$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: 6U2uTFAMvaSlwwH08KcFqsQKzIfKZTJJ98tntS3kq9c= Subject key identifier: E3:9D:6F:DC:47:0D:4E:F4:C0:A8:57:C9:41:3C:FD:CC:36:F2:EC:F7 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 21BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 217A Signing time: Fri 04 Apr 2025 15:57:43 +0000 Manifest this update: Fri 04 Apr 2025 15:57:43 +0000 Manifest next update: Fri 11 Apr 2025 15:57:43 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: DWcspRDpfdjdTdfjBNfZG6zSRZZHdW7cdgOVzM/JcGs=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8636 (0x21bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF Validity Not Before: Apr 4 15:57:43 2025 GMT Not After : Apr 11 15:57:43 2025 GMT Subject: CN=67f00177-2483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a5:e3:78:63:7e:a4:8c:90:c4:b2:59:8d:c8: cb:27:29:a5:2e:90:86:96:90:b4:8e:fb:c9:62:e9: fb:c8:16:07:14:7c:d5:e0:88:70:ec:4a:78:e1:8a: b6:5b:56:1d:68:7c:7f:67:b2:d4:43:bb:fb:bb:45: a7:6a:2c:b8:de:b2:1a:2e:be:5e:78:b1:84:30:e0: e4:d1:69:d5:ae:63:f4:9e:2d:91:94:fb:b5:ba:63: 30:14:52:20:98:5d:f2:56:8b:b9:63:a2:63:a4:dd: 27:06:0a:b5:aa:b0:b1:88:e2:ef:8a:1a:ec:8d:85: f0:49:d9:c4:20:f0:bf:1f:f9:05:f2:68:c0:ea:4d: ca:2e:27:4d:3d:a0:ca:74:7b:70:99:6f:38:da:2a: 47:b3:52:c8:e7:df:ea:44:b9:c6:5a:38:c0:d0:81: f1:aa:b4:72:c7:8c:6f:6b:68:6f:2f:01:be:b9:4e: ba:d1:7c:03:f9:be:e9:1a:1f:06:de:9c:dd:e9:11: b5:c8:61:93:6c:af:7f:88:0d:a4:f9:42:6c:68:0c: 87:04:d9:e8:47:21:fa:f0:c0:de:d5:d4:03:38:76: d0:ee:24:27:a0:a5:f0:a5:c6:d4:8a:06:cf:81:62: 4e:42:6e:d4:69:2d:d7:1c:76:fc:7e:a2:da:b3:55: 81:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:9D:6F:DC:47:0D:4E:F4:C0:A8:57:C9:41:3C:FD:CC:36:F2:EC:F7 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e5:41:aa:7c:08:12:16:aa:a9:fc:c4:c6:19:d6:59:50:89: 83:af:bc:f4:8f:6d:fa:2b:3b:09:5f:bb:98:69:5b:bf:60:69: 54:e0:2b:71:36:fb:a7:3c:0d:a1:a8:4f:3c:85:ee:ab:28:2f: 9f:f1:3d:70:0c:c9:d3:7b:a5:ac:a4:5a:4f:37:1b:81:75:0c: 98:4d:ac:07:43:58:78:17:cc:fc:a3:9d:97:73:7b:33:0c:5a: 73:44:d3:2c:53:41:d3:d2:a0:69:ba:5a:a3:45:f1:17:b9:b6: 25:5d:ea:70:69:b4:eb:95:3a:7b:78:35:1c:2c:39:54:77:2d: 1b:19:52:22:ae:1a:80:aa:71:85:3a:20:61:cb:d1:43:6a:d6: 52:0f:10:3d:6d:d7:15:07:11:72:3f:3d:29:ac:c9:45:4f:a4: 6b:d5:8d:f3:c7:7d:92:27:41:72:ac:f6:e7:dc:72:1e:9e:9d: 46:86:ae:e0:d0:18:2f:97:8a:15:45:13:5a:bd:e4:d6:9b:2d: 45:1c:a7:c5:7a:d6:d2:89:fc:a1:07:90:06:8e:fe:fe:05:5a: 78:ff:64:06:6b:28:bd:76:a3:21:a0:ce:3d:9a:5d:50:92:86: 74:5c:e3:aa:46:f9:e4:9e:c0:77:09:d7:84:a6:fc:f3:cf:ab: 5e:2e:f9:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUwNDA0MTU1NzQzWhcNMjUwNDExMTU1NzQzWjAYMRYwFAYD VQQDEw02N2YwMDE3Ny0yNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaXjeGN+pIyQxLJZjcjLJymlLpCGlpC0jvvJYun7yBYHFHzV4Ihw7Ep44Yq2 W1YdaHx/Z7LUQ7v7u0Wnaiy43rIaLr5eeLGEMODk0WnVrmP0ni2RlPu1umMwFFIg mF3yVou5Y6JjpN0nBgq1qrCxiOLvihrsjYXwSdnEIPC/H/kF8mjA6k3KLidNPaDK dHtwmW842ipHs1LI59/qRLnGWjjA0IHxqrRyx4xva2hvLwG+uU660XwD+b7pGh8G 3pzd6RG1yGGTbK9/iA2k+UJsaAyHBNnoRyH68MDe1dQDOHbQ7iQnoKXwpcbUigbP gWJOQm7UaS3XHHb8fqLas1WBtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOdb9xH DU70wKhXyUE8/cw28uz3MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB25UGqfAgSFqqp/MTGGdZZUImDr7z0j236KzsJX7uYaVu/YGlU4Ctx NvunPA2hqE88he6rKC+f8T1wDMnTe6WspFpPNxuBdQyYTawHQ1h4F8z8o52Xc3sz DFpzRNMsU0HT0qBpulqjRfEXubYlXepwabTrlTp7eDUcLDlUdy0bGVIirhqAqnGF OiBhy9FDatZSDxA9bdcVBxFyPz0prMlFT6Rr1Y3zx32SJ0FyrPbn3HIenp1Ghq7g 0Bgvl4oVRRNaveTWmy1FHKfFetbSifyhB5AGjv7+BVp4/2QGayi9dqMhoM49ml1Q koZ0XOOqRvnknsB3CdeEpvzzz6teLvne -----END CERTIFICATE-----Generated at Sat Apr 5 08:09:23 2025 by rpki-client