$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: LHFnzKxXZ3F0UQ/Ow7F7N+B8UrWExOnbtl6kCfuM1Dk= Subject key identifier: C3:88:E7:32:F3:24:6A:5C:36:20:A7:35:BD:4A:F4:DE:C4:32:69:82 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 0175 Signing time: Sat 31 May 2025 03:50:22 +0000 Manifest this update: Sat 31 May 2025 03:50:22 +0000 Manifest next update: Sat 07 Jun 2025 03:50:22 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: uooMGTOP/Dd2/eq+CJbY1Jl+0AEmTsrH2/j8iNl9pl4=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: May 31 03:50:22 2025 GMT Not After : Jun 7 03:50:22 2025 GMT Subject: CN=683a7c7e-a625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:05:ed:f3:c3:58:91:8a:e7:30:83:36:dd:e2: fa:18:58:f4:06:83:5f:fc:9c:16:b1:7a:bb:e5:c2: 26:d7:d0:53:6b:cd:cb:5f:fb:43:f8:29:4a:09:9c: 4a:10:4d:31:45:28:84:4a:5c:14:7d:bb:a2:21:d8: d1:8f:11:a1:2c:ba:c9:85:d1:71:8b:64:ed:d4:b8: 27:ff:e0:52:19:e6:31:bd:56:ce:e3:88:84:a2:86: f9:c8:d5:ab:79:43:c5:9e:7c:f3:6d:a7:1f:22:81: 03:29:74:d7:21:a8:c9:2e:43:08:d5:6d:01:3d:40: c3:90:82:b7:8b:c9:29:c3:4f:e2:17:33:bb:5e:5a: 72:f4:b4:13:88:72:87:c3:c6:49:1a:a6:61:19:c6: 55:81:4e:9d:2b:62:41:fb:1e:14:34:aa:62:45:6d: e6:ab:33:88:8e:24:88:3a:c6:a0:c0:7b:29:cb:dc: ae:7c:26:2e:5e:e1:70:72:e9:ef:23:bb:e1:3e:24: a3:3c:b7:21:9e:19:3a:5e:d2:70:fb:b1:fe:29:1e: 6a:32:32:5f:0f:1f:83:2f:a8:e8:d4:21:78:6d:85: 97:2a:48:6d:ab:b5:b9:7f:3b:21:94:b7:ae:bc:f6: 2a:75:07:c8:79:ac:5e:02:11:92:68:bf:76:ae:f8: 27:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:88:E7:32:F3:24:6A:5C:36:20:A7:35:BD:4A:F4:DE:C4:32:69:82 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7c:be:47:f6:de:56:39:b0:d6:10:85:0b:58:e5:f0:66:94: 0d:d8:69:15:79:a0:21:b6:d8:e9:77:3d:14:0b:07:f1:b6:9e: dd:c5:ce:d8:67:78:f6:55:81:cb:83:63:da:26:b7:ce:b9:b3: 31:fe:53:f4:8f:8d:a6:66:86:05:c8:6d:bb:5a:c6:c2:48:7f: 7b:41:20:5b:2a:1f:dc:c7:ac:f0:2c:db:79:3b:88:64:55:cd: d1:58:42:b5:6c:a5:f9:4d:d7:3a:54:0a:1d:24:fa:12:97:8e: 1f:cc:05:5a:95:32:5d:a7:85:40:be:58:09:8b:b5:e3:aa:b5: ad:7b:6c:6a:42:e5:cc:29:b8:18:17:e7:d4:5e:26:30:02:ea: f1:41:c4:02:e2:a1:64:b4:ad:20:64:6a:70:a0:d0:2a:fa:2a: b2:cb:42:fb:1e:52:0a:b7:c9:c2:b2:77:25:fc:ab:9f:7a:1b: de:46:14:92:6c:83:e2:ea:9b:ff:30:c3:83:90:68:99:6e:01: 12:a9:1b:e0:90:f9:ed:99:c0:dc:d5:91:58:7b:c4:e4:bf:b7: ca:2b:a8:15:b6:48:a2:d4:56:4b:f5:2a:eb:33:23:1e:4b:ce: b9:b9:98:94:8f:5e:1e:27:fb:23:be:06:f7:6f:a2:5a:95:ef: b0:ec:49:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUwNTMxMDM1MDIyWhcNMjUwNjA3MDM1MDIyWjAYMRYwFAYD VQQDEw02ODNhN2M3ZS1hNjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gXt88NYkYrnMIM23eL6GFj0BoNf/JwWsXq75cIm19BTa83LX/tD+ClKCZxK EE0xRSiESlwUfbuiIdjRjxGhLLrJhdFxi2Tt1Lgn/+BSGeYxvVbO44iEoob5yNWr eUPFnnzzbacfIoEDKXTXIajJLkMI1W0BPUDDkIK3i8kpw0/iFzO7Xlpy9LQTiHKH w8ZJGqZhGcZVgU6dK2JB+x4UNKpiRW3mqzOIjiSIOsagwHspy9yufCYuXuFwcunv I7vhPiSjPLchnhk6XtJw+7H+KR5qMjJfDx+DL6jo1CF4bYWXKkhtq7W5fzshlLeu vPYqdQfIeaxeAhGSaL92rvgnTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOI5zLz JGpcNiCnNb1K9N7EMmmCMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGfL5H9t5WObDWEIULWOXwZpQN2GkVeaAhttjpdz0UCwfxtp7dxc7Y Z3j2VYHLg2PaJrfOubMx/lP0j42mZoYFyG27WsbCSH97QSBbKh/cx6zwLNt5O4hk Vc3RWEK1bKX5Tdc6VAodJPoSl44fzAValTJdp4VAvlgJi7XjqrWte2xqQuXMKbgY F+fUXiYwAurxQcQC4qFktK0gZGpwoNAq+iqyy0L7HlIKt8nCsncl/KufehveRhSS bIPi6pv/MMODkGiZbgESqRvgkPntmcDc1ZFYe8Tkv7fKK6gVtkii1FZL9SrrMyMe S865uZiUj14eJ/sjvgb3b6Jale+w7Eke -----END CERTIFICATE-----Generated at Sat May 31 17:47:23 2025 by rpki-client