$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: oAzespeVz28MzRGakuV//z16PlBFe4sNzCIt7/2WPn8= Subject key identifier: DE:44:3C:5F:2A:80:8B:83:34:A9:37:26:80:BA:44:06:FD:DB:41:B8 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 017F Signing time: Sat 31 May 2025 03:22:45 +0000 Manifest this update: Sat 31 May 2025 03:22:44 +0000 Manifest next update: Sat 07 Jun 2025 03:22:44 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: dCvjRKTuH9/ZXiD85r5SMXQIPEg7nzIp9LQUt6TMGDU=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: May 31 03:22:44 2025 GMT Not After : Jun 7 03:22:44 2025 GMT Subject: CN=683a7604-791b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:e4:93:31:97:a1:ac:05:64:70:3e:83:2b: 66:45:d1:c4:56:ec:82:ee:4b:1b:72:02:1f:f4:31: 43:1e:08:74:45:f9:46:2f:67:d8:a0:12:59:6c:03: fc:bf:91:51:6f:14:d5:75:a9:c7:66:fa:e2:45:7b: 19:6f:f6:1d:2b:38:7f:43:fa:e1:37:4d:ac:73:e4: b3:09:e0:3c:0b:43:ac:3e:a7:b5:23:62:98:78:ac: 56:df:12:4d:fc:19:c1:19:0a:55:4f:08:d3:1c:de: a4:96:78:7c:63:21:7b:04:e2:43:74:22:d2:56:58: c0:13:27:24:da:ea:12:29:76:1d:77:ce:02:d9:27: 29:75:fd:67:71:81:16:a4:33:11:66:5e:04:06:ab: 1e:df:7a:cd:64:94:66:b5:fa:ba:55:27:17:4f:7a: 76:ec:8e:ac:ec:13:10:00:9b:99:53:43:0f:28:93: d0:19:e1:74:1c:e9:26:54:98:16:09:ad:d4:70:85: fa:59:fb:90:e8:a1:6b:4e:e1:9d:4b:ef:85:82:c9: a4:7b:d2:52:48:34:b7:a0:2d:ce:11:1e:99:b1:e6: 46:01:08:a1:2b:51:58:b7:99:b7:c5:a2:29:8e:e3: f8:ad:a4:27:8a:b1:26:4c:af:eb:b2:54:3a:a2:63: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:44:3C:5F:2A:80:8B:83:34:A9:37:26:80:BA:44:06:FD:DB:41:B8 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:56:48:63:da:6b:a7:b9:3e:37:45:50:4d:6c:42:a7:f6:d6: 89:40:62:6f:c8:61:2e:9f:9c:9c:df:fd:1b:89:e9:50:5f:8b: aa:d3:04:2f:6b:fd:0a:80:ed:4d:17:70:8b:47:b4:2b:26:8d: cd:24:1a:ca:d0:e3:cf:3d:7a:cd:68:7a:3c:cb:6b:07:1d:8c: 9b:03:a2:f5:53:71:1b:f4:a1:ef:49:e7:ab:ff:b4:73:15:35: 9f:1c:42:55:f1:bd:87:80:5c:d3:1a:0d:de:f2:57:72:79:5c: e9:bc:7e:59:e6:23:92:8b:53:04:b0:0d:b1:a6:ce:1b:27:c2: ac:7b:4d:ef:1c:b2:42:f6:42:5c:a5:f8:56:5b:92:8e:63:0b: 76:48:41:41:f3:d1:17:22:c3:9b:e1:20:e4:71:6f:3a:a4:11: 2d:a7:5c:09:9a:ba:39:01:2b:6d:ea:70:7e:f7:fc:2c:35:a0: 73:16:a9:1f:42:29:d7:5f:b6:86:6d:da:2a:46:2d:9f:63:1b: fd:21:7b:e0:8c:c1:f5:e7:d4:75:7a:3b:73:51:c1:48:d9:28: 40:48:76:6f:3d:a6:b6:82:6d:7d:96:24:97:99:5a:43:87:4f: 15:60:9e:21:46:26:44:ee:2e:0a:46:aa:af:56:56:f5:20:51: 92:32:04:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwNTMxMDMyMjQ0WhcNMjUwNjA3MDMyMjQ0WjAYMRYwFAYD VQQDEw02ODNhNzYwNC03OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKXkkzGXoawFZHA+gytmRdHEVuyC7ksbcgIf9DFDHgh0RflGL2fYoBJZbAP8 v5FRbxTVdanHZvriRXsZb/YdKzh/Q/rhN02sc+SzCeA8C0OsPqe1I2KYeKxW3xJN /BnBGQpVTwjTHN6klnh8YyF7BOJDdCLSVljAEyck2uoSKXYdd84C2Scpdf1ncYEW pDMRZl4EBqse33rNZJRmtfq6VScXT3p27I6s7BMQAJuZU0MPKJPQGeF0HOkmVJgW Ca3UcIX6WfuQ6KFrTuGdS++Fgsmke9JSSDS3oC3OER6ZseZGAQihK1FYt5m3xaIp juP4raQnirEmTK/rslQ6omPVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5EPF8q gIuDNKk3JoC6RAb920G4MB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzVkhj2munuT43RVBNbEKn9taJQGJvyGEun5yc3/0bielQX4uq0wQv a/0KgO1NF3CLR7QrJo3NJBrK0OPPPXrNaHo8y2sHHYybA6L1U3Eb9KHvSeer/7Rz FTWfHEJV8b2HgFzTGg3e8ldyeVzpvH5Z5iOSi1MEsA2xps4bJ8Kse03vHLJC9kJc pfhWW5KOYwt2SEFB89EXIsOb4SDkcW86pBEtp1wJmro5AStt6nB+9/wsNaBzFqkf QinXX7aGbdoqRi2fYxv9IXvgjMH159R1ejtzUcFI2ShASHZvPaa2gm19liSXmVpD h08VYJ4hRiZE7i4KRqqvVlb1IFGSMgQZ -----END CERTIFICATE-----Generated at Sat May 31 17:12:52 2025 by rpki-client