$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: PDseP/W7SnZo1TmQFtqDF2BQuoGIeeVhgDRs5wp419s= Subject key identifier: 7D:CF:F4:B9:00:43:47:C1:3E:C9:94:EB:FD:40:16:FD:33:02:C7:AF Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 48 Signing time: Sat 31 May 2025 06:56:02 +0000 Manifest this update: Sat 31 May 2025 06:56:01 +0000 Manifest next update: Sat 07 Jun 2025 06:56:01 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: w8anFPZ2U1vAn8DCmNb1FhC+Dq7ManfcZ5yvEzObZyE=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: May 31 06:56:01 2025 GMT Not After : Jun 7 06:56:01 2025 GMT Subject: CN=683aa802-1c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:a0:3a:c2:11:04:32:9f:78:02:4b:5d:d9: 34:0b:83:c7:3a:de:e9:0e:e3:2f:f5:2c:ae:73:4e: 8e:a0:f0:06:be:b1:67:ee:4c:69:6d:13:2b:68:2f: f5:b0:3d:b7:87:4b:fa:f2:34:af:e5:29:59:e7:d9: ed:97:1e:1c:5e:da:c5:47:71:1a:69:40:fd:af:5a: 61:6b:a9:3f:2f:65:2d:11:05:2e:06:00:c9:f0:e8: e3:ed:ba:b8:a5:e6:ed:6e:c1:08:35:fa:16:3c:aa: b7:c9:9b:30:f3:82:37:16:7d:78:9c:03:5b:a1:e4: 0a:50:3e:d7:18:df:fe:2c:d9:2a:ae:36:8c:4e:6c: b6:bd:5c:51:01:d1:58:c8:15:36:1b:d8:76:17:5c: 3f:7a:dd:c0:35:b6:18:fe:e9:ea:ce:0d:ef:2a:ea: e9:a7:f2:77:a5:44:72:b6:2e:84:89:27:46:d5:73: c5:75:e2:6e:ee:79:f0:2e:37:3f:6e:52:b6:16:a3: 88:85:8d:65:44:de:9a:37:e1:10:b7:ec:84:1e:b5: 52:b1:e4:da:17:d6:f7:4f:bd:d8:90:3c:b5:c6:cf: d1:01:61:63:0f:00:da:59:38:60:5d:8d:ef:ae:0d: 0e:dc:24:bc:2b:52:b5:10:14:58:fa:f7:5a:0f:d4: 2e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CF:F4:B9:00:43:47:C1:3E:C9:94:EB:FD:40:16:FD:33:02:C7:AF X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:58:05:de:c6:0a:a7:fa:53:e8:83:e5:30:3f:8e:53:c5:7e: a1:06:5a:5a:6c:7a:2f:55:cb:25:51:2b:62:f1:a0:c7:7b:a9: 81:1d:ab:7e:0a:49:9d:14:03:bc:07:2c:09:75:83:21:60:1e: aa:d3:9a:52:cb:23:ec:1c:4d:3a:9c:f7:c4:d9:51:92:af:f0: a5:47:43:9a:95:fd:37:2b:e3:48:f2:85:9f:e0:90:c2:b3:24: 33:6f:b6:2d:ec:ef:06:e1:b9:eb:87:84:94:89:04:f3:0c:65: 8e:f4:82:8d:60:aa:ed:ac:a0:9a:5a:bd:b3:76:31:fe:5e:ae: 0d:36:1a:04:63:7f:d4:a2:84:31:3f:aa:49:df:13:b8:6b:dd: 0f:1f:33:c7:e9:e9:18:37:05:71:59:7c:2f:e2:6f:e3:7b:c2: 0d:d5:2e:83:94:5b:35:51:98:23:40:96:41:a5:03:98:c1:e0: 96:88:c6:8a:0e:46:2e:d8:91:85:e7:a8:62:7a:64:ec:d5:51: d8:8a:a6:e5:c5:fe:66:4a:e0:67:f5:0a:d0:9a:fb:d5:9f:77: 2a:df:2a:b7:37:85:73:cf:10:4b:8d:76:80:0c:35:6c:c2:d1: 17:2f:9a:2b:7a:bd:e7:cd:da:58:77:9b:60:c1:7d:10:15:b0: f8:cf:8a:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA1MzEwNjU2MDFaFw0yNTA2MDcwNjU2MDFaMBgxFjAUBgNV BAMTDTY4M2FhODAyLTFjMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTGaA6whEEMp94Aktd2TQLg8c63ukO4y/1LK5zTo6g8Aa+sWfuTGltEytoL/Ww PbeHS/ryNK/lKVnn2e2XHhxe2sVHcRppQP2vWmFrqT8vZS0RBS4GAMnw6OPturil 5u1uwQg1+hY8qrfJmzDzgjcWfXicA1uh5ApQPtcY3/4s2SquNoxObLa9XFEB0VjI FTYb2HYXXD963cA1thj+6erODe8q6umn8nelRHK2LoSJJ0bVc8V14m7uefAuNz9u UrYWo4iFjWVE3po34RC37IQetVKx5NoX1vdPvdiQPLXGz9EBYWMPANpZOGBdje+u DQ7cJLwrUrUQFFj691oP1C63AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfc/0uQBD R8E+yZTr/UAW/TMCx68wHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5YBd7GCqf6U+iD5TA/jlPFfqEGWlpsei9VyyVRK2LxoMd7qYEdq34K SZ0UA7wHLAl1gyFgHqrTmlLLI+wcTTqc98TZUZKv8KVHQ5qV/Tcr40jyhZ/gkMKz JDNvti3s7wbhueuHhJSJBPMMZY70go1gqu2soJpavbN2Mf5erg02GgRjf9SihDE/ qknfE7hr3Q8fM8fp6Rg3BXFZfC/ib+N7wg3VLoOUWzVRmCNAlkGlA5jB4JaIxooO Ri7YkYXnqGJ6ZOzVUdiKpuXF/mZK4Gf1CtCa+9WfdyrfKrc3hXPPEEuNdoAMNWzC 0Rcvmit6vefN2lh3m2DBfRAVsPjPimQ= -----END CERTIFICATE-----Generated at Sat May 31 17:57:46 2025 by rpki-client