$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 22wEYbx4hWtqMrtaft3ouG9Ngwab35VhqYXNsAbGY1g= Subject key identifier: F1:63:B4:BE:15:28:07:C5:27:3A:68:EA:36:43:07:24:47:84:1F:A7 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 3039 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 300B Signing time: Fri 04 Apr 2025 15:31:08 +0000 Manifest this update: Fri 04 Apr 2025 15:31:07 +0000 Manifest next update: Fri 11 Apr 2025 15:31:07 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: P7GCDFjXLRf92HgQ9+fp0RHxeE6Izux4TivUS8HmvB8=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12345 (0x3039) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD Validity Not Before: Apr 4 15:31:07 2025 GMT Not After : Apr 11 15:31:07 2025 GMT Subject: CN=67effb3b-5e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:b3:2a:72:fe:d7:0c:e2:bb:5a:f3:e5:4b: ad:19:1b:1d:c3:d4:49:4e:c3:ec:ef:5d:1b:7a:b9: 96:8b:4c:f5:d1:60:d0:15:8d:a6:0d:f6:f5:c9:c7: f6:8e:91:36:dc:e8:c0:66:7c:7c:7f:58:9f:51:ab: 17:99:af:56:fb:88:79:4a:04:48:48:9c:c9:02:3b: a4:0f:42:a4:83:43:9c:33:50:65:62:d7:55:93:46: 26:17:8e:76:a7:eb:b6:65:c9:10:9a:47:24:bb:1c: 6a:34:7e:16:39:e3:e0:8f:8c:c1:2d:4a:c4:d1:37: 7a:8c:ad:82:09:6f:dc:2a:41:e2:46:96:e7:b5:b5: 36:1d:2a:fe:f9:b7:bd:f4:ea:23:ba:cb:f7:8f:da: 7c:2a:a3:aa:de:9b:4f:b8:1a:2e:04:66:d3:21:56: 5c:fb:57:7c:d0:1a:44:ea:49:11:7b:48:03:49:f1: 56:41:79:57:5a:7f:f2:83:20:bc:25:8f:45:78:e7: bd:47:09:d4:38:34:8c:47:3e:a8:81:02:eb:63:84: 92:da:8b:21:7d:a9:e9:19:05:0a:88:fe:62:24:ef: 57:49:86:f7:7d:0b:98:c3:54:ad:b9:6c:98:45:ab: 75:a2:df:e4:c7:22:3f:f9:ef:d2:fd:0f:a3:da:28: 72:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:63:B4:BE:15:28:07:C5:27:3A:68:EA:36:43:07:24:47:84:1F:A7 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e7:70:bc:c3:87:4c:51:76:59:66:ea:71:a1:41:03:b6:d0: 5e:d5:5b:de:b5:e2:01:8c:4b:44:2c:8c:f4:67:fa:51:b0:18: ee:76:95:45:d8:df:a5:b4:ac:fe:6b:96:3d:f9:2f:85:a1:56: f8:02:ca:24:07:6f:83:12:8e:d7:a5:c9:0e:c7:f9:2f:1c:53: fc:ce:aa:a1:88:e8:97:c2:38:7d:65:99:5c:3d:8f:ed:e0:a3: c1:e1:b0:d1:98:8b:36:d9:23:19:ef:94:a1:99:db:96:5d:02: b8:7c:50:16:a3:0e:3f:a1:20:a8:43:56:45:67:40:12:bf:4b: 1c:d2:d8:3f:4e:28:98:05:c3:65:55:fd:86:c3:62:5f:b6:91: 13:90:c1:4c:fc:3b:06:1c:c6:4c:98:84:2d:10:17:99:f8:6d: 40:8b:09:25:04:73:ad:ea:f3:f7:a5:07:ce:ff:ad:88:ef:c0: b1:da:e5:da:51:f2:b3:71:11:ce:d7:6f:56:06:a7:2c:4b:a3: 7a:be:50:6f:5c:15:ff:e9:3b:5a:27:86:05:d3:c7:b0:93:51: 39:82:7a:f0:dc:c5:53:6d:36:be:9e:3f:b9:ce:7e:56:36:0b: 7a:98:64:64:94:a4:c9:aa:fc:f7:14:40:82:f7:34:31:1e:a3: eb:39:a1:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwNDA0MTUzMTA3WhcNMjUwNDExMTUzMTA3WjAYMRYwFAYD VQQDEw02N2VmZmIzYi01ZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9SzKnL+1wziu1rz5UutGRsdw9RJTsPs710bermWi0z10WDQFY2mDfb1ycf2 jpE23OjAZnx8f1ifUasXma9W+4h5SgRISJzJAjukD0Kkg0OcM1BlYtdVk0YmF452 p+u2ZckQmkckuxxqNH4WOePgj4zBLUrE0Td6jK2CCW/cKkHiRpbntbU2HSr++be9 9Oojusv3j9p8KqOq3ptPuBouBGbTIVZc+1d80BpE6kkRe0gDSfFWQXlXWn/ygyC8 JY9FeOe9RwnUODSMRz6ogQLrY4SS2oshfanpGQUKiP5iJO9XSYb3fQuYw1StuWyY Rat1ot/kxyI/+e/S/Q+j2ihycQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFjtL4V KAfFJzpo6jZDByRHhB+nMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy53C8w4dMUXZZZupxoUEDttBe1VveteIBjEtELIz0Z/pRsBjudpVF 2N+ltKz+a5Y9+S+FoVb4AsokB2+DEo7XpckOx/kvHFP8zqqhiOiXwjh9ZZlcPY/t 4KPB4bDRmIs22SMZ75ShmduWXQK4fFAWow4/oSCoQ1ZFZ0ASv0sc0tg/TiiYBcNl Vf2Gw2JftpETkMFM/DsGHMZMmIQtEBeZ+G1AiwklBHOt6vP3pQfO/62I78Cx2uXa UfKzcRHO129WBqcsS6N6vlBvXBX/6TtaJ4YF08ewk1E5gnrw3MVTbTa+nj+5zn5W Ngt6mGRklKTJqvz3FECC9zQxHqPrOaFB -----END CERTIFICATE-----Generated at Fri Apr 4 22:14:57 2025 by rpki-client