$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: e0A/QREuodvHDmERkUL5EoA+9SFMZqWkYTFPUhwf/k0= Subject key identifier: E0:90:54:B7:72:38:E0:E7:A3:27:1C:53:80:EE:E5:E0:9C:87:07:F4 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0C83 Signing time: Fri 30 May 2025 18:31:30 +0000 Manifest this update: Fri 30 May 2025 18:31:29 +0000 Manifest next update: Fri 06 Jun 2025 18:31:29 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: JrdMMxjhQmJeXa5K15kslbtvTiYIGy8yNw3raKUNtGM=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: TeIPGyGqDRDL84HA9NnAzVJOOMFf2EjmrKH/elumev8=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: lRMtWT21HxefR8cIAkbesXguaIjwdfIuBa6XccIOgBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: May 30 18:31:29 2025 GMT Not After : Jun 6 18:31:29 2025 GMT Subject: CN=6839f981-567c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:c1:a3:65:b8:4d:91:2f:6e:ac:f0:e1:f0: 9c:5e:6a:bc:68:a1:ad:c2:c4:66:a8:66:16:e2:83: b7:62:2c:94:b7:a3:36:4f:d0:fb:05:45:74:fd:97: a7:40:17:bf:5d:42:fe:fe:58:81:94:0f:0a:2b:9d: 21:11:90:9a:5a:28:59:ee:84:7f:46:9b:4e:dc:4a: bf:f4:e6:e0:0b:6d:85:68:7c:48:96:9f:ed:c8:6b: bc:01:18:5f:c5:91:f5:77:a1:77:c4:2e:82:49:73: c9:19:c4:5a:46:78:54:2f:e1:2e:86:ee:14:90:1b: 8c:34:c5:ec:8b:11:a5:c9:0b:62:bf:7f:ce:f4:55: 52:a2:e0:d7:e1:89:d0:4c:f6:ec:0a:f2:49:c0:e1: a1:b9:98:8b:70:d2:d1:48:67:a3:e2:cf:50:b1:9e: 09:ad:f2:1e:08:ed:7f:cd:bb:36:9e:6a:4b:1b:06: d6:e3:0b:55:26:95:5b:de:1d:aa:5e:f2:ae:e1:f5: b5:1d:68:39:f3:12:27:9d:b9:b3:82:f5:12:9c:95: c6:c0:b7:93:84:f6:ad:79:76:5a:dd:e0:a9:f9:6d: df:a4:3c:58:b5:9c:5c:08:19:e0:fd:3e:81:f8:dd: 8f:0f:99:b1:bc:55:7c:16:e9:8f:c2:e7:0c:a1:87: a2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:90:54:B7:72:38:E0:E7:A3:27:1C:53:80:EE:E5:E0:9C:87:07:F4 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cb:0a:f8:48:5f:e5:71:05:5c:ce:3a:16:8e:c7:21:8d:71: 0e:b4:00:0c:49:85:96:7b:79:4e:2b:b7:ab:a4:2f:04:15:93: 9d:d9:a1:08:96:82:d5:3d:d3:a3:e8:d1:8e:8d:bd:0a:b2:d1: 02:aa:c4:ed:70:73:f9:20:04:d7:5f:54:90:e3:b2:c9:eb:ba: 9c:87:7d:76:2e:b9:f6:cf:69:c0:24:52:77:38:a6:7d:48:e0: b5:ad:fb:df:d2:b9:eb:d3:7b:44:7a:6e:3c:da:06:08:37:db: c7:64:dd:8a:0f:af:45:76:ea:1b:5e:58:2f:a6:e0:b8:0c:e1: d1:5c:af:82:04:99:f6:f3:c0:71:57:94:51:9c:fd:6b:fb:d4: 08:ea:94:18:c5:f7:e3:a2:7d:52:47:53:cb:dc:62:0b:60:49: f7:9f:a3:46:54:b2:2a:58:56:3c:36:ee:dc:fa:e0:dc:d1:cf: 0e:bb:a2:17:fa:a7:dd:d1:e7:25:8d:c8:0c:76:13:db:86:e9: b7:70:22:90:e2:6a:1e:84:42:08:08:7d:bc:ff:56:16:f5:29: 25:cd:23:a1:aa:37:13:33:f8:de:f6:cf:53:8b:00:90:c5:3f: 5f:2d:0c:ec:df:4a:7e:15:11:a4:1b:f7:07:2e:28:a1:c2:68: 87:9f:ae:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjUwNTMwMTgzMTI5WhcNMjUwNjA2MTgzMTI5WjAYMRYwFAYD VQQDEw02ODM5Zjk4MS01NjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRTBo2W4TZEvbqzw4fCcXmq8aKGtwsRmqGYW4oO3YiyUt6M2T9D7BUV0/Zen QBe/XUL+/liBlA8KK50hEZCaWihZ7oR/RptO3Eq/9ObgC22FaHxIlp/tyGu8ARhf xZH1d6F3xC6CSXPJGcRaRnhUL+Euhu4UkBuMNMXsixGlyQtiv3/O9FVSouDX4YnQ TPbsCvJJwOGhuZiLcNLRSGej4s9QsZ4JrfIeCO1/zbs2nmpLGwbW4wtVJpVb3h2q XvKu4fW1HWg58xInnbmzgvUSnJXGwLeThPateXZa3eCp+W3fpDxYtZxcCBng/T6B +N2PD5mxvFV8FumPwucMoYeiRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCQVLdy OODnoyccU4Du5eCchwf0MB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTywr4SF/lcQVczjoWjschjXEOtAAMSYWWe3lOK7erpC8EFZOd2aEI loLVPdOj6NGOjb0KstECqsTtcHP5IATXX1SQ47LJ67qch312Lrn2z2nAJFJ3OKZ9 SOC1rfvf0rnr03tEem482gYIN9vHZN2KD69FduobXlgvpuC4DOHRXK+CBJn288Bx V5RRnP1r+9QI6pQYxffjon1SR1PL3GILYEn3n6NGVLIqWFY8Nu7c+uDc0c8Ou6IX +qfd0ecljcgMdhPbhum3cCKQ4moehEIICH28/1YW9SklzSOhqjcTM/je9s9TiwCQ xT9fLQzs30p+FRGkG/cHLiihwmiHn65b -----END CERTIFICATE-----Generated at Sat May 31 16:28:41 2025 by rpki-client