3a:71:2f:24:d9:85:83: 17:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5A:5B:A3:4A:86:6A:FD:E9:CC:6C:87:C8:5C:70:2A:C9:5D:E6:6D X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d3:e5:fe:11:23:59:f3:c4:9f:29:4d:89:53:81:60:50:fc: 3a:36:b0:81:b3:68:36:4c:ca:25:f3:8d:49:7f:a6:81:69:66: 5a:43:c9:17:a6:b2:0e:ae:4f:b4:8c:f7:eb:15:e0:ab:ee:2d: 77:d5:75:16:da:5c:ab:d5:d2:7b:f2:41:a9:f2:5b:8f:bf:fa: 4c:8d:f1:ad:66:34:3c:42:bb:2c:cd:42:11:0a:d8:a9:67:6c: da:2a:52:f4:50:af:cb:46:e4:19:4c:f6:27:f2:73:66:2c:47: e8:81:25:97:a1:6e:d6:cd:b0:7d:1c:0a:89:12:29:6f:9b:fb: e7:89:7d:9e:1c:1b:27:c1:93:1a:81:0f:c1:bd:e0:62:89:cb: 5c:14:98:bd:96:ef:6c:d9:c8:6d:77:71:90:cc:ed:b4:2c:4b: 38:8e:32:54:66:27:e6:0f:61:cb:77:0c:77:bb:0d:ba:7b:96: 5b:85:76:04:18:66:73:c0:00:58:60:78:42:76:e0:ee:60:05: 73:63:bd:ab:e7:a2:77:4f:16:c9:24:6d:13:67:5a:d7:44:75: ef:25:bd:ec:21:cd:b5:28:b2:31:93:d2:84:19:5f:37:20:32: 79:a3:0f:96:7b:27:d0:28:96:aa:03:f6:9f:c5:fd:92:f0:5a: 07:2b:d9:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNDA5MDQwNDAwWhcNMjUwNDE2MDQwNDAwWjAYMRYwFAYD VQQDEw02N2Y1ZjFiMC05YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6X52zwmNyxt/OfzpPrxq8s+KfCrHnqZN9ulrRl8yUO+/cN6+kGeytl3vwZSc 0kspoyJSKIz7wLbuxVetKLNc8Am+C5bYRSjkisN25irRKrjBge/ofWMq4AQpEktv eVQ08LuRFYtcTgggk2B/jKLJKooP90p7jPSTmtWQ93unjJ+2YfZAcuOZDJYpuDSe KGVLKvxSD8JVIDm2wfCWJwS18ZMwJ9iwdPJKIB8lidfEaIpDWP821jM4fn2UmU1I EOmM7shHoMTYcTXzBdPPCq3niwiryFy96fkJKGdeH5N1zUjyn1Rwvb+QkWWyWLat f9gkGHKvJSXmCzpxLyTZhYMXvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxaW6NK hmr96cxsh8hccCrJXeZtMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt0+X+ESNZ88SfKU2JU4FgUPw6NrCBs2g2TMol841Jf6aBaWZaQ8kX prIOrk+0jPfrFeCr7i131XUW2lyr1dJ78kGp8luPv/pMjfGtZjQ8QrsszUIRCtip Z2zaKlL0UK/LRuQZTPYn8nNmLEfogSWXoW7WzbB9HAqJEilvm/vniX2eHBsnwZMa gQ/BveBiictcFJi9lu9s2chtd3GQzO20LEs4jjJUZifmD2HLdwx3uw26e5ZbhXYE GGZzwABYYHhCduDuYAVzY72r56J3TxbJJG0TZ1rXRHXvJb3sIc21KLIxk9KEGV83 IDJ5ow+WeyfQKJaqA/afxf2S8FoHK9nN -----END CERTIFICATE-----Generated at Fri Apr 11 00:01:59 2025 by rpki-client