$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft File: tO2w1sy18AyTBDdO6B9eJhrmcck.mft (raw, json) Hash identifier: h/EKAvJPyWH0Av8odeGLcqfqDeeDqun8KLPvL99Ffio= Subject key identifier: 31:0B:CF:1E:16:4B:68:55:8D:67:82:FC:D9:F9:82:CA:26:FC:16:AE Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft Manifest number: 0119 Signing time: Fri 25 Apr 2025 03:56:22 +0000 Manifest this update: Fri 25 Apr 2025 03:56:21 +0000 Manifest next update: Fri 02 May 2025 03:56:21 +0000 Files and hashes: 1: tO2w1sy18AyTBDdO6B9eJhrmcck.crl (hash: zo63NefggBb0g/E16Z/YCvOmEIUNtEpFHTzbkb99/v4=) 2: 34DED1A2798711EEA7D73423C4F9AE02.roa (hash: SUwPdVpyD78LluiuQbCbX3WP+GiH5YDeeAZtixdrMe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6, serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Validity Not Before: Apr 25 03:56:21 2025 GMT Not After : May 2 03:56:21 2025 GMT Subject: CN=680b07e5-2834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:43:80:cc:dc:18:96:73:c1:b7:f7:3d:f1:b8: cc:1f:b4:ae:d0:87:95:e0:c4:31:9f:36:a5:5a:c6: 55:96:d2:31:9e:8e:e9:8a:06:3b:7d:7e:28:7c:23: 17:b6:0c:d9:bb:2c:e4:c6:93:3d:9e:5e:dd:3e:15: f3:62:c7:72:51:84:bb:06:94:a2:39:ab:70:74:22: 7b:4b:a6:61:5c:17:ad:b6:e3:26:77:68:57:e5:0b: 6c:47:6b:3b:ce:59:fe:1d:68:13:b8:4d:8e:bf:5c: 8b:63:e2:59:cf:d2:dd:fd:62:36:cc:b0:5f:8e:a2: 1e:b6:0d:d1:46:54:56:d2:7a:ca:e8:0d:16:8b:a7: 69:03:4f:7d:71:54:38:0f:fa:b6:b3:1b:4a:a4:fc: 24:80:e2:9d:d9:9a:0e:3e:cc:eb:3d:6d:40:7f:65: 1c:44:5d:4f:c7:89:45:13:94:05:b7:f9:16:9c:16: 0a:06:9e:0f:c7:1b:47:25:3d:37:0d:cd:4d:65:5f: ca:2e:fa:f0:53:59:f7:3c:61:22:d0:26:26:1f:41: e3:e8:ec:63:25:9b:64:59:b6:d3:13:ab:53:63:45: cb:6f:1a:5d:70:93:9b:cd:85:5f:c7:7e:ed:f9:91: 63:1b:53:85:cb:a1:5a:c6:64:c7:60:31:33:58:71: 5f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0B:CF:1E:16:4B:68:55:8D:67:82:FC:D9:F9:82:CA:26:FC:16:AE X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:96:6e:c8:c9:62:7e:06:61:0e:f9:94:d2:26:2f:86:fc:3c: c0:ab:53:6b:75:07:8f:cc:24:5a:00:cb:d3:5e:21:10:82:81: e5:47:56:ca:1f:8f:21:80:bd:0b:6c:06:5f:42:10:89:3b:f8: 17:23:b2:cd:c3:b8:a3:b3:1c:17:d8:86:c2:d3:3f:b3:9e:25: 2f:02:74:89:1b:30:4c:9c:96:ad:77:64:65:bc:96:7b:81:6e: 6b:e8:50:3f:a2:70:ce:22:ef:1b:bb:86:28:3f:c3:ad:92:be: f3:83:a0:01:93:6e:78:06:74:53:d8:b6:b5:b3:fc:3c:0e:32: 8f:c9:5b:04:d9:84:0b:7b:14:66:2f:dc:e1:8b:5f:02:50:e1: d9:35:85:db:5c:a9:2a:25:54:1f:79:9f:b8:20:a7:e4:17:37: c0:9e:b0:78:c4:fe:62:84:17:60:d8:2b:a1:1f:f6:fa:d2:75: 7f:43:d3:08:75:0b:2f:9d:9c:33:0a:90:1d:e8:fd:58:9c:12: 56:bc:0f:84:f8:bb:d4:fc:f1:e1:5d:c8:85:00:bb:a0:c4:74: f3:10:17:43:ae:b4:fa:25:f6:08:06:f6:b2:94:ea:3d:d5:c2: 89:1c:a0:1e:68:d8:05:bc:3c:22:af:07:76:84:b6:be:f9:2c: 47:24:b9:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZBQzYxMTAvBgNVBAUTKEI0RURCMEQ2Q0NCNUYwMEM5MzA0Mzc0RUU4MUY1RTI2 MUFFNjcxQzkwHhcNMjUwNDI1MDM1NjIxWhcNMjUwNTAyMDM1NjIxWjAYMRYwFAYD VQQDEw02ODBiMDdlNS0yODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kOAzNwYlnPBt/c98bjMH7Su0IeV4MQxnzalWsZVltIxno7pigY7fX4ofCMX tgzZuyzkxpM9nl7dPhXzYsdyUYS7BpSiOatwdCJ7S6ZhXBettuMmd2hX5QtsR2s7 zln+HWgTuE2Ov1yLY+JZz9Ld/WI2zLBfjqIetg3RRlRW0nrK6A0Wi6dpA099cVQ4 D/q2sxtKpPwkgOKd2ZoOPszrPW1Af2UcRF1Px4lFE5QFt/kWnBYKBp4PxxtHJT03 Dc1NZV/KLvrwU1n3PGEi0CYmH0Hj6OxjJZtkWbbTE6tTY0XLbxpdcJObzYVfx37t +ZFjG1OFy6FaxmTHYDEzWHFf+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDELzx4W S2hVjWeC/Nn5gsom/BauMB8GA1UdIwQYMBaAFLTtsNbMtfAMkwQ3TugfXiYa5nHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkFDNi9BMUI2Q0JFQTc5 N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThBeVRCRGRPNkI5ZUpocm1j Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkFDNi9BMUI2Q0JFQTc5N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThB eVRCRGRPNkI5ZUpocm1jY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAplm7IyWJ+BmEO+ZTSJi+G/DzAq1NrdQePzCRaAMvTXiEQgoHlR1bK H48hgL0LbAZfQhCJO/gXI7LNw7ijsxwX2IbC0z+zniUvAnSJGzBMnJatd2RlvJZ7 gW5r6FA/onDOIu8bu4YoP8Otkr7zg6ABk254BnRT2La1s/w8DjKPyVsE2YQLexRm L9zhi18CUOHZNYXbXKkqJVQfeZ+4IKfkFzfAnrB4xP5ihBdg2CuhH/b60nV/Q9MI dQsvnZwzCpAd6P1YnBJWvA+E+LvU/PHhXciFALugxHTzEBdDrrT6JfYIBvaylOo9 1cKJHKAeaNgFvDwirwd2hLa++SxHJLkA -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:59 2025 by rpki-client