$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: MZSZW3mjojnSB3gXNSqSUfiI/WHaPzDEe8QS0KVHEug= Subject key identifier: E3:CF:4D:67:46:EC:27:A7:CA:20:21:92:0E:91:D8:11:2C:22:94:DA Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: EE Signing time: Thu 13 Mar 2025 03:33:30 +0000 Manifest this update: Thu 13 Mar 2025 03:33:29 +0000 Manifest next update: Thu 20 Mar 2025 03:33:29 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: kxkMK/auQcify7aSEFpXIUak56b72LUUJRSZoJF9N4Y=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: OB7rtGPc0fkmD0lX/j5TtVMfzbTV8gxLM92j8j+P3vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7 Validity Not Before: Mar 13 03:33:29 2025 GMT Not After : Mar 20 03:33:29 2025 GMT Subject: CN=67d25209-d340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b6:93:d2:d8:cc:28:3d:18:0d:49:58:c8:37: 1e:cd:d4:9e:a0:76:09:3c:df:f7:7d:97:ca:5c:99: 32:74:90:73:91:38:db:e7:5a:20:07:09:54:8d:e2: d9:8e:1b:11:3b:c6:3c:ed:9b:9d:da:76:e5:f7:78: 53:f7:62:e1:9e:9c:55:7a:e2:de:d1:61:0f:d2:47: d3:a3:f7:88:39:62:cb:43:06:8e:4c:57:9c:48:f9: 20:1d:81:1d:8b:13:b9:3a:a4:15:5d:e2:9d:03:7a: 29:c3:10:da:50:6a:ea:c9:55:a3:1f:56:66:06:fb: d6:23:d3:4b:9b:06:42:3a:9a:1b:d1:68:15:4e:d5: d6:79:21:0c:63:3c:7f:8e:68:24:b3:5a:59:ff:b2: 04:a1:b3:c8:96:b8:c1:78:53:66:90:70:ea:08:62: d6:17:63:e5:df:b0:db:3b:6d:7e:59:a3:53:da:f3: b2:7a:5d:5a:f2:65:12:f9:61:ac:14:0a:3b:a1:44: ba:5c:08:c8:a7:f8:30:b4:31:26:02:d3:4e:d5:e6: 90:4a:d2:6f:ce:fb:9b:62:d3:5b:5d:28:d5:df:49: 76:f5:fe:fa:18:a7:04:d5:a8:27:7a:94:88:cd:9e: c2:20:66:3d:89:5c:dc:1f:0e:6c:93:1d:b0:2d:29: ab:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:CF:4D:67:46:EC:27:A7:CA:20:21:92:0E:91:D8:11:2C:22:94:DA X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:7b:f1:45:32:9c:5c:41:a9:f5:c8:80:60:94:e3:cd:09:a0: d9:1b:31:13:c0:7c:d8:83:cd:df:1f:4f:73:95:8c:3b:79:3b: c1:cc:bd:d0:29:4e:58:fd:56:a3:5a:e9:17:76:17:0b:9d:81: 1a:3a:43:68:9a:64:ab:b0:0a:dd:4f:61:d9:4a:50:6f:60:b9: 5b:25:ba:63:37:93:a1:d3:06:1d:d9:6b:08:50:47:30:6b:29: f4:68:0b:7a:ff:f1:08:13:9a:4f:2e:64:3d:cc:a6:81:c7:58: f7:7b:a0:ae:20:e2:31:de:ba:94:02:16:05:98:a7:e3:07:ef: 35:5a:9d:5d:9a:84:ca:66:15:d8:7c:37:17:3f:49:00:d5:58: 90:a8:10:67:72:34:1e:ee:ea:b3:61:8b:2d:5c:d4:03:32:69: c4:ec:7f:41:f7:bf:ff:36:79:ac:c4:eb:9c:2b:ce:c7:8b:63: 73:c2:ab:89:de:d0:f6:ea:04:a6:ab:4b:f4:9a:b5:9f:0a:62: c5:d6:05:0c:cb:a2:b5:cd:24:05:31:d0:74:78:87:bc:95:8e: b8:87:53:44:65:c7:48:31:04:e9:e8:dd:8b:ce:30:a4:f0:45: 28:26:8a:05:83:37:5a:2f:06:b0:b2:0b:53:67:28:c3:f2:02: de:2c:66:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwMzEzMDMzMzI5WhcNMjUwMzIwMDMzMzI5WjAYMRYwFAYD VQQDEw02N2QyNTIwOS1kMzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LaT0tjMKD0YDUlYyDcezdSeoHYJPN/3fZfKXJkydJBzkTjb51ogBwlUjeLZ jhsRO8Y87Zud2nbl93hT92LhnpxVeuLe0WEP0kfTo/eIOWLLQwaOTFecSPkgHYEd ixO5OqQVXeKdA3opwxDaUGrqyVWjH1ZmBvvWI9NLmwZCOpob0WgVTtXWeSEMYzx/ jmgks1pZ/7IEobPIlrjBeFNmkHDqCGLWF2Pl37DbO21+WaNT2vOyel1a8mUS+WGs FAo7oUS6XAjIp/gwtDEmAtNO1eaQStJvzvubYtNbXSjV30l29f76GKcE1agnepSI zZ7CIGY9iVzcHw5skx2wLSmr5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPPTWdG 7CenyiAhkg6R2BEsIpTaMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDge/FFMpxcQan1yIBglOPNCaDZGzETwHzYg83fH09zlYw7eTvBzL3Q KU5Y/VajWukXdhcLnYEaOkNommSrsArdT2HZSlBvYLlbJbpjN5Oh0wYd2WsIUEcw ayn0aAt6//EIE5pPLmQ9zKaBx1j3e6CuIOIx3rqUAhYFmKfjB+81Wp1dmoTKZhXY fDcXP0kA1ViQqBBncjQe7uqzYYstXNQDMmnE7H9B97//NnmsxOucK87Hi2NzwquJ 3tD26gSmq0v0mrWfCmLF1gUMy6K1zSQFMdB0eIe8lY64h1NEZcdIMQTp6N2LzjCk 8EUoJooFgzdaLwawsgtTZyjD8gLeLGbB -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client