$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft File: F61gXQbH7QoUSFwCoS8AFwmiLWI.mft (raw, json) Hash identifier: EyHlIabWLDFfU+0/u6j/Bt1In2XS0TDn+NR84kxtV6c= Subject key identifier: CA:26:3B:49:C5:1C:10:08:8B:39:39:AE:3D:E6:88:73:E9:D1:95:CB Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft Manifest number: 013A Signing time: Fri 25 Apr 2025 03:31:30 +0000 Manifest this update: Fri 25 Apr 2025 03:31:30 +0000 Manifest next update: Fri 02 May 2025 03:31:30 +0000 Files and hashes: 1: F61gXQbH7QoUSFwCoS8AFwmiLWI.crl (hash: lFVa08hbbXG1drTcZlyKM2umLzg3jNcW+Syoo2Nr1Ko=) 2: 0294C902459511EE982FBC6DC4F9AE02.roa (hash: ImURD0YXIXR8XStDPLYGz5z7015ogkyNT0YFkxGE7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7, serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Validity Not Before: Apr 25 03:31:30 2025 GMT Not After : May 2 03:31:30 2025 GMT Subject: CN=680b0212-ee6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:88:df:7b:69:ed:7f:d3:82:1d:c0:52:02: 3a:96:e3:8e:55:65:dd:96:a3:45:42:fb:f3:89:b3: 72:6f:38:71:e2:01:59:73:a9:b9:2d:7c:ae:86:48: 02:02:29:17:27:6c:77:49:29:84:93:f4:8d:d8:11: 8d:f2:dc:06:ab:22:59:ba:aa:c8:5e:c0:35:9b:f9: 4f:58:f6:02:e7:49:27:24:63:11:09:3c:68:2c:95: 86:34:f2:e0:1d:cb:a7:33:c4:3c:40:69:7b:fc:11: af:0b:a9:58:8b:37:e1:c0:97:5d:78:94:6b:10:60: cc:69:94:27:de:d9:7b:fc:90:dc:53:97:2e:a6:7e: 47:0c:05:89:42:7e:3d:36:c9:f3:a6:b0:a9:46:78: 59:ee:c1:c1:38:a8:8b:a0:d2:65:85:4e:88:b8:ed: 20:9d:dd:77:a3:38:3c:aa:04:02:b7:db:76:35:75: c0:cf:2c:ad:21:22:24:95:f8:a0:20:ee:e7:a7:e5: 0e:00:1f:09:0a:c5:5f:47:96:db:d8:15:25:44:fd: b4:9e:78:3e:f5:3e:a2:41:84:85:4d:7d:1c:27:d5: 66:fa:7c:a9:92:de:21:98:29:1b:b5:e2:46:e5:ad: d7:34:9c:76:90:77:f6:e7:38:47:44:72:8a:1f:5f: 6b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:26:3B:49:C5:1C:10:08:8B:39:39:AE:3D:E6:88:73:E9:D1:95:CB X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ed:38:1d:a0:6b:a1:a5:38:b4:68:c1:14:66:98:fd:70:ab: 32:56:59:e0:07:9d:c7:12:0f:84:0b:a6:01:f4:c7:af:43:d6: 0c:e1:73:61:dd:b4:ce:38:78:a9:de:6d:b6:28:f1:1d:e9:29: e3:d9:57:94:4e:ba:0a:62:e1:1f:f1:f3:85:40:6b:d2:f0:ab: 12:e0:2d:e6:e3:24:a6:db:b2:d7:50:54:76:ef:8d:c6:9b:85: 2d:44:90:0a:95:e8:69:c0:bf:9b:1f:2a:13:f9:53:58:d6:73: 0f:fb:35:6d:e3:84:dc:b3:2a:db:ee:63:12:5a:98:d8:4b:e8: 9f:0e:87:5b:3b:73:ff:7e:82:c3:75:33:cc:a7:3e:ec:27:e4: ed:6f:52:05:12:ac:e9:3a:13:41:7a:f9:36:fb:21:ea:1c:1a: bf:13:35:f1:63:9d:f6:3a:f3:38:d7:ca:4f:8a:83:73:7f:7b: ed:34:0b:be:07:df:86:0c:cc:1a:21:27:af:b7:ea:a3:5b:0b: ed:81:88:43:72:38:19:02:f0:05:b0:a4:76:08:fc:43:2a:58: 4c:b2:c4:0d:47:30:d1:b0:57:02:d6:ca:34:d4:a4:44:3a:eb: 39:b4:02:a6:65:9c:42:ed:1a:b1:6e:81:64:1f:ef:7a:af:0e: 48:eb:59:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFQTcxMTAvBgNVBAUTKDE3QUQ2MDVEMDZDN0VEMEExNDQ4NUMwMkExMkYwMDE3 MDlBMjJENjIwHhcNMjUwNDI1MDMzMTMwWhcNMjUwNTAyMDMzMTMwWjAYMRYwFAYD VQQDEw02ODBiMDIxMi1lZTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpOI33tp7X/Tgh3AUgI6luOOVWXdlqNFQvvzibNybzhx4gFZc6m5LXyuhkgC AikXJ2x3SSmEk/SN2BGN8twGqyJZuqrIXsA1m/lPWPYC50knJGMRCTxoLJWGNPLg HcunM8Q8QGl7/BGvC6lYizfhwJddeJRrEGDMaZQn3tl7/JDcU5cupn5HDAWJQn49 NsnzprCpRnhZ7sHBOKiLoNJlhU6IuO0gnd13ozg8qgQCt9t2NXXAzyytISIklfig IO7np+UOAB8JCsVfR5bb2BUlRP20nng+9T6iQYSFTX0cJ9Vm+nypkt4hmCkbteJG 5a3XNJx2kHf25zhHRHKKH19r2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMomO0nF HBAIizk5rj3miHPp0ZXLMB8GA1UdIwQYMBaAFBetYF0Gx+0KFEhcAqEvABcJoi1i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkVBNy9CRTY3RDcxMDQ1 OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdRb1VTRndDb1M4QUZ3bWlM V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkVBNy9CRTY3RDcxMDQ1OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdR b1VTRndDb1M4QUZ3bWlMV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw7TgdoGuhpTi0aMEUZpj9cKsyVlngB53HEg+EC6YB9MevQ9YM4XNh 3bTOOHip3m22KPEd6Snj2VeUTroKYuEf8fOFQGvS8KsS4C3m4ySm27LXUFR2743G m4UtRJAKlehpwL+bHyoT+VNY1nMP+zVt44Tcsyrb7mMSWpjYS+ifDodbO3P/foLD dTPMpz7sJ+Ttb1IFEqzpOhNBevk2+yHqHBq/EzXxY532OvM418pPioNzf3vtNAu+ B9+GDMwaISevt+qjWwvtgYhDcjgZAvAFsKR2CPxDKlhMssQNRzDRsFcC1so01KRE Ous5tAKmZZxC7RqxboFkH+96rw5I61ke -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:02 2025 by rpki-client