$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: R3h+qlHRtqqG2JCbvKBvXkuhyvx6tbcVBNwvuqiL9tM= Subject key identifier: 70:B6:C7:81:A5:88:1B:ED:D5:1E:B1:FF:48:6D:00:36:48:0A:3A:E2 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: CB Signing time: Tue 03 Jun 2025 03:20:02 +0000 Manifest this update: Tue 03 Jun 2025 03:20:01 +0000 Manifest next update: Tue 10 Jun 2025 03:20:01 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: JPDnSe1LfVO8mPspCLZBoYQDNEjHF0a7ZcT61Zl4iC0=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: kSK29014IOAyTFM0toP6bnTMS2qsqnnHmN7R+iDPlF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Jun 3 03:20:01 2025 GMT Not After : Jun 10 03:20:01 2025 GMT Subject: CN=683e69e1-2aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:f1:46:77:78:82:f3:77:8e:d7:cc:cc:a7: 19:ad:c0:8c:df:2b:9b:b2:bc:8a:4e:02:fc:db:ae: 7f:3c:66:00:7d:33:1f:8a:e0:9d:5e:dd:be:a6:1e: 73:1f:fd:2e:a0:d2:24:3e:4a:ff:9e:65:41:8b:5d: 4b:ee:f5:64:93:a4:ed:f7:a1:d1:f3:0d:a4:7f:b2: 16:dd:84:3f:f4:2e:6b:e6:41:f4:d3:e2:4a:79:49: c7:2b:1e:2b:d5:23:5c:52:44:72:36:8c:a6:4c:21: 1c:7b:ab:e4:68:85:29:6c:1f:38:9b:fa:8f:8d:b2: f2:00:ba:2c:ec:72:48:c5:e7:82:a3:21:8e:28:9c: f4:d8:df:f3:bb:04:da:1f:54:c4:af:40:4c:39:ac: 9a:e6:d4:cf:a0:26:0c:84:9d:99:81:8e:61:df:22: 20:91:6e:19:6b:3f:de:ad:1d:04:a4:5a:e5:58:0b: f7:3f:7e:b6:d9:4e:cf:5c:02:ff:59:a1:b7:be:9d: 7b:35:bb:a6:37:2d:25:29:14:a3:ec:50:12:45:18: 4b:30:3b:cf:54:25:d2:0e:85:26:ba:38:ba:80:eb: f0:20:78:b9:6b:ad:36:71:17:1b:e4:82:2c:ee:38: 3c:3d:94:df:a7:28:ac:a9:d0:44:36:1e:9c:74:73: 5a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B6:C7:81:A5:88:1B:ED:D5:1E:B1:FF:48:6D:00:36:48:0A:3A:E2 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:29:51:c5:4c:20:27:7f:d9:9e:3d:10:0a:a2:54:cf:e2:48: 5b:2a:2b:ea:af:98:16:75:4d:90:c4:99:e0:60:66:fa:81:a7: 29:70:dc:a0:7c:01:cd:8e:57:34:b3:8e:c6:9f:ad:2c:d8:d6: 4a:5d:47:16:ab:ea:fe:7e:78:67:61:52:86:3b:76:17:18:dd: e2:24:06:e1:94:15:d2:90:ca:63:a8:f5:8a:53:fe:62:3d:e9: 84:01:40:ba:c6:20:3b:48:60:2e:22:4c:6c:58:d8:86:bf:a8: 16:52:b7:70:fd:49:69:d9:23:16:d4:0b:09:90:31:47:24:72: 3c:06:17:85:fc:97:81:fb:a5:1a:02:88:9d:bb:e8:b4:a5:80: f6:7c:26:19:11:85:d1:90:a9:ea:95:cb:fb:59:45:ae:db:89: 43:9e:f6:9a:33:df:04:88:98:66:b2:c9:e7:87:49:74:7b:be: 80:05:ee:a7:75:9f:56:e7:bd:e3:d3:08:65:85:34:6d:ec:5b: 2b:40:d4:cc:cd:29:e5:9a:79:dc:66:2e:f5:1e:79:ed:8b:cb: 49:00:8a:44:39:7c:47:22:2a:31:2c:41:8e:d4:6d:94:52:63: 72:90:05:3c:c3:99:55:79:87:2d:52:13:23:4d:f7:8b:63:45: 04:d6:6e:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNjAzMDMyMDAxWhcNMjUwNjEwMDMyMDAxWjAYMRYwFAYD VQQDEw02ODNlNjllMS0yYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOzxRnd4gvN3jtfMzKcZrcCM3yubsryKTgL8265/PGYAfTMfiuCdXt2+ph5z H/0uoNIkPkr/nmVBi11L7vVkk6Tt96HR8w2kf7IW3YQ/9C5r5kH00+JKeUnHKx4r 1SNcUkRyNoymTCEce6vkaIUpbB84m/qPjbLyALos7HJIxeeCoyGOKJz02N/zuwTa H1TEr0BMOaya5tTPoCYMhJ2ZgY5h3yIgkW4Zaz/erR0EpFrlWAv3P3622U7PXAL/ WaG3vp17NbumNy0lKRSj7FASRRhLMDvPVCXSDoUmuji6gOvwIHi5a602cRcb5IIs 7jg8PZTfpyisqdBENh6cdHNaKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHC2x4Gl iBvt1R6x/0htADZICjriMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQKVHFTCAnf9mePRAKolTP4khbKivqr5gWdU2QxJngYGb6gacpcNyg fAHNjlc0s47Gn60s2NZKXUcWq+r+fnhnYVKGO3YXGN3iJAbhlBXSkMpjqPWKU/5i PemEAUC6xiA7SGAuIkxsWNiGv6gWUrdw/Ulp2SMW1AsJkDFHJHI8BheF/JeB+6Ua Aoidu+i0pYD2fCYZEYXRkKnqlcv7WUWu24lDnvaaM98EiJhmssnnh0l0e76ABe6n dZ9W573j0whlhTRt7FsrQNTMzSnlmnncZi71Hnnti8tJAIpEOXxHIioxLEGO1G2U UmNykAU8w5lVeYctUhMjTfeLY0UE1m5O -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:15 2025 by rpki-client