$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: hx8DtJNjPblCioGF7q+jPMp24a/qQosnByoEAIIrshk= Subject key identifier: 1B:5F:93:A5:11:F0:11:1C:78:8F:EE:31:36:2A:9D:89:08:58:AD:DE Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: 0123 Signing time: Fri 25 Apr 2025 03:47:50 +0000 Manifest this update: Fri 25 Apr 2025 03:47:50 +0000 Manifest next update: Fri 02 May 2025 03:47:50 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: /9sm5vzfNW9anhyPhJodkCuQlbNWl7JoWxjJ8+VoNNs=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: P/WWt5eI8v2C+zoec4Zd9OnVnDcSJ3bbXF6r7+A0KgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415, serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: Apr 25 03:47:50 2025 GMT Not After : May 2 03:47:50 2025 GMT Subject: CN=680b05e6-269b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:54:97:ba:b1:1c:ae:93:75:b8:e6:4a:3b: b0:e5:d1:da:cd:5e:63:82:22:54:1f:62:cd:a5:d2: 51:97:9a:57:1c:5c:2c:a1:cd:e6:a9:41:78:4d:dd: 8a:71:ff:1e:32:1c:31:7e:30:66:b8:19:1e:d2:25: dd:c8:00:fc:23:7c:bb:98:97:2d:3a:98:ec:c7:c1: 9c:1f:fd:bc:39:b5:bf:bc:45:65:f6:a0:b0:fc:24: 9b:e6:32:80:8f:68:1c:10:82:d3:cd:ac:af:e7:55: d6:85:e0:22:c5:a7:ee:5f:e6:f7:94:07:46:3d:22: b8:ef:f4:34:1f:b2:29:b6:46:27:b4:8f:48:0e:ea: e7:1b:28:f5:a5:a5:7c:18:82:06:e8:b7:17:36:a4: 77:19:e9:d7:e8:51:ab:13:16:05:62:6a:8c:9c:89: 89:e1:2a:43:c0:d8:ba:f6:16:d3:70:de:7e:9c:73: fe:96:e1:78:24:b0:e9:f7:2e:bc:4b:a3:60:34:ac: 57:59:e7:84:b9:d5:d7:6e:85:6e:b1:c0:b9:7a:f1: f2:9a:a6:39:de:51:d1:91:bb:07:66:3f:27:ca:49: 44:bc:13:ec:b7:12:80:2f:69:f5:7d:09:42:f2:53: 77:ee:5a:d8:82:36:36:ad:cb:0a:45:b5:d9:d6:af: 30:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5F:93:A5:11:F0:11:1C:78:8F:EE:31:36:2A:9D:89:08:58:AD:DE X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6f:68:d9:c9:01:be:e2:77:d3:53:39:ff:97:48:e2:b9:b0: 28:c5:bb:7a:4c:06:6c:68:9a:8e:e8:40:2b:bc:89:2e:57:cc: f7:33:69:77:c5:03:6a:30:fb:17:b0:9c:03:fa:15:bb:37:17: ef:3e:90:60:68:72:73:47:d3:53:cc:04:60:33:80:26:b3:05: 9b:a0:bb:1b:39:9f:09:ff:3d:91:4e:78:0b:c7:ca:df:99:90: 34:7d:3b:07:74:0f:bd:41:35:34:ba:a8:05:92:db:b8:aa:fa: 98:e5:b3:86:bb:17:47:4d:9c:40:13:d9:3b:62:31:66:32:81: 75:16:dc:0f:5c:a9:b2:85:0a:88:ac:09:8d:b0:be:18:da:28: 93:3d:89:0b:c8:81:7f:fc:02:37:74:38:48:4c:00:54:be:76: 87:1b:31:9a:28:26:73:dc:a7:0e:25:5f:ce:23:9c:4f:79:a2: ec:7b:56:3e:9e:e5:74:f4:24:b0:41:24:b2:6a:f5:57:fe:67: e3:d5:a4:8a:b2:62:b7:85:90:94:f0:78:77:08:9f:a6:ec:62: 56:53:17:c3:81:ac:8f:c2:1d:74:81:e7:6e:30:1d:30:1c:a3: 6c:a4:1f:62:b8:9e:b1:25:99:61:5b:5f:0b:05:04:2e:ab:2e: 99:e9:f2:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MTUxMTAvBgNVBAUTKDZEQTJFN0IyMDczN0Q2RkREQTI5MzExODAzMjMzODRE QzdGODAxNzIwHhcNMjUwNDI1MDM0NzUwWhcNMjUwNTAyMDM0NzUwWjAYMRYwFAYD VQQDEw02ODBiMDVlNi0yNjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLBUl7qxHK6TdbjmSjuw5dHazV5jgiJUH2LNpdJRl5pXHFwsoc3mqUF4Td2K cf8eMhwxfjBmuBke0iXdyAD8I3y7mJctOpjsx8GcH/28ObW/vEVl9qCw/CSb5jKA j2gcEILTzayv51XWheAixafuX+b3lAdGPSK47/Q0H7IptkYntI9IDurnGyj1paV8 GIIG6LcXNqR3GenX6FGrExYFYmqMnImJ4SpDwNi69hbTcN5+nHP+luF4JLDp9y68 S6NgNKxXWeeEudXXboVuscC5evHymqY53lHRkbsHZj8nyklEvBPstxKAL2n1fQlC 8lN37lrYgjY2rcsKRbXZ1q8w/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtfk6UR 8BEceI/uMTYqnYkIWK3eMB8GA1UdIwQYMBaAFG2i57IHN9b92ikxGAMjOE3H+AFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQxNS82NEI3NzYyRTY3 QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2M2FLVEVZQXlNNFRjZjRB WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQxNS82NEI3NzYyRTY3QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2 M2FLVEVZQXlNNFRjZjRBWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCib2jZyQG+4nfTUzn/l0jiubAoxbt6TAZsaJqO6EArvIkuV8z3M2l3 xQNqMPsXsJwD+hW7NxfvPpBgaHJzR9NTzARgM4AmswWboLsbOZ8J/z2RTngLx8rf mZA0fTsHdA+9QTU0uqgFktu4qvqY5bOGuxdHTZxAE9k7YjFmMoF1FtwPXKmyhQqI rAmNsL4Y2iiTPYkLyIF//AI3dDhITABUvnaHGzGaKCZz3KcOJV/OI5xPeaLse1Y+ nuV09CSwQSSyavVX/mfj1aSKsmK3hZCU8Hh3CJ+m7GJWUxfDgayPwh10geduMB0w HKNspB9iuJ6xJZlhW18LBQQuqy6Z6fKC -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:45 2025 by rpki-client