$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: 03XkL/9YzHR26aYF8nAxPZmYfTc0X6VQhOgEulOHs4o= Subject key identifier: 50:DA:8D:3F:6C:B1:8B:85:F0:30:93:93:DA:75:DF:9A:28:40:B8:4C Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 01C8 Signing time: Sat 29 Mar 2025 02:31:16 +0000 Manifest this update: Sat 29 Mar 2025 02:31:15 +0000 Manifest next update: Sat 05 Apr 2025 02:31:15 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: yOs2vWluVwHJkHkA/+EJQ7SwIxQgQOhF/L4RPfsUqk0=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4 Validity Not Before: Mar 29 02:31:15 2025 GMT Not After : Apr 5 02:31:15 2025 GMT Subject: CN=67e75b74-1771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:97:0b:9e:35:2b:ed:77:94:2f:52:4d:14: ec:65:3e:78:50:4b:f8:b4:b9:04:46:64:14:62:1a: 65:77:e0:5d:57:01:23:19:6d:6f:42:5d:62:6f:58: 1d:4b:d5:5b:be:be:08:f1:ac:b8:01:77:a6:a1:ab: 87:7f:5f:3e:1a:db:1e:59:f7:90:3d:fe:dd:5a:5a: e3:48:f2:4d:f8:81:08:a6:a5:5d:b8:ad:ad:80:53: 64:19:bd:7d:a8:c4:5c:8d:ba:6f:d7:ba:35:35:f1: f7:90:4b:24:52:77:f4:df:52:63:3f:9d:c5:7e:09: 31:76:3b:e0:2f:a9:5c:b5:46:50:ae:68:15:6b:ea: 59:42:9a:72:4a:3b:9e:9b:22:aa:f2:a2:ea:1a:be: 69:01:60:5b:9e:f2:13:b8:ed:ac:b6:b0:75:65:00: 56:db:2d:ec:84:2d:e0:8a:ec:07:ca:a7:b1:19:eb: 01:2f:94:31:0a:4a:2d:6c:41:75:15:53:76:02:3e: e4:c9:ee:04:1d:72:7c:1e:1d:99:52:41:07:eb:da: cd:75:c7:78:d2:a2:e3:ef:40:55:92:de:ac:4e:27: 86:67:99:67:f0:e2:3f:11:b4:a6:55:59:6c:e8:74: f9:37:a4:1a:88:1a:68:1b:83:02:85:55:0d:cd:47: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DA:8D:3F:6C:B1:8B:85:F0:30:93:93:DA:75:DF:9A:28:40:B8:4C X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:fd:fe:32:cf:cf:4b:6b:37:93:e6:84:c9:7c:e5:1e:02:c0: 84:47:5a:e8:5c:34:d2:34:4e:a4:5a:de:e5:8a:28:64:d6:bc: f1:2f:da:6e:1e:a9:50:11:bc:26:7a:4f:88:69:64:9a:4a:c2: dd:6d:65:6c:38:e6:4a:82:bc:8e:01:a5:74:a9:22:f2:fb:20: 9c:a3:ea:1a:96:a4:a3:36:25:fb:56:10:75:b3:e2:b4:fe:de: 6d:bc:13:e9:83:12:28:f7:5d:97:c9:ab:db:10:5e:cb:12:86: 29:18:d8:b1:80:c6:b4:4e:11:21:a9:5e:73:50:e3:4a:bf:12: 9f:73:8b:34:0d:9d:90:06:b6:39:43:06:44:25:53:e3:b9:a8: 73:13:4d:c5:58:7b:d8:04:17:7e:3e:38:e8:27:62:07:80:5c: 90:ba:b9:00:4e:99:df:fe:d2:58:0b:f8:b0:03:66:f9:6d:2c: 5d:39:b6:19:0a:5b:7d:10:fd:02:f8:7b:d2:3f:f1:fb:35:d6: 24:9f:8e:06:13:4d:b0:62:59:04:2e:62:cb:ed:1a:c8:b9:6b: d4:f0:97:5d:a4:a4:13:21:09:c5:3a:6d:ae:cf:4a:56:26:4c: 38:ea:fd:b6:4d:ce:79:65:61:c4:c9:1d:91:ad:90:d7:0d:34: 21:fd:57:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwMzI5MDIzMTE1WhcNMjUwNDA1MDIzMTE1WjAYMRYwFAYD VQQDEw02N2U3NWI3NC0xNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uOXC541K+13lC9STRTsZT54UEv4tLkERmQUYhpld+BdVwEjGW1vQl1ib1gd S9Vbvr4I8ay4AXemoauHf18+GtseWfeQPf7dWlrjSPJN+IEIpqVduK2tgFNkGb19 qMRcjbpv17o1NfH3kEskUnf031JjP53FfgkxdjvgL6lctUZQrmgVa+pZQppySjue myKq8qLqGr5pAWBbnvITuO2strB1ZQBW2y3shC3giuwHyqexGesBL5QxCkotbEF1 FVN2Aj7kye4EHXJ8Hh2ZUkEH69rNdcd40qLj70BVkt6sTieGZ5ln8OI/EbSmVVls 6HT5N6QaiBpoG4MChVUNzUdTQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDajT9s sYuF8DCTk9p135ooQLhMMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk/f4yz89LazeT5oTJfOUeAsCER1roXDTSNE6kWt7liihk1rzxL9pu HqlQEbwmek+IaWSaSsLdbWVsOOZKgryOAaV0qSLy+yCco+oalqSjNiX7VhB1s+K0 /t5tvBPpgxIo912XyavbEF7LEoYpGNixgMa0ThEhqV5zUONKvxKfc4s0DZ2QBrY5 QwZEJVPjuahzE03FWHvYBBd+PjjoJ2IHgFyQurkATpnf/tJYC/iwA2b5bSxdObYZ Clt9EP0C+HvSP/H7NdYkn44GE02wYlkELmLL7RrIuWvU8JddpKQTIQnFOm2uz0pW Jkw46v22Tc55ZWHEyR2RrZDXDTQh/Ve6 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:53 2025 by rpki-client