$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: 58GKODavdc6M/7PcN+rsXRSWlwJ9ZKToMA0Ah8NMxPk= Subject key identifier: 81:D8:58:FD:83:9C:E0:4B:AC:51:E9:D1:BB:17:B2:F9:5D:83:00:C3 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 42 Signing time: Tue 15 Apr 2025 02:46:55 +0000 Manifest this update: Tue 15 Apr 2025 02:46:54 +0000 Manifest next update: Tue 22 Apr 2025 02:46:54 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: eclyrFl0hITHRlnvHxyG7U2OpD6k6AZBsqXruEZZExg=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: NUffLHq82hY3xMoVf55lHNGR19ZjrAZu9OH8lX1bsUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 02:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Apr 15 02:46:54 2025 GMT Not After : Apr 22 02:46:54 2025 GMT Subject: CN=67fdc89e-e65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:cd:52:2b:2f:e0:af:3d:1c:69:3a:aa:ac: 4e:9b:2f:95:4a:27:e5:a3:58:7d:b5:f1:72:27:6a: 50:9e:08:f3:24:0f:6f:dc:c8:6b:99:31:5f:28:ea: e3:38:df:8b:34:16:5f:33:a4:df:5d:33:46:bc:fe: cf:0c:db:b8:07:7d:b4:eb:31:39:d2:a1:40:19:41: 49:76:0e:f6:f9:7a:d0:7c:72:1b:86:84:90:1f:74: df:08:39:5e:ff:59:72:df:49:3f:e3:48:42:ed:d5: 73:36:a7:98:3f:3f:9b:f6:40:5a:b3:00:39:ae:23: 94:e0:9e:07:a7:0c:c7:21:a1:e9:af:21:a0:1f:43: 63:77:3a:a7:23:94:9b:0b:82:f6:f4:85:b2:3a:05: 6a:22:8e:44:1e:44:d9:22:fe:52:49:75:28:e7:1b: 28:3b:18:ab:d9:df:47:7d:ad:52:6c:ab:ed:26:0f: 1f:ba:e7:c1:76:5d:81:cb:9c:da:70:17:5d:21:67: 4a:4a:0f:7a:ec:07:db:23:f7:f6:92:e4:15:19:bc: e3:a0:8c:35:0c:85:c8:28:20:3f:42:6f:9c:23:3a: d0:cb:39:42:9e:13:3a:36:2b:44:09:19:3a:03:95: 0c:47:0b:3b:c5:bc:a8:ed:ef:d9:6b:54:c7:2a:e2: 86:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D8:58:FD:83:9C:E0:4B:AC:51:E9:D1:BB:17:B2:F9:5D:83:00:C3 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b1:6e:af:cb:79:ac:a9:20:18:0a:81:a8:5a:3b:1d:4e:2d: e0:4f:d2:69:f4:f8:ac:e6:94:56:c9:e2:01:b9:53:ca:24:2f: 0b:ca:8d:44:c1:3a:df:8f:7c:b9:1b:c1:d9:c7:2f:81:9e:15: 32:fa:e5:d5:05:67:3f:21:3f:e4:04:0a:7a:57:95:6e:6e:08: aa:6e:56:f6:00:91:6b:bf:ea:65:c9:a6:5d:ff:86:06:0c:a2: 8e:a4:9f:bc:a7:ad:29:6e:a3:fe:ec:5c:4a:eb:07:7c:fc:e0: d6:90:07:56:61:e2:f7:71:55:6e:98:ab:a3:47:95:39:1a:0d: 6f:6b:b9:bb:80:78:8f:c7:09:8c:83:e3:7e:b0:31:70:f8:b5: 7a:c2:85:48:f0:58:33:47:8a:ee:8b:99:38:89:29:f2:0c:de: 4e:c5:19:5c:2c:ba:9e:9c:d3:11:e7:d1:db:4d:78:bf:30:25: db:f2:fe:4c:7a:8b:0c:eb:99:2b:d8:15:80:71:0e:79:37:1a: 22:6b:24:73:40:87:12:00:37:52:f1:61:9a:3e:ac:ae:ee:00: 8d:e9:e1:12:56:36:d3:8e:c2:ce:7c:1c:cf:32:e5:b0:43:9f: 85:cf:56:9e:5e:47:11:a4:42:4f:64:79:ab:44:31:35:99:e8: 78:e4:46:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA0MTUwMjQ2NTRaFw0yNTA0MjIwMjQ2NTRaMBgxFjAUBgNV BAMTDTY3ZmRjODllLWU2NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBZ81SKy/grz0caTqqrE6bL5VKJ+WjWH218XInalCeCPMkD2/cyGuZMV8o6uM4 34s0Fl8zpN9dM0a8/s8M27gHfbTrMTnSoUAZQUl2Dvb5etB8chuGhJAfdN8IOV7/ WXLfST/jSELt1XM2p5g/P5v2QFqzADmuI5TgngenDMchoemvIaAfQ2N3OqcjlJsL gvb0hbI6BWoijkQeRNki/lJJdSjnGyg7GKvZ30d9rVJsq+0mDx+658F2XYHLnNpw F10hZ0pKD3rsB9sj9/aS5BUZvOOgjDUMhcgoID9Cb5wjOtDLOUKeEzo2K0QJGToD lQxHCzvFvKjt79lrVMcq4oaBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgdhY/YOc 4EusUenRuxey+V2DAMMwHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHuxbq/LeaypIBgKgahaOx1OLeBP0mn0+KzmlFbJ4gG5U8okLwvKjUTB Ot+PfLkbwdnHL4GeFTL65dUFZz8hP+QECnpXlW5uCKpuVvYAkWu/6mXJpl3/hgYM oo6kn7ynrSluo/7sXErrB3z84NaQB1Zh4vdxVW6Yq6NHlTkaDW9rubuAeI/HCYyD 436wMXD4tXrChUjwWDNHiu6LmTiJKfIM3k7FGVwsup6c0xHn0dtNeL8wJdvy/kx6 iwzrmSvYFYBxDnk3GiJrJHNAhxIAN1LxYZo+rK7uAI3p4RJWNtOOws58HM8y5bBD n4XPVp5eRxGkQk9keatEMTWZ6HjkRoA= -----END CERTIFICATE-----Generated at Wed Apr 16 16:12:48 2025 by rpki-client