$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: wh0ekUggHH4ObIq3KM96EHt8jmBFoEXIPosJlG/bWWs= Subject key identifier: D6:36:04:26:4F:3A:BC:CC:D0:8B:39:64:03:F7:B9:FF:76:57:55:CC Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 0116 Signing time: Sat 31 May 2025 04:28:39 +0000 Manifest this update: Sat 31 May 2025 04:28:38 +0000 Manifest next update: Sat 07 Jun 2025 04:28:38 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: 7xRaDb1WO9Zp/qRWwPbywkAShPLmpcitPxAHug1pwG4=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: nLAI2KpHv4yGG3LNJRHSRrSrOVvhwD5I70+pJLgB34A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: May 31 04:28:38 2025 GMT Not After : Jun 7 04:28:38 2025 GMT Subject: CN=683a8576-a3c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2c:7a:b3:52:62:fa:04:71:ab:f8:ee:14:81: 7c:32:34:f5:0e:04:bd:74:61:4c:ca:27:55:30:57: 4e:92:1d:46:cf:95:50:bb:18:4d:9c:21:1d:86:6b: ac:ea:d4:0d:87:7f:02:ea:c0:ce:d3:c2:ff:45:60: 07:cb:41:21:59:27:22:f9:c8:9c:80:4f:c7:5d:73: 8b:1d:e5:30:1e:b2:d9:df:4a:81:15:30:84:2d:7d: 08:11:a7:d5:88:af:1e:a4:f6:af:5e:eb:69:f4:af: ca:42:1d:6f:f0:ed:9b:7d:f5:e7:d4:0c:ca:aa:10: b5:c3:57:70:65:ec:25:45:e6:0d:27:21:32:d2:f8: 80:91:69:06:7f:ee:4a:a2:8b:47:a6:1a:a9:08:a7: d2:94:0a:81:11:27:12:d1:77:73:8d:41:a1:a1:c9: be:ef:ad:ca:3f:ba:71:91:12:d1:a0:80:66:a4:1d: af:0f:8a:f4:d4:b9:7b:72:89:9a:f9:d2:86:85:13: 51:a8:43:e7:d1:14:38:c4:92:e4:f4:32:cc:28:a9: a0:b1:a2:69:7c:99:f2:1a:ec:6f:82:d3:14:61:8c: 36:77:da:60:93:25:36:10:cc:40:3f:bb:97:70:f9: 0a:95:69:be:de:e7:75:9c:5f:b9:6f:1a:7c:a2:38: 1b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:36:04:26:4F:3A:BC:CC:D0:8B:39:64:03:F7:B9:FF:76:57:55:CC X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:a8:78:6e:92:ad:81:68:5c:54:4c:f1:f9:a3:3b:28:41:bb: 81:8d:0f:8c:d9:d8:b8:eb:8b:ee:1f:1a:21:3a:63:72:7e:8c: f5:e5:d1:f8:eb:d6:0d:b8:1a:e6:0e:23:f6:61:7b:23:6e:85: c6:ca:ba:11:e7:3d:4e:f1:9d:ba:ad:ab:12:63:d5:72:36:eb: a3:24:c5:8a:5d:c9:99:d9:60:82:c5:35:a6:85:c3:b8:10:76: af:fa:1d:ae:8b:47:88:f0:f9:f6:af:b6:7b:ea:0a:93:b7:26: 98:db:36:b9:8b:80:c5:8a:2e:32:78:dc:cc:2e:d8:c6:53:5e: be:61:b5:87:f5:0c:d5:14:ab:93:c3:17:d2:de:3c:e3:65:cd: cf:7b:07:c6:8b:74:ff:f3:8f:69:c2:7f:a6:fd:81:dc:e3:1c: 0a:94:18:8c:16:c6:9e:31:23:6c:a1:3d:ef:de:4b:51:d7:6c: c2:1c:d7:a1:74:5b:52:aa:6d:b8:ae:e6:96:e5:8f:59:58:58: df:73:59:65:66:54:4f:fe:08:0a:6d:88:b6:22:59:61:7b:66: 54:9d:fc:89:9f:cb:b4:11:cc:38:72:d7:31:0c:b3:02:ae:10: b3:d6:6c:97:3b:4c:62:0d:a3:15:27:5a:12:91:6c:65:a0:c8: 19:65:6b:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjUwNTMxMDQyODM4WhcNMjUwNjA3MDQyODM4WjAYMRYwFAYD VQQDEw02ODNhODU3Ni1hM2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyx6s1Ji+gRxq/juFIF8MjT1DgS9dGFMyidVMFdOkh1Gz5VQuxhNnCEdhmus 6tQNh38C6sDO08L/RWAHy0EhWSci+cicgE/HXXOLHeUwHrLZ30qBFTCELX0IEafV iK8epPavXutp9K/KQh1v8O2bffXn1AzKqhC1w1dwZewlReYNJyEy0viAkWkGf+5K ootHphqpCKfSlAqBEScS0XdzjUGhocm+763KP7pxkRLRoIBmpB2vD4r01Ll7coma +dKGhRNRqEPn0RQ4xJLk9DLMKKmgsaJpfJnyGuxvgtMUYYw2d9pgkyU2EMxAP7uX cPkKlWm+3ud1nF+5bxp8ojgbHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY2BCZP OrzM0Is5ZAP3uf92V1XMMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGqHhukq2BaFxUTPH5ozsoQbuBjQ+M2di464vuHxohOmNyfoz15dH4 69YNuBrmDiP2YXsjboXGyroR5z1O8Z26rasSY9VyNuujJMWKXcmZ2WCCxTWmhcO4 EHav+h2ui0eI8Pn2r7Z76gqTtyaY2za5i4DFii4yeNzMLtjGU16+YbWH9QzVFKuT wxfS3jzjZc3PewfGi3T/849pwn+m/YHc4xwKlBiMFsaeMSNsoT3v3ktR12zCHNeh dFtSqm24ruaW5Y9ZWFjfc1llZlRP/ggKbYi2Illhe2ZUnfyJn8u0Ecw4ctcxDLMC rhCz1myXO0xiDaMVJ1oSkWxloMgZZWt4 -----END CERTIFICATE-----Generated at Sat May 31 17:27:58 2025 by rpki-client