$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft File: OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json) Hash identifier: 9WJrsQx5VoEKGb1J8RNQaNa3eqaOlUEIhLe+IUJobds= Subject key identifier: 21:55:50:52:EF:69:38:EA:4A:9C:0F:8F:B5:AF:C9:EF:13:A1:FA:0B Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft Manifest number: 2D Signing time: Sat 31 May 2025 07:17:08 +0000 Manifest this update: Sat 31 May 2025 07:17:08 +0000 Manifest next update: Sat 07 Jun 2025 07:17:08 +0000 Files and hashes: 1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: Ke3ZXrvyousc1FTwVaqjetHiI/Fho5eYBuAPVYnhD+8=) 2: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg=) 3: 53E9C44CFB2E11EFB488A95EC4F9AE02.roa (hash: hzaK0MTBJLVrmr0hWnuGmH3SdcFclIxCzlQUZOQabQ8=) 4: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (hash: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM=) 5: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: May 31 07:17:08 2025 GMT Not After : Jun 7 07:17:08 2025 GMT Subject: CN=683aacf4-7370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:59:51:92:45:ad:ee:e1:ce:f4:4b:69:c7:d8: a9:f1:82:03:8e:ca:c6:13:7e:a2:4c:f7:82:0f:66: 7b:b7:c4:74:07:cd:a1:83:58:d7:0f:75:32:fa:9e: 28:ea:e8:73:cb:5f:f8:a5:d6:d1:83:b2:bf:5b:79: a1:aa:f7:07:aa:1a:88:7a:78:7d:a0:d3:b6:59:02: 07:05:b9:67:39:b7:55:22:d4:61:cd:fb:8e:ee:a3: ba:5b:0a:3f:44:c1:29:03:a1:77:f6:bc:b3:04:52: ef:71:9b:12:48:e9:5e:38:89:4c:0d:c8:11:c5:79: 71:d2:67:36:40:c2:75:e6:1a:52:33:0c:0e:0b:6e: 6d:e8:4b:13:36:d4:42:b0:f4:83:d3:68:e0:35:a0: 59:ef:20:80:b7:1c:e6:14:d9:9a:e9:d5:2c:fd:ee: 86:b0:52:86:bf:04:bc:8d:29:9c:00:fb:8e:34:ab: 56:a9:d7:8e:b7:7b:8d:a5:e4:03:3d:a5:c8:fb:36: 6a:ac:82:38:fb:7c:82:1c:9b:69:2f:1f:27:59:07: cf:59:cd:ba:0e:21:14:95:a3:29:0d:2c:e5:3f:58: a3:9a:2a:01:50:4a:b5:6b:dd:a6:72:79:20:e6:f5: 54:fc:46:0d:fd:99:b6:51:0a:58:2c:bc:d0:1a:50: 2b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:55:50:52:EF:69:38:EA:4A:9C:0F:8F:B5:AF:C9:EF:13:A1:FA:0B X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0c:05:75:3b:39:c3:dc:ff:53:14:9e:a2:d4:ae:43:55:c6: f7:ee:86:a8:6f:3e:a1:da:4f:8a:52:62:93:f6:7c:39:05:42: bd:9a:35:10:2d:cb:d9:91:24:3b:17:89:0f:9b:c5:be:87:f1: 60:ee:ea:20:31:9e:8c:14:d0:b9:c7:6a:be:9d:f1:18:ed:60: 99:3e:33:c5:c8:ae:b9:da:3d:26:75:95:a7:35:b9:2c:4d:ab: 2b:f9:d9:98:46:f0:fb:32:33:ca:eb:c1:9d:fc:d2:7b:6e:45: 30:71:bc:ef:02:9f:30:32:04:1c:eb:d0:7a:be:87:52:7a:2d: 88:e5:6e:3e:ab:3d:4f:04:e3:6c:04:dc:a9:62:77:8e:f3:c3: 3c:e2:19:75:a9:75:e4:67:bd:de:a2:30:2c:3c:96:ae:14:68: 81:77:99:58:2c:45:cf:2d:eb:32:01:03:cd:77:db:11:f5:40: 5d:a7:33:20:f0:67:9c:9f:d4:3b:78:70:61:e3:21:87:21:fe: 76:c2:93:ec:74:44:17:e9:2c:70:a5:fe:04:18:59:bc:cb:06: 16:9a:71:5d:f4:70:51:cc:ef:76:18:cc:e2:51:57:1f:b3:8b: a8:37:53:06:9a:29:19:58:19:47:2c:7a:d9:f2:ce:9a:09:d9: a5:7a:bb:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTA1MzEwNzE3MDhaFw0yNTA2MDcwNzE3MDhaMBgxFjAUBgNV BAMTDTY4M2FhY2Y0LTczNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3WVGSRa3u4c70S2nH2KnxggOOysYTfqJM94IPZnu3xHQHzaGDWNcPdTL6nijq 6HPLX/il1tGDsr9beaGq9weqGoh6eH2g07ZZAgcFuWc5t1Ui1GHN+47uo7pbCj9E wSkDoXf2vLMEUu9xmxJI6V44iUwNyBHFeXHSZzZAwnXmGlIzDA4Lbm3oSxM21EKw 9IPTaOA1oFnvIIC3HOYU2Zrp1Sz97oawUoa/BLyNKZwA+440q1ap1463e42l5AM9 pcj7Nmqsgjj7fIIcm2kvHydZB89ZzboOIRSVoykNLOU/WKOaKgFQSrVr3aZyeSDm 9VT8Rg39mbZRClgsvNAaUCvPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIVVQUu9p OOpKnA+Pta/J7xOh+gswHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NTAyLzg3QzNGRDBBRkIyOTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJr RlI0b3p6dkozbVNWS2FSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH0MBXU7OcPc/1MUnqLUrkNVxvfuhqhvPqHaT4pSYpP2fDkFQr2aNRAt y9mRJDsXiQ+bxb6H8WDu6iAxnowU0LnHar6d8RjtYJk+M8XIrrnaPSZ1lac1uSxN qyv52ZhG8PsyM8rrwZ380ntuRTBxvO8CnzAyBBzr0Hq+h1J6LYjlbj6rPU8E42wE 3Klid47zwzziGXWpdeRnvd6iMCw8lq4UaIF3mVgsRc8t6zIBA8132xH1QF2nMyDw Z5yf1Dt4cGHjIYch/nbCk+x0RBfpLHCl/gQYWbzLBhaacV30cFHM73YYzOJRVx+z i6g3UwaaKRlYGUcsetnyzpoJ2aV6u28= -----END CERTIFICATE-----Generated at Sat May 31 15:01:20 2025 by rpki-client