$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: /tn8h31Uqj92G0U1xgxxhTvdWk8MEqeW6uIrYANfHDQ= Subject key identifier: D3:02:15:C4:37:9A:B2:5F:1A:49:62:5D:8D:91:E4:C8:D6:D0:A5:58 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 0473 Signing time: Sat 31 May 2025 00:18:29 +0000 Manifest this update: Sat 31 May 2025 00:18:29 +0000 Manifest next update: Sat 07 Jun 2025 00:18:29 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: SYPrLhwlcZFOt/6EoH9v8UN16uGJVFlPMuSOcYoTLyo=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: w9FaGj3sY61MFEZzIunRrfWZ3OYXoXaJ/HX3XZ5M44M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638, serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: May 31 00:18:29 2025 GMT Not After : Jun 7 00:18:29 2025 GMT Subject: CN=683a4ad5-d917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:28:78:f6:c4:41:a9:cf:57:96:3a:49:8a:73: c1:24:36:37:99:cb:5e:3e:69:d9:29:f7:ac:5b:03: d8:21:cc:78:01:3c:6f:6d:4e:c0:97:ea:83:27:06: 6b:89:70:1f:42:98:4d:5a:bd:26:f5:de:89:f6:63: 5e:40:38:7c:4d:41:c9:e4:0f:bb:33:10:93:05:65: 1d:ef:43:de:84:88:90:b7:3d:0c:3c:80:b3:c8:65: bc:c8:67:c2:5f:a3:ff:2b:1c:90:ef:b6:04:46:d3: 5a:7e:ce:6c:17:60:78:fc:28:e4:4c:e6:79:0c:07: 4f:42:b1:cf:79:5d:67:94:35:6f:70:e0:4f:64:b5: 12:8c:ec:39:8c:ca:a0:d6:eb:64:e6:b5:44:58:0d: ab:54:fd:e0:5a:5d:ac:3a:fc:46:62:0d:27:c1:0c: e8:5c:9d:3f:4f:a6:89:75:21:82:76:70:7a:8c:8c: 83:3c:90:53:30:2b:07:28:22:a6:fe:0f:c9:f6:4f: 02:05:ec:aa:a3:90:2e:9a:78:d0:de:a4:c2:95:6f: 3a:e0:52:53:98:84:75:5d:c6:4e:30:b5:17:03:8d: 1a:2e:b4:4f:c1:56:0e:c7:3c:ef:28:af:bd:7e:20: 78:2d:c2:24:a8:9b:4a:8e:66:2b:98:8c:af:c0:16: 2b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:02:15:C4:37:9A:B2:5F:1A:49:62:5D:8D:91:E4:C8:D6:D0:A5:58 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:b0:2c:49:19:da:7b:21:43:8d:6c:38:58:17:05:8a:75:70: 5f:b9:44:0d:f6:e8:33:e2:f0:93:ef:b3:2d:45:0c:54:f9:ca: 40:12:a3:c2:2c:e9:be:a3:c0:5b:e0:38:d2:55:af:e1:1c:0c: a9:c6:fe:a9:d2:ac:8a:a5:fe:8b:e1:77:14:85:f7:61:48:85: f1:de:8c:7d:3b:a1:ef:19:55:0d:49:1b:c6:17:8e:96:ae:3a: 85:79:23:2b:ae:77:1e:47:40:d8:b5:ff:84:77:a6:4a:2e:d4: bf:f8:a9:f7:1d:80:6e:77:5f:c4:2c:5d:03:22:c5:0a:a1:bd: 28:15:49:42:09:96:d7:50:90:e1:ee:21:08:7f:74:72:57:0b: fd:d4:f1:de:ab:29:72:aa:2b:e5:ed:a4:36:76:ab:12:b1:d9: 97:e8:c4:08:34:ce:22:fd:b0:7a:0a:eb:c6:f1:85:85:a7:b7: 70:78:39:de:d9:5e:65:3e:16:c2:7b:46:fd:e2:aa:87:97:d8: e0:92:a1:e1:20:12:ab:6b:44:cb:ef:95:03:16:a4:e4:b3:8c: 16:46:53:d8:0e:4d:a6:f5:74:09:ad:39:b4:e6:0e:88:95:ec: 6b:d0:f2:9c:5f:3c:ad:ed:ed:c6:7f:bb:97:f8:c3:cc:90:62: f8:f8:29:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjUwNTMxMDAxODI5WhcNMjUwNjA3MDAxODI5WjAYMRYwFAYD VQQDEw02ODNhNGFkNS1kOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryh49sRBqc9XljpJinPBJDY3mctePmnZKfesWwPYIcx4ATxvbU7Al+qDJwZr iXAfQphNWr0m9d6J9mNeQDh8TUHJ5A+7MxCTBWUd70PehIiQtz0MPICzyGW8yGfC X6P/KxyQ77YERtNafs5sF2B4/CjkTOZ5DAdPQrHPeV1nlDVvcOBPZLUSjOw5jMqg 1utk5rVEWA2rVP3gWl2sOvxGYg0nwQzoXJ0/T6aJdSGCdnB6jIyDPJBTMCsHKCKm /g/J9k8CBeyqo5AumnjQ3qTClW864FJTmIR1XcZOMLUXA40aLrRPwVYOxzzvKK+9 fiB4LcIkqJtKjmYrmIyvwBYrkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMCFcQ3 mrJfGkliXY2R5MjW0KVYMB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZsCxJGdp7IUONbDhYFwWKdXBfuUQN9ugz4vCT77MtRQxU+cpAEqPC LOm+o8Bb4DjSVa/hHAypxv6p0qyKpf6L4XcUhfdhSIXx3ox9O6HvGVUNSRvGF46W rjqFeSMrrnceR0DYtf+Ed6ZKLtS/+Kn3HYBud1/ELF0DIsUKob0oFUlCCZbXUJDh 7iEIf3RyVwv91PHeqylyqivl7aQ2dqsSsdmX6MQINM4i/bB6CuvG8YWFp7dweDne 2V5lPhbCe0b94qqHl9jgkqHhIBKra0TL75UDFqTks4wWRlPYDk2m9XQJrTm05g6I lexr0PKcXzyt7e3Gf7uX+MPMkGL4+Cl/ -----END CERTIFICATE-----Generated at Sat May 31 15:11:17 2025 by rpki-client