$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft File: K08yPFindrTnU4be6Dci4EViMsY.mft (raw, json) Hash identifier: 7/WDfuP8/lvI6yPQsPdhWxYAUCg4kavxVgECrRUVnp4= Subject key identifier: AD:53:39:57:AD:D8:C1:24:B6:30:F2:B3:B9:8D:92:64:B2:65:B0:42 Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0DD6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft Manifest number: 0DC9 Signing time: Thu 24 Apr 2025 15:39:17 +0000 Manifest this update: Thu 24 Apr 2025 15:39:16 +0000 Manifest next update: Thu 01 May 2025 15:39:16 +0000 Files and hashes: 1: K08yPFindrTnU4be6Dci4EViMsY.crl (hash: e6L2uHHSCUWk8tZHJ2cYeuNMuD/PKVEEvo3SXm+8LKk=) 2: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (hash: QaiwA0ii3swzDmEn5ZYRLYQTMUg0WLwS1y2KJOPdMzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3542 (0xdd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Apr 24 15:39:16 2025 GMT Not After : May 1 15:39:16 2025 GMT Subject: CN=680a5b25-e73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:50:f1:8d:1c:a1:55:3f:79:50:12:eb:88: 67:73:c3:fd:98:dc:58:1a:03:b4:7f:74:ca:75:b1: ea:57:08:ec:39:f6:96:cc:7a:7f:a2:b9:9b:a7:bf: 88:53:fd:0d:f7:fc:f0:80:3d:1d:07:ab:3a:38:db: ae:39:55:a1:9b:ad:79:24:17:49:ca:a8:30:b2:ca: 40:f2:5a:2e:3c:ab:63:fc:87:8e:ef:ec:ff:f9:bb: 83:84:86:53:06:c4:6e:c4:25:81:50:0e:25:71:68: bc:e1:4e:64:02:f2:bc:12:5d:54:4b:11:e1:f3:2c: b5:fb:28:ff:60:ce:c0:e5:4a:cb:2c:75:e1:7b:0d: f6:48:92:f7:bc:27:3a:76:4f:52:63:a4:2b:81:8f: cd:3c:a4:91:dd:c1:af:dc:41:41:df:65:ca:4a:f6: 08:4a:b3:dc:d1:02:80:ba:49:22:25:ef:91:20:f1: 9a:a3:ff:0a:77:bf:8e:b3:9c:5a:6b:b4:8f:b1:99: 8d:68:20:0e:df:4b:01:80:ee:d1:a5:45:81:76:51: 8e:78:83:ec:08:ad:79:11:2a:9a:64:03:e8:79:e1: 70:07:90:6e:3b:58:70:a4:0e:0f:90:cb:c2:b9:f1: 1a:49:43:51:98:bb:e2:0b:23:20:5b:ed:28:8d:53: 3c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:53:39:57:AD:D8:C1:24:B6:30:F2:B3:B9:8D:92:64:B2:65:B0:42 X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:91:f1:45:be:1d:be:38:11:ba:99:27:1e:98:42:98:04:ff: 4a:1d:63:3b:19:88:26:db:c9:0e:c6:be:2b:b4:8e:ab:28:35: 6b:4d:c3:5e:68:9c:8f:9c:8b:7d:20:3c:56:f9:b3:dd:30:e3: f2:e9:f9:d7:99:7e:eb:a9:e0:12:d7:ac:d1:ff:bd:5e:80:fb: d4:00:9b:6e:75:1b:9b:61:ad:32:76:11:81:99:cf:9e:6d:24: c8:d4:f5:ee:e6:ab:1e:69:78:85:f7:39:7a:00:bc:ba:91:0c: 3f:54:cd:bf:5c:e0:02:64:0a:57:0b:1d:a8:fd:f1:6f:93:8b: 9b:d9:8e:90:04:9b:71:3a:04:46:d2:98:d8:26:0f:79:05:61: e1:6a:46:a7:1f:7d:2a:6f:93:14:8b:b4:2d:d7:a6:32:03:3c: 4c:ed:9f:f4:d4:5c:a2:df:8d:f3:3f:4a:83:5d:b9:75:80:cd: 6f:b0:72:04:07:77:8d:e4:ca:dc:1b:8f:c5:18:4c:10:d5:1a: 4c:be:6d:5a:82:10:bd:99:18:6b:9c:2d:65:72:60:52:8f:9e: 68:2c:54:46:86:bc:57:b6:3a:e0:8b:d1:59:0f:b1:71:a3:f9: 75:c4:39:0e:17:cd:28:51:8a:2d:45:34:d7:25:5e:17:f3:82: bb:b8:28:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjUwNDI0MTUzOTE2WhcNMjUwNTAxMTUzOTE2WjAYMRYwFAYD VQQDEw02ODBhNWIyNS1lNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkpQ8Y0coVU/eVAS64hnc8P9mNxYGgO0f3TKdbHqVwjsOfaWzHp/ormbp7+I U/0N9/zwgD0dB6s6ONuuOVWhm615JBdJyqgwsspA8louPKtj/IeO7+z/+buDhIZT BsRuxCWBUA4lcWi84U5kAvK8El1USxHh8yy1+yj/YM7A5UrLLHXhew32SJL3vCc6 dk9SY6QrgY/NPKSR3cGv3EFB32XKSvYISrPc0QKAukkiJe+RIPGao/8Kd7+Os5xa a7SPsZmNaCAO30sBgO7RpUWBdlGOeIPsCK15ESqaZAPoeeFwB5BuO1hwpA4PkMvC ufEaSUNRmLviCyMgW+0ojVM8KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1TOVet 2MEktjDys7mNkmSyZbBCMB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi9FRTk1RkQ0MkI3NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRy VG5VNGJlNkRjaTRFVmlNc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2kfFFvh2+OBG6mScemEKYBP9KHWM7GYgm28kOxr4rtI6rKDVrTcNe aJyPnIt9IDxW+bPdMOPy6fnXmX7rqeAS16zR/71egPvUAJtudRubYa0ydhGBmc+e bSTI1PXu5qseaXiF9zl6ALy6kQw/VM2/XOACZApXCx2o/fFvk4ub2Y6QBJtxOgRG 0pjYJg95BWHhakanH30qb5MUi7Qt16YyAzxM7Z/01Fyi343zP0qDXbl1gM1vsHIE B3eN5MrcG4/FGEwQ1RpMvm1aghC9mRhrnC1lcmBSj55oLFRGhrxXtjrgi9FZD7Fx o/l1xDkOF80oUYotRTTXJV4X84K7uCgg -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:44 2025 by rpki-client