$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: lLD0MO1EAmQHynyeRvDlgoMCZZ+ZdFUUgdDjDbJvpl0= Subject key identifier: F6:FF:BD:8E:46:32:E4:95:92:65:32:E1:40:04:8B:A0:38:AA:34:B8 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A76 Signing time: Fri 30 May 2025 19:49:21 +0000 Manifest this update: Fri 30 May 2025 19:49:20 +0000 Manifest next update: Fri 06 Jun 2025 19:49:20 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: aymenhgQLynF+S6zMyXsX2qzUBS1Bno1ItkD++iNFxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: May 30 19:49:20 2025 GMT Not After : Jun 6 19:49:20 2025 GMT Subject: CN=683a0bc0-bb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f2:ae:89:98:bb:75:77:26:0f:87:b6:50:ae: d4:5a:58:53:2f:7f:12:2f:75:03:52:2f:57:3b:be: 48:4b:58:5c:5c:44:6e:96:60:be:4f:2e:f4:27:26: 7b:6b:fd:a4:43:6d:08:d5:1c:87:31:4b:fe:8c:02: 2a:8d:98:fb:b7:07:d6:66:92:9c:de:40:36:a8:a0: 42:ac:33:e0:b7:45:5e:f4:63:2b:29:58:a7:28:2a: 8a:cd:32:af:90:79:f4:1d:ff:a5:da:98:57:8d:65: 39:67:1d:b5:65:72:50:0b:fc:27:0b:80:50:52:a5: ce:f3:94:8c:02:8e:db:fd:82:a7:bf:8f:95:d4:88: b3:72:9c:6a:3d:df:e9:9c:94:72:00:6e:dc:f4:74: df:20:6b:24:0f:77:6d:6c:0e:2e:5f:48:15:70:8c: ba:f4:3b:a7:14:51:32:47:65:39:d7:72:23:5c:33: c2:76:47:94:7b:ee:73:c1:82:9d:03:91:51:dc:ba: bf:44:ba:cd:95:93:6f:f7:d3:5e:d1:55:c0:f3:8d: f0:e5:23:09:6c:e9:e6:91:af:36:71:64:e5:f4:9f: 68:0b:a7:6b:be:2a:7e:7d:f2:f1:dd:ab:58:d9:87: 5e:b4:07:3f:f2:bb:21:ed:7b:6b:93:c6:1c:fc:c3: 8b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FF:BD:8E:46:32:E4:95:92:65:32:E1:40:04:8B:A0:38:AA:34:B8 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:30:6a:87:c6:00:61:bc:dd:73:3f:9b:dc:06:1a:43:0e:95: bc:72:86:08:a3:74:a2:4c:7f:d9:2c:67:db:ff:04:8e:94:59: 47:50:5e:29:d9:cd:de:4c:58:1b:e1:7b:62:c3:10:98:39:02: fb:12:2a:3a:dc:54:95:0d:a1:12:21:56:6c:e1:17:fd:17:a7: 4c:21:94:9d:db:19:8b:a2:86:4c:cd:41:66:8c:a7:01:8b:a8: e4:8d:46:eb:07:74:e5:17:4b:3a:dd:24:63:a6:b8:20:95:a4: a5:06:52:4b:ac:18:cd:48:0e:dd:90:51:c0:5c:7f:78:98:0a: 0f:1b:72:35:40:e6:51:69:cb:0a:5a:e1:c7:88:ae:c7:3e:13: a2:8a:89:b9:a6:e9:6d:ba:d4:f1:6a:c9:0f:d7:5b:9e:7a:b9: a8:2a:90:6b:85:d7:95:cf:24:e5:96:cb:19:8d:4c:61:12:2e: 76:93:b0:3a:bd:1c:1b:19:65:f7:13:0f:79:3a:0a:d7:ce:c6: 38:15:ab:d5:a0:89:2b:e5:17:07:a8:e9:3d:e0:28:1e:18:77: b1:7a:01:3c:19:ec:07:3b:f3:4d:5f:5f:c6:04:b3:cd:cb:62: b4:0f:bc:ef:47:48:b1:5e:b6:c0:5c:16:39:17:01:da:f8:e4: c6:ea:46:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNTMwMTk0OTIwWhcNMjUwNjA2MTk0OTIwWjAYMRYwFAYD VQQDEw02ODNhMGJjMC1iYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PKuiZi7dXcmD4e2UK7UWlhTL38SL3UDUi9XO75IS1hcXERulmC+Ty70JyZ7 a/2kQ20I1RyHMUv+jAIqjZj7twfWZpKc3kA2qKBCrDPgt0Ve9GMrKVinKCqKzTKv kHn0Hf+l2phXjWU5Zx21ZXJQC/wnC4BQUqXO85SMAo7b/YKnv4+V1IizcpxqPd/p nJRyAG7c9HTfIGskD3dtbA4uX0gVcIy69DunFFEyR2U513IjXDPCdkeUe+5zwYKd A5FR3Lq/RLrNlZNv99Ne0VXA843w5SMJbOnmka82cWTl9J9oC6drvip+ffLx3atY 2YdetAc/8rsh7Xtrk8Yc/MOLeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPb/vY5G MuSVkmUy4UAEi6A4qjS4MB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgMGqHxgBhvN1zP5vcBhpDDpW8coYIo3SiTH/ZLGfb/wSOlFlHUF4p 2c3eTFgb4XtiwxCYOQL7Eio63FSVDaESIVZs4Rf9F6dMIZSd2xmLooZMzUFmjKcB i6jkjUbrB3TlF0s63SRjprgglaSlBlJLrBjNSA7dkFHAXH94mAoPG3I1QOZRacsK WuHHiK7HPhOiiom5pultutTxaskP11ueermoKpBrhdeVzyTllssZjUxhEi52k7A6 vRwbGWX3Ew95OgrXzsY4FavVoIkr5RcHqOk94CgeGHexegE8GewHO/NNX1/GBLPN y2K0D7zvR0ixXrbAXBY5FwHa+OTG6kYD -----END CERTIFICATE-----Generated at Sat May 31 16:53:47 2025 by rpki-client