$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft File: 9bGvaeQg85sCMjAnVBm6VPjOGos.mft (raw, json) Hash identifier: KJth42X1EkyKEGlC8Epz7O8ti4esplMMoK07ispn9LY= Subject key identifier: AC:2F:45:62:48:E3:92:0C:3B:76:EE:DB:BE:56:48:5A:86:F6:97:6C Authority key identifier: F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B Certificate issuer: /CN=A9117CE3/serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft Manifest number: 48 Signing time: Fri 25 Apr 2025 05:16:56 +0000 Manifest this update: Fri 25 Apr 2025 05:16:55 +0000 Manifest next update: Fri 02 May 2025 05:16:55 +0000 Files and hashes: 1: 9bGvaeQg85sCMjAnVBm6VPjOGos.crl (hash: +6IrxzO3eM42UjiU4MUYtgJnfiNhYw6TM0vW0XrHb08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3, serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Validity Not Before: Apr 25 05:16:55 2025 GMT Not After : May 2 05:16:55 2025 GMT Subject: CN=680b1ac7-5fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ad:56:25:d3:f5:ee:57:19:27:3a:8a:e4:9f: 45:5c:c4:f7:ae:90:49:97:31:37:ec:eb:6f:85:dd: 06:ce:c9:7e:c8:f2:cf:12:6d:af:73:ff:cc:2f:f1: 03:bd:18:8b:3e:43:30:43:26:ae:4f:d2:b9:3c:60: 77:f6:ec:1f:e9:ef:28:7a:1c:8f:83:3d:23:e7:ad: e5:22:bb:46:11:d6:8e:e0:c3:02:21:a7:66:58:da: cf:c5:97:53:cb:2f:0e:5d:99:f3:a7:b3:0f:f7:e7: 9d:a9:49:06:13:5c:3a:96:4d:79:a5:24:ed:89:40: 9b:58:00:8f:13:32:e6:ec:8d:b6:ea:0c:12:4c:30: 94:72:e4:bf:33:c1:52:03:77:8f:4b:9b:bb:53:69: 58:23:a2:47:76:c8:b3:e1:d7:dc:a4:79:72:c9:af: df:2b:02:22:d4:02:23:cd:4a:b5:26:83:e1:97:26: d2:67:53:4d:25:a2:c5:97:d5:51:34:52:f3:73:86: ca:86:21:5d:6e:38:01:c7:9a:34:4b:0d:5f:c8:2b: ec:38:28:63:72:3f:e1:6d:1a:f8:d8:7f:f4:42:39: 15:dc:79:16:c5:db:ad:1d:69:66:73:23:e1:eb:1c: 64:ce:de:4f:24:58:df:26:1d:9a:db:c9:c6:f9:e2: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2F:45:62:48:E3:92:0C:3B:76:EE:DB:BE:56:48:5A:86:F6:97:6C X509v3 Authority Key Identifier: keyid:F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:02:50:80:62:3a:1d:07:fe:d9:9c:78:a8:0f:3e:c8:cc:51: df:95:a7:ec:fe:40:0a:20:2c:2e:eb:0a:51:9c:65:bf:ed:6f: 6b:81:7e:ec:ef:20:94:6a:76:b0:17:0f:92:a2:80:42:b4:1a: 01:24:3d:8c:89:49:94:ab:0f:b5:6e:c1:db:e4:09:be:27:34: f3:35:5d:11:31:e6:99:33:eb:f5:58:bb:2c:0a:5d:60:68:7a: a4:83:80:8d:5b:11:12:d7:70:93:3c:ff:4b:1d:ab:82:b8:d4: 3a:90:f9:9e:c9:a0:12:e4:40:fe:b1:21:71:37:8a:d1:2e:c9: 59:bc:9a:63:2a:98:28:81:f6:d9:6b:60:26:2d:22:f1:04:eb: ed:05:43:c4:15:d5:d8:39:4b:9b:bf:2a:cd:2e:0e:6e:9c:40: bd:e8:c2:ba:4d:9e:9a:de:fe:98:16:b4:26:e6:13:eb:be:19: f8:af:b5:57:32:00:ed:56:4c:35:68:65:a2:70:d9:82:0e:34: 7c:7d:50:ab:45:b2:cc:42:f0:e0:8a:15:8d:65:9c:67:a7:18: dc:70:9f:9e:1b:7b:4d:5b:8d:07:4f:af:64:3c:14:bf:4e:fa: 79:4c:3e:b7:a1:70:a0:da:1a:c8:10:05:38:c6:f9:81:c3:54: c5:c5:fd:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx N0NFMzExMC8GA1UEBRMoRjVCMUFGNjlFNDIwRjM5QjAyMzIzMDI3NTQxOUJBNTRG OENFMUE4QjAeFw0yNTA0MjUwNTE2NTVaFw0yNTA1MDIwNTE2NTVaMBgxFjAUBgNV BAMTDTY4MGIxYWM3LTVmZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIrVYl0/XuVxknOorkn0VcxPeukEmXMTfs62+F3QbOyX7I8s8Sba9z/8wv8QO9 GIs+QzBDJq5P0rk8YHf27B/p7yh6HI+DPSPnreUiu0YR1o7gwwIhp2ZY2s/Fl1PL Lw5dmfOnsw/3552pSQYTXDqWTXmlJO2JQJtYAI8TMubsjbbqDBJMMJRy5L8zwVID d49Lm7tTaVgjokd2yLPh19ykeXLJr98rAiLUAiPNSrUmg+GXJtJnU00losWX1VE0 UvNzhsqGIV1uOAHHmjRLDV/IK+w4KGNyP+FtGvjYf/RCORXceRbF260daWZzI+Hr HGTO3k8kWN8mHZrbycb54vyDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrC9FYkjj kgw7du7bvlZIWob2l2wwHwYDVR0jBBgwFoAU9bGvaeQg85sCMjAnVBm6VPjOGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3Q0UzLzJGRDQ1Rjc4QjQ1 QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVzQ01qQW5WQm02VlBqT0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJHdmFlUWc4NXNDTWpBblZCbTZWUGpPR29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 Q0UzLzJGRDQ1Rjc4QjQ1QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVz Q01qQW5WQm02VlBqT0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKECUIBiOh0H/tmceKgPPsjMUd+Vp+z+QAogLC7rClGcZb/tb2uBfuzv IJRqdrAXD5KigEK0GgEkPYyJSZSrD7VuwdvkCb4nNPM1XREx5pkz6/VYuywKXWBo eqSDgI1bERLXcJM8/0sdq4K41DqQ+Z7JoBLkQP6xIXE3itEuyVm8mmMqmCiB9tlr YCYtIvEE6+0FQ8QV1dg5S5u/Ks0uDm6cQL3owrpNnpre/pgWtCbmE+u+GfivtVcy AO1WTDVoZaJw2YIONHx9UKtFssxC8OCKFY1lnGenGNxwn54be01bjQdPr2Q8FL9O +nlMPrehcKDaGsgQBTjG+YHDVMXF/fs= -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:28 2025 by rpki-client