$ rpki-client -vvf rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft File: OWpdnmemeQypf7kxMEtE57CoIc8.mft (raw, json) Hash identifier: c/+QGe+NOIKiGPYfbVXHJwRFHAkQWfrJTCJImS5MCC4= Subject key identifier: 5B:F5:EC:74:63:53:ED:20:D8:74:67:87:3B:81:2D:25:34:EB:C8:84 Authority key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF Certificate issuer: /CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Certificate serial: 08DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft Manifest number: 08D1 Signing time: Fri 30 May 2025 20:40:46 +0000 Manifest this update: Fri 30 May 2025 20:40:46 +0000 Manifest next update: Fri 06 Jun 2025 20:40:46 +0000 Files and hashes: 1: OWpdnmemeQypf7kxMEtE57CoIc8.crl (hash: a5cx8Mw+hf/w8QVMOsJ2rW4+qLyLt9hZhZy9zsXgqak=) 2: 442D6434B14411EAB852C134C4F9AE02.roa (hash: OW9lsUV5oixQaepXd0o9wvP+ydFKTMRn+aOMtcrsIqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2267 (0x8db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915664E, serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Validity Not Before: May 30 20:40:46 2025 GMT Not After : Jun 6 20:40:46 2025 GMT Subject: CN=683a17ce-554d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3b:dd:51:2e:14:a3:97:ec:03:98:e9:49:91: 31:39:54:47:c5:e9:9d:04:5d:75:53:c7:22:09:4c: 26:ad:2a:38:42:aa:02:27:c7:11:a5:b3:52:82:eb: 19:5e:8b:d1:05:13:52:54:f9:3b:34:1a:24:35:2b: 06:e6:4a:62:0a:6f:25:9d:94:f2:ec:5d:89:1f:74: 72:27:f5:5c:a1:54:67:b5:17:d2:2a:6c:68:22:3d: 81:77:09:8b:2b:71:18:8a:6e:04:c9:02:e3:8d:07: 00:f8:12:3f:e9:d3:79:b3:bc:52:02:84:46:ba:fe: 86:13:de:44:0f:9d:f2:7d:de:47:a6:a5:df:4b:9a: ac:40:f4:9a:36:b6:43:1f:70:2d:13:d1:7b:f4:0e: 8b:f1:ff:38:d7:2f:dd:5b:21:20:83:cd:4b:f7:1e: 13:59:cf:ed:f9:d6:80:c6:1d:30:af:b1:7f:54:c9: 89:49:e6:b6:b2:eb:49:3c:0c:8f:c7:9c:c7:8c:75: 8e:c3:2e:1a:12:88:1f:db:39:68:df:bb:36:55:01: bc:ae:fb:e4:1b:67:f0:50:96:6b:ff:cc:d9:e6:73: 8c:06:fb:44:7a:f5:46:b4:ea:cc:73:e1:9e:a9:cf: 82:48:1b:bf:97:8a:e5:fe:1e:d7:37:1e:ca:07:b3: 88:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F5:EC:74:63:53:ED:20:D8:74:67:87:3B:81:2D:25:34:EB:C8:84 X509v3 Authority Key Identifier: keyid:39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:89:e8:59:cd:6a:98:b1:ec:3c:95:bc:98:3e:53:8b:37:2b: 94:f6:23:29:ac:f6:1f:18:fd:93:74:35:15:7c:29:79:61:d8: bd:36:ce:02:78:66:1c:59:8a:97:8c:04:cb:48:0f:dd:c2:e5: 3d:52:c5:83:24:cf:b8:a5:71:4d:33:43:4f:a9:fc:eb:9b:2f: fe:0d:21:1b:5b:bc:73:9a:fa:da:e3:99:42:db:d4:95:24:1a: 14:13:e3:35:d8:56:77:0f:d9:46:fc:d0:66:18:08:b1:d0:07: 6b:54:8f:6b:f1:0c:a1:6e:7c:8b:60:3f:ae:ca:bf:32:43:81: 8c:15:7f:7b:a7:9b:28:bc:b0:f3:4c:9c:66:c1:1e:5a:f1:c4: 35:ac:fc:81:e1:2b:93:a0:6c:a4:63:81:1d:3d:3c:9f:94:64: 3b:be:d0:b4:94:50:78:43:4d:82:e5:92:a0:22:b8:7e:bf:b1: 7e:83:f6:0a:d0:52:f3:ea:d5:ac:f6:a6:55:b8:dd:6a:7b:71: 10:52:36:94:6d:e5:33:50:92:8e:39:0d:bf:18:f9:b2:15:bd: e0:77:79:9a:6c:6d:dc:f0:c0:eb:85:3d:8a:0c:7b:1a:4f:af: e5:44:02:7a:3f:e8:f9:79:41:6e:54:ef:90:b6:81:d8:98:c4: 34:93:36:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkzMTMwNEI0NEU3 QjBBODIxQ0YwHhcNMjUwNTMwMjA0MDQ2WhcNMjUwNjA2MjA0MDQ2WjAYMRYwFAYD VQQDEw02ODNhMTdjZS01NTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjvdUS4Uo5fsA5jpSZExOVRHxemdBF11U8ciCUwmrSo4QqoCJ8cRpbNSgusZ XovRBRNSVPk7NBokNSsG5kpiCm8lnZTy7F2JH3RyJ/VcoVRntRfSKmxoIj2BdwmL K3EYim4EyQLjjQcA+BI/6dN5s7xSAoRGuv6GE95ED53yfd5HpqXfS5qsQPSaNrZD H3AtE9F79A6L8f841y/dWyEgg81L9x4TWc/t+daAxh0wr7F/VMmJSea2sutJPAyP x5zHjHWOwy4aEogf2zlo37s2VQG8rvvkG2fwUJZr/8zZ5nOMBvtEevVGtOrMc+Ge qc+CSBu/l4rl/h7XNx7KB7OI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFv17HRj U+0g2HRnhzuBLSU068iEMB8GA1UdIwQYMBaAFDlqXZ5npnkMqX+5MTBLROewqCHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjY0RS9CNDZBOUMxRUIx M0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVReXBmN2t4TUV0RTU3Q29J YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09XcGRubWVtZVF5cGY3a3hNRXRFNTdDb0ljOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVR eXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3iehZzWqYsew8lbyYPlOLNyuU9iMprPYfGP2TdDUVfCl5Ydi9Ns4C eGYcWYqXjATLSA/dwuU9UsWDJM+4pXFNM0NPqfzrmy/+DSEbW7xzmvra45lC29SV JBoUE+M12FZ3D9lG/NBmGAix0AdrVI9r8QyhbnyLYD+uyr8yQ4GMFX97p5sovLDz TJxmwR5a8cQ1rPyB4SuToGykY4EdPTyflGQ7vtC0lFB4Q02C5ZKgIrh+v7F+g/YK 0FLz6tWs9qZVuN1qe3EQUjaUbeUzUJKOOQ2/GPmyFb3gd3mabG3c8MDrhT2KDHsa T6/lRAJ6P+j5eUFuVO+QtoHYmMQ0kzbn -----END CERTIFICATE-----Generated at Sat May 31 17:53:17 2025 by rpki-client