$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: KGW3T7CW9ykIZ02HFnoQOw/sG56Xvo8BM3427hJxkaA= Subject key identifier: 75:51:EE:58:BA:2F:0C:27:A4:3F:BD:6A:CA:40:82:FB:F9:D2:E8:02 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 0105 Signing time: Sun 27 Apr 2025 03:56:49 +0000 Manifest this update: Sun 27 Apr 2025 03:56:49 +0000 Manifest next update: Sun 04 May 2025 03:56:49 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: rjOFrJtQ8F6ZvyGCohouIXebEdcpBgvHsC+il1kN5IA=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: OB7rtGPc0fkmD0lX/j5TtVMfzbTV8gxLM92j8j+P3vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Apr 27 03:56:49 2025 GMT Not After : May 4 03:56:49 2025 GMT Subject: CN=680dab01-7008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:46:73:57:71:1e:02:64:29:4a:09:3c:ec: bb:1a:fe:fa:55:4c:fe:8d:94:3e:a8:e7:9b:74:83: c0:c5:26:c8:68:76:21:f4:fb:80:40:f4:3c:8b:9b: b2:45:b5:4b:f9:2a:f2:48:65:24:60:68:06:93:64: b9:00:c1:d8:04:2b:8f:b0:71:e3:99:fe:c5:5b:98: 36:50:a6:fe:a1:73:5d:f3:c4:cf:ad:26:79:6c:47: 98:ad:49:86:52:b2:e9:45:60:0f:02:b8:a7:0c:92: ad:5c:19:6b:30:26:ce:91:ae:75:68:9a:09:5d:04: 9e:90:53:23:5d:40:26:43:f1:c9:54:0e:3b:27:24: bb:c1:83:ec:b3:e6:a1:e9:24:6b:60:46:31:8b:73: 8b:ee:f7:0d:40:4f:13:8f:66:a4:37:f9:93:54:67: 39:73:21:a8:b7:30:ea:7b:03:85:71:c5:6c:0c:b7: b5:84:67:76:2c:5e:f2:d1:9a:ac:09:c9:02:b4:30: f2:4f:21:a4:0d:93:9f:d2:92:2b:1f:a1:02:13:19: b5:08:17:60:72:7a:dc:be:a9:fb:67:e6:d7:2f:3f: 3b:da:79:c9:49:a3:b2:8e:11:c3:7c:79:6d:39:33: 71:b1:76:10:6e:16:f0:2a:ac:ea:85:16:83:ec:f1: c5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:51:EE:58:BA:2F:0C:27:A4:3F:BD:6A:CA:40:82:FB:F9:D2:E8:02 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:87:ed:fd:ad:c7:76:fd:cf:26:ef:6e:24:fd:f7:d8:59:91: 99:f7:8d:28:50:4b:02:20:96:cf:c2:31:18:ae:a6:5a:8b:e7: cc:b4:91:1e:d2:26:cc:cb:76:36:33:eb:1b:8b:f8:0a:5c:dd: 7e:37:57:90:15:59:4f:41:fc:4b:3a:50:e0:d1:19:8f:86:34: 6a:a4:07:a7:55:12:c4:d7:3c:e5:a3:f0:60:d3:df:bb:1b:b3: 50:59:75:89:97:9f:ba:9d:d3:f3:66:63:03:ce:99:9b:1d:ef: ec:92:ca:ab:84:38:3b:f1:f8:58:13:5a:f3:8e:ea:dc:24:7b: 8d:cb:79:90:d8:d0:74:38:98:22:86:05:ed:71:3f:f6:23:7f: 43:f7:a5:46:3c:22:dd:0b:68:f8:ea:a2:fe:16:10:31:54:71: 2e:f9:27:c8:d4:26:73:5f:99:8f:c5:32:a4:7b:42:18:9a:56: 01:be:75:63:4f:bb:75:ae:03:af:84:a3:1f:bf:18:4a:7e:7e: 64:6b:56:45:b6:9e:03:9a:77:8f:d5:4a:16:74:47:06:c4:e8: 9b:30:3b:18:af:59:e7:b0:e7:f6:75:8b:38:e8:0e:d6:95:69: 65:8d:6a:a1:2a:23:6c:65:0d:c9:cc:33:3a:59:ed:da:d0:78: d6:72:6e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNDI3MDM1NjQ5WhcNMjUwNTA0MDM1NjQ5WjAYMRYwFAYD VQQDEw02ODBkYWIwMS03MDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwehGc1dxHgJkKUoJPOy7Gv76VUz+jZQ+qOebdIPAxSbIaHYh9PuAQPQ8i5uy RbVL+SrySGUkYGgGk2S5AMHYBCuPsHHjmf7FW5g2UKb+oXNd88TPrSZ5bEeYrUmG UrLpRWAPArinDJKtXBlrMCbOka51aJoJXQSekFMjXUAmQ/HJVA47JyS7wYPss+ah 6SRrYEYxi3OL7vcNQE8Tj2akN/mTVGc5cyGotzDqewOFccVsDLe1hGd2LF7y0Zqs CckCtDDyTyGkDZOf0pIrH6ECExm1CBdgcnrcvqn7Z+bXLz872nnJSaOyjhHDfHlt OTNxsXYQbhbwKqzqhRaD7PHFvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVR7li6 LwwnpD+9aspAgvv50ugCMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAph+39rcd2/c8m724k/ffYWZGZ940oUEsCIJbPwjEYrqZai+fMtJEe 0ibMy3Y2M+sbi/gKXN1+N1eQFVlPQfxLOlDg0RmPhjRqpAenVRLE1zzlo/Bg09+7 G7NQWXWJl5+6ndPzZmMDzpmbHe/sksqrhDg78fhYE1rzjurcJHuNy3mQ2NB0OJgi hgXtcT/2I39D96VGPCLdC2j46qL+FhAxVHEu+SfI1CZzX5mPxTKke0IYmlYBvnVj T7t1rgOvhKMfvxhKfn5ka1ZFtp4DmneP1UoWdEcGxOibMDsYr1nnsOf2dYs46A7W lWlljWqhKiNsZQ3JzDM6We3a0HjWcm5x -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:13 2025 by rpki-client on console.sobornost.net