$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: VrsBOh92BkvSdPQzD1WITe1kOPcRvSPU9bWKjOyBw3g= Subject key identifier: 43:B6:D9:F1:8D:23:44:70:3E:10:27:15:40:74:D6:07:15:D6:87:DA Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 032F Signing time: Sat 31 May 2025 01:17:15 +0000 Manifest this update: Sat 31 May 2025 01:17:15 +0000 Manifest next update: Sat 07 Jun 2025 01:17:15 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: ymjaN4M5xpTfofrTgHubU0WDXSZPpVQFTr2hJoUWRRQ=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: jj/VEZFojNzwFut6xQ2ddbaM/ffKwcFrBgOFEnS8TYI=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: UriRXIOaFvm5u1qncQTi3IERwvU0QHA/1gyCNIPeCng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: May 31 01:17:15 2025 GMT Not After : Jun 7 01:17:15 2025 GMT Subject: CN=683a589b-762e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:f8:99:59:58:90:3f:86:3b:19:de:b0:48: e2:a0:2e:24:9b:69:a2:3e:c0:47:9f:c9:90:be:0d: 3c:34:03:77:94:38:80:00:7b:ab:91:88:84:48:94: 0e:1a:f3:0d:7a:b7:ab:65:c8:5c:94:9c:15:4a:23: 77:bc:6d:60:84:2d:be:55:d6:56:8b:cf:4c:a6:a3: 74:81:ce:56:f9:32:52:6e:17:9d:50:58:89:20:77: b2:6d:04:df:97:4a:89:fe:96:06:45:a2:83:d9:3c: 53:4b:49:90:9c:5c:ac:7a:3b:5f:24:e3:a8:b3:3d: 82:58:a3:a5:c9:4b:9f:7d:79:fa:96:64:07:19:3c: 9b:b2:ec:f9:36:68:5a:94:c5:ae:70:18:a9:e6:25: 2d:fc:9c:0c:b1:08:93:65:0b:4f:a0:b1:db:54:cb: 75:66:52:2c:90:27:7b:72:8c:d7:7e:7f:b9:d6:a5: 1d:91:07:47:84:95:c8:5a:a0:3e:72:a4:35:3e:0c: 08:00:ee:f1:b5:5f:bb:8a:f1:f8:f0:c4:90:dc:bb: 29:bc:7a:75:7a:e7:fe:23:06:26:1f:1d:c2:3f:33: b7:9a:ba:05:fb:5c:3e:e5:91:26:90:bb:14:35:12: 4f:30:67:6d:56:f8:fd:d6:24:68:c7:c8:df:c0:5f: 22:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B6:D9:F1:8D:23:44:70:3E:10:27:15:40:74:D6:07:15:D6:87:DA X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b3:7b:20:75:30:a8:8c:1d:17:87:fc:c9:eb:bc:6d:9e:dd: c1:30:78:e4:d4:51:ba:66:4e:b6:95:9e:5a:2b:15:71:a5:8d: 35:a5:c7:b9:e2:24:ce:0f:54:c0:82:6b:93:53:f6:d4:23:4a: f6:7b:7b:e1:2b:b3:9f:54:23:65:a3:bf:f4:dc:d9:2d:37:09: 40:f0:84:2e:f5:88:6c:9e:75:c6:31:a0:28:7f:d6:84:77:73: d7:16:6b:f9:4c:03:0c:ea:24:7e:e1:2d:d1:b0:1d:3c:11:cf: c7:2e:02:2c:7b:7a:25:d2:70:a7:43:31:4b:61:ef:fd:d0:35: 91:1f:b3:dc:e6:9f:9e:91:60:a2:58:e7:52:97:db:ec:25:79: dd:52:5f:51:0c:ae:63:85:85:10:f0:87:21:a7:f3:6a:96:7a: 3a:b9:ce:63:57:c8:5a:2a:1e:1d:52:36:4c:f0:f9:2f:ab:7c: dd:da:53:63:99:32:f8:aa:82:32:b8:55:91:da:a3:66:ce:40: 96:35:f0:02:b3:98:60:d7:60:7b:16:d8:0d:84:7d:6e:73:4c: 04:6d:26:40:5c:43:87:f5:d7:a8:3f:cb:c5:c2:24:1b:e1:77: ed:66:63:29:26:87:a1:d6:49:37:6d:5f:b2:9f:57:5d:88:3e: e2:bb:64:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUwNTMxMDExNzE1WhcNMjUwNjA3MDExNzE1WjAYMRYwFAYD VQQDEw02ODNhNTg5Yi03NjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU34mVlYkD+GOxnesEjioC4km2miPsBHn8mQvg08NAN3lDiAAHurkYiESJQO GvMNererZchclJwVSiN3vG1ghC2+VdZWi89MpqN0gc5W+TJSbhedUFiJIHeybQTf l0qJ/pYGRaKD2TxTS0mQnFysejtfJOOosz2CWKOlyUuffXn6lmQHGTybsuz5Nmha lMWucBip5iUt/JwMsQiTZQtPoLHbVMt1ZlIskCd7cozXfn+51qUdkQdHhJXIWqA+ cqQ1PgwIAO7xtV+7ivH48MSQ3LspvHp1euf+IwYmHx3CPzO3mroF+1w+5ZEmkLsU NRJPMGdtVvj91iRox8jfwF8iSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO22fGN I0RwPhAnFUB01gcV1ofaMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWs3sgdTCojB0Xh/zJ67xtnt3BMHjk1FG6Zk62lZ5aKxVxpY01pce5 4iTOD1TAgmuTU/bUI0r2e3vhK7OfVCNlo7/03NktNwlA8IQu9YhsnnXGMaAof9aE d3PXFmv5TAMM6iR+4S3RsB08Ec/HLgIse3ol0nCnQzFLYe/90DWRH7Pc5p+ekWCi WOdSl9vsJXndUl9RDK5jhYUQ8Ichp/Nqlno6uc5jV8haKh4dUjZM8Pkvq3zd2lNj mTL4qoIyuFWR2qNmzkCWNfACs5hg12B7FtgNhH1uc0wEbSZAXEOH9deoP8vFwiQb 4XftZmMpJoeh1kk3bV+yn1ddiD7iu2Tj -----END CERTIFICATE-----Generated at Sat May 31 16:44:50 2025 by rpki-client