$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: Qy9e9lpeeT7sr+/tb94BcvINKsY7wsFDAjorj0kEIEI= Subject key identifier: 2C:08:A4:95:9C:77:97:09:91:17:03:97:2A:F4:0C:0B:F4:17:99:DB Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0100 Signing time: Fri 11 Apr 2025 04:25:50 +0000 Manifest this update: Fri 11 Apr 2025 04:25:49 +0000 Manifest next update: Fri 18 Apr 2025 04:25:49 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: Q7I+OXl0MdIupICl1b665BlIT9Wtsi29BX8dqqVQxsk=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Apr 11 04:25:49 2025 GMT Not After : Apr 18 04:25:49 2025 GMT Subject: CN=67f899ce-688e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f2:7a:7d:5a:c8:43:0c:11:11:53:07:bd:fe: e9:e4:a7:fe:77:90:38:05:ca:66:c5:d8:a9:0e:2f: d1:c6:65:ee:16:7c:08:d9:1c:7a:ab:ba:22:6d:9e: b1:a7:60:0c:42:1e:48:f2:46:8d:ef:40:02:46:16: 8e:ba:99:6e:88:ee:43:6a:08:68:42:aa:73:ab:73: 14:58:83:c7:93:d3:f8:4a:e7:f7:72:a7:0e:b0:45: 35:86:ad:e7:8e:b3:88:ab:c4:2f:a6:e4:b2:83:e6: 39:4d:66:29:38:4d:f9:5f:ea:fc:b2:cf:58:48:1e: 0d:22:04:d1:1d:53:02:36:89:9d:ae:bd:fe:e1:71: b8:08:b4:7b:0f:18:12:b5:e7:b0:d2:61:22:7c:1b: 9b:94:4a:45:76:d4:3d:56:ad:8b:d2:e4:32:28:68: b9:a9:ad:e9:61:c0:dc:a4:11:7b:77:19:d3:0c:7f: 68:33:e9:0f:ed:b5:28:20:c1:a6:c5:5e:71:6b:e9: 0c:4a:55:dc:c6:16:b1:16:90:9c:fc:d1:5d:e1:9f: 59:d8:35:b6:4e:ea:ab:44:08:ac:1a:ea:91:f6:12: 44:4c:7f:36:50:d1:47:b0:03:7f:4b:ff:0a:1d:91: d5:e6:ce:0a:77:78:57:73:29:5e:de:81:b0:49:08: 36:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:08:A4:95:9C:77:97:09:91:17:03:97:2A:F4:0C:0B:F4:17:99:DB X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:77:9f:f9:62:d2:39:2d:e5:63:fd:e6:8b:d8:d5:27:20:3d: 61:49:89:2e:fc:06:a4:6b:f2:36:dd:f2:19:15:4c:3e:18:98: 9e:39:c5:bd:33:a9:19:ac:b6:1e:00:ca:81:9b:66:1c:3c:80: 38:6e:95:50:eb:df:80:26:96:29:8a:e5:75:e7:8a:cd:02:b6: 95:14:54:43:f3:24:5c:94:bf:1a:46:a5:a5:c1:c2:b6:95:99: 76:c0:18:7e:d5:c2:37:22:0b:61:95:05:38:5d:34:bd:88:0b: 65:a3:74:2b:fc:bd:c6:a2:44:b2:14:5f:19:5b:0e:a0:29:c5: 7e:87:63:90:6a:8a:b1:35:57:31:fc:62:3e:86:d9:39:38:2a: 0d:2d:8f:99:87:53:7b:2a:35:31:55:35:25:3d:5e:0c:45:18: a7:d4:65:d0:4c:68:8f:3e:35:94:12:32:5f:cd:4b:32:ac:e5: 15:26:da:8a:27:c3:63:d3:e3:dd:a4:d4:ca:85:19:62:bd:00: cf:fe:67:31:7a:92:60:ae:e2:87:cb:9a:6b:17:7f:81:41:b9: 73:7c:0d:97:64:23:2d:49:7c:58:a5:ea:a8:69:04:3d:ad:95: 24:e4:ed:6a:8a:19:54:dd:83:96:c4:7e:84:d6:21:14:fc:f2: 35:41:b7:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNDExMDQyNTQ5WhcNMjUwNDE4MDQyNTQ5WjAYMRYwFAYD VQQDEw02N2Y4OTljZS02ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PJ6fVrIQwwREVMHvf7p5Kf+d5A4BcpmxdipDi/RxmXuFnwI2Rx6q7oibZ6x p2AMQh5I8kaN70ACRhaOupluiO5DaghoQqpzq3MUWIPHk9P4Suf3cqcOsEU1hq3n jrOIq8QvpuSyg+Y5TWYpOE35X+r8ss9YSB4NIgTRHVMCNomdrr3+4XG4CLR7DxgS teew0mEifBublEpFdtQ9Vq2L0uQyKGi5qa3pYcDcpBF7dxnTDH9oM+kP7bUoIMGm xV5xa+kMSlXcxhaxFpCc/NFd4Z9Z2DW2TuqrRAisGuqR9hJETH82UNFHsAN/S/8K HZHV5s4Kd3hXcyle3oGwSQg2rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwIpJWc d5cJkRcDlyr0DAv0F5nbMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGd5/5YtI5LeVj/eaL2NUnID1hSYku/Aaka/I23fIZFUw+GJieOcW9 M6kZrLYeAMqBm2YcPIA4bpVQ69+AJpYpiuV154rNAraVFFRD8yRclL8aRqWlwcK2 lZl2wBh+1cI3IgthlQU4XTS9iAtlo3Qr/L3GokSyFF8ZWw6gKcV+h2OQaoqxNVcx /GI+htk5OCoNLY+Zh1N7KjUxVTUlPV4MRRin1GXQTGiPPjWUEjJfzUsyrOUVJtqK J8Nj0+PdpNTKhRlivQDP/mcxepJgruKHy5prF3+BQblzfA2XZCMtSXxYpeqoaQQ9 rZUk5O1qihlU3YOWxH6E1iEU/PI1Qbc9 -----END CERTIFICATE-----Generated at Sun Apr 13 04:20:14 2025 by rpki-client