$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: rEOYA+8PPodRXKLSYk7kQdhkLVgm43lSzclqFnoFRvw= Subject key identifier: 1F:C7:AB:59:BA:39:29:F1:19:81:52:35:93:C0:62:CF:37:EA:62:EB Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1742 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 172D Signing time: Fri 30 May 2025 16:48:41 +0000 Manifest this update: Fri 30 May 2025 16:48:40 +0000 Manifest next update: Fri 06 Jun 2025 16:48:40 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: TrFrT+e7FtEERLBYdj46R6AuMb4Oi8b56LAhtM5KNr4=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5954 (0x1742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: May 30 16:48:40 2025 GMT Not After : Jun 6 16:48:40 2025 GMT Subject: CN=6839e169-5b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:59:eb:d0:ac:83:ab:09:db:ce:dc:eb:d1:b0: 05:10:f4:ea:0b:9f:32:07:9d:9e:22:cc:c1:ba:22: df:ee:5b:f4:d5:13:58:54:50:38:9b:c7:92:22:b6: 90:88:8e:12:cf:e1:c6:ac:d2:c8:0e:56:77:58:b1: d2:a0:1a:a5:26:36:89:ea:5e:30:1b:4e:4e:e7:37: e8:fb:01:ee:ad:da:64:64:17:8f:4f:13:66:33:47: 1f:d4:77:0c:82:8f:a6:8b:e7:5c:6f:ee:f9:a3:0d: 08:21:ee:af:b7:ac:78:9e:e2:a8:a5:19:d8:31:79: a4:39:a0:af:9a:fb:92:5f:51:ad:60:5d:68:b5:45: 72:a1:47:16:a2:54:c1:32:4f:10:81:9a:44:d5:69: 11:4f:bf:0b:25:ba:0e:b2:47:ea:90:ee:16:04:f4: 6e:3f:69:ae:e2:d7:37:f6:dc:fe:62:69:1e:56:e6: 1d:ce:e6:de:42:f4:f6:78:1a:1e:5c:56:fc:48:85: d5:d3:04:59:fe:03:aa:4e:61:26:db:1c:fe:75:c7: 27:b2:4a:ff:2a:60:b4:28:e2:4e:20:1c:2d:ea:7b: 09:17:aa:4b:b7:e1:c8:27:f0:f6:18:5b:5d:59:48: de:22:68:6d:2f:bc:1a:e0:13:44:dd:d0:f4:03:93: 94:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C7:AB:59:BA:39:29:F1:19:81:52:35:93:C0:62:CF:37:EA:62:EB X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:2f:0b:dc:14:43:c4:b4:c8:fa:a3:04:58:1b:7e:69:bc:7d: d8:eb:2d:b6:dd:f3:a0:3b:da:63:04:0c:7d:ab:ad:bb:09:8c: 82:c5:48:c6:44:39:4c:fd:29:5b:82:84:ba:a0:c1:28:9f:d7: ae:72:14:85:3f:b4:e5:45:c7:a7:46:57:ea:fc:9a:fd:83:c8: d5:fe:95:cc:17:e8:9b:bf:f2:a5:a7:ef:97:24:78:2c:7e:30: f4:9b:1f:40:7b:ab:65:4f:b3:4f:ae:a1:71:67:94:a2:db:3e: da:17:a2:b1:ab:68:8f:73:f7:a3:c5:47:f6:cf:92:61:4e:d5: 2b:c0:c2:e7:20:15:03:10:1d:ac:52:bd:2f:d1:a4:f0:09:29: 38:0e:b4:23:0b:68:e7:88:36:3d:25:cd:85:29:3a:40:94:2f: 26:0b:b4:c2:79:c6:b1:c1:fe:34:39:0c:5c:d8:df:5f:bc:7f: 56:d5:e3:46:57:cd:21:fb:28:c1:a7:40:83:e8:1c:1a:5a:8f: b2:2f:8b:dc:57:12:fd:7d:b8:01:96:3c:f0:24:ea:37:94:72: 27:0d:24:b6:e8:97:53:27:ba:79:51:51:ed:01:28:38:94:36: 0d:31:e8:e6:c0:8d:b3:22:2d:41:67:d1:22:b4:23:8b:c3:15: 21:ba:ba:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNTMwMTY0ODQwWhcNMjUwNjA2MTY0ODQwWjAYMRYwFAYD VQQDEw02ODM5ZTE2OS01YjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01nr0KyDqwnbztzr0bAFEPTqC58yB52eIszBuiLf7lv01RNYVFA4m8eSIraQ iI4Sz+HGrNLIDlZ3WLHSoBqlJjaJ6l4wG05O5zfo+wHurdpkZBePTxNmM0cf1HcM go+mi+dcb+75ow0IIe6vt6x4nuKopRnYMXmkOaCvmvuSX1GtYF1otUVyoUcWolTB Mk8QgZpE1WkRT78LJboOskfqkO4WBPRuP2mu4tc39tz+YmkeVuYdzubeQvT2eBoe XFb8SIXV0wRZ/gOqTmEm2xz+dccnskr/KmC0KOJOIBwt6nsJF6pLt+HIJ/D2GFtd WUjeImhtL7wa4BNE3dD0A5OUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/Hq1m6 OSnxGYFSNZPAYs836mLrMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdLwvcFEPEtMj6owRYG35pvH3Y6y223fOgO9pjBAx9q627CYyCxUjG RDlM/SlbgoS6oMEon9euchSFP7TlRcenRlfq/Jr9g8jV/pXMF+ibv/Klp++XJHgs fjD0mx9Ae6tlT7NPrqFxZ5Si2z7aF6Kxq2iPc/ejxUf2z5JhTtUrwMLnIBUDEB2s Ur0v0aTwCSk4DrQjC2jniDY9Jc2FKTpAlC8mC7TCecaxwf40OQxc2N9fvH9W1eNG V80h+yjBp0CD6BwaWo+yL4vcVxL9fbgBljzwJOo3lHInDSS26JdTJ7p5UVHtASg4 lDYNMejmwI2zIi1BZ9EitCOLwxUhurqm -----END CERTIFICATE-----Generated at Sat May 31 15:04:31 2025 by rpki-client