$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: FGHtvaWndEuPtKRMKD9RdmO2o2e+UlLTa4QLPUWVphs= Subject key identifier: E2:E1:16:6F:07:4D:12:65:2A:CF:0C:DD:18:E4:49:A2:AE:FD:B3:80 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: F0 Signing time: Fri 25 Apr 2025 04:24:08 +0000 Manifest this update: Fri 25 Apr 2025 04:24:07 +0000 Manifest next update: Fri 02 May 2025 04:24:07 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: kHIy89bY43UkgmptEn7lDUpbM0ansK4bmq6eyoavVCU=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Apr 25 04:24:07 2025 GMT Not After : May 2 04:24:07 2025 GMT Subject: CN=680b0e67-ae02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:68:b0:c3:1c:6b:36:5f:72:29:95:f3:37:2e: 98:58:3b:83:30:37:1e:3b:ae:2b:7e:5d:14:16:68: 5b:44:1d:93:ee:c6:23:bc:1e:7f:e2:3b:c1:97:af: 91:f9:47:8e:ea:0b:d5:93:d9:ef:29:f0:e9:2c:ea: b2:fa:ae:b1:ee:cf:2c:c7:19:46:fd:d5:f3:58:b5: c0:1b:5b:a2:1e:76:0d:fe:e7:31:ce:b8:bf:55:d4: 78:02:29:e4:45:7d:9f:43:81:f2:67:05:35:d8:9d: dd:4d:1f:60:8c:bb:6b:53:63:5d:1d:3a:2a:1b:7f: 74:f5:8f:70:76:1b:03:89:70:70:c3:9a:4e:26:d7: 29:91:f8:ef:78:67:9f:4e:19:fb:be:b4:9b:33:2d: 0c:d0:66:28:58:50:20:9d:e6:6f:cd:af:0d:70:68: 38:e2:d7:7b:6c:8c:36:c1:9d:e8:da:61:de:e7:57: 39:99:f4:e2:28:e1:0e:ed:4d:31:b5:c1:d9:a2:f0: f3:66:ef:f7:aa:3e:7c:af:cf:d5:59:38:d6:e0:13: 49:48:ef:7c:a9:e2:26:41:95:8c:5f:56:dc:3e:cd: 06:06:ea:76:cb:03:22:14:e5:32:05:af:25:57:97: 85:81:9e:81:49:90:f9:62:f8:ef:77:f9:c6:f8:44: 4d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E1:16:6F:07:4D:12:65:2A:CF:0C:DD:18:E4:49:A2:AE:FD:B3:80 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ab:35:b7:6c:89:bd:06:25:47:db:76:67:18:f9:0b:32:90: 72:ac:fc:53:f3:9f:28:bc:48:5c:7e:2b:83:b4:3c:da:dd:d1: f0:b2:f3:38:c5:6a:cf:c0:d6:e0:02:5a:29:b6:b4:2e:34:dc: e4:2d:7b:8e:34:a9:36:97:a1:7b:3d:d5:1d:86:30:68:51:0f: 10:7b:da:ec:c9:ed:2e:87:11:b1:03:ac:ac:14:dd:c8:3b:5b: df:a1:68:7d:93:be:cf:40:c3:af:2e:94:bb:49:7b:62:d4:fa: a5:2d:b7:87:d4:18:b9:09:f0:81:80:af:d2:4c:a5:c9:a3:10: f5:e8:b4:b1:a1:f3:3d:e0:4a:11:98:6b:ad:87:f5:b1:5d:a6: 2f:36:87:c1:b2:14:2f:cb:1d:62:a9:d3:db:ae:18:de:ba:d7: 47:b9:72:82:97:a1:10:af:be:2b:26:ff:65:66:26:c7:48:6d: f1:1c:6f:7f:bc:76:d0:db:df:a5:d0:0a:68:65:24:68:2a:bf: aa:b0:a8:0d:dd:0e:f7:e9:e3:f4:2b:ee:0f:51:65:b7:4a:bd: df:07:3c:7f:3f:d3:c9:de:5e:08:94:a8:51:f9:a2:ef:4d:e3: aa:08:14:45:55:82:8d:18:47:c9:83:36:46:bc:72:b7:08:ec: 27:4f:86:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUwNDI1MDQyNDA3WhcNMjUwNTAyMDQyNDA3WjAYMRYwFAYD VQQDEw02ODBiMGU2Ny1hZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWiwwxxrNl9yKZXzNy6YWDuDMDceO64rfl0UFmhbRB2T7sYjvB5/4jvBl6+R +UeO6gvVk9nvKfDpLOqy+q6x7s8sxxlG/dXzWLXAG1uiHnYN/ucxzri/VdR4Aink RX2fQ4HyZwU12J3dTR9gjLtrU2NdHToqG3909Y9wdhsDiXBww5pOJtcpkfjveGef Thn7vrSbMy0M0GYoWFAgneZvza8NcGg44td7bIw2wZ3o2mHe51c5mfTiKOEO7U0x tcHZovDzZu/3qj58r8/VWTjW4BNJSO98qeImQZWMX1bcPs0GBup2ywMiFOUyBa8l V5eFgZ6BSZD5Yvjvd/nG+ERNCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLhFm8H TRJlKs8M3RjkSaKu/bOAMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsqzW3bIm9BiVH23ZnGPkLMpByrPxT858ovEhcfiuDtDza3dHwsvM4 xWrPwNbgAloptrQuNNzkLXuONKk2l6F7PdUdhjBoUQ8Qe9rsye0uhxGxA6ysFN3I O1vfoWh9k77PQMOvLpS7SXti1PqlLbeH1Bi5CfCBgK/STKXJoxD16LSxofM94EoR mGuth/WxXaYvNofBshQvyx1iqdPbrhjeutdHuXKCl6EQr74rJv9lZibHSG3xHG9/ vHbQ29+l0ApoZSRoKr+qsKgN3Q736eP0K+4PUWW3Sr3fBzx/P9PJ3l4IlKhR+aLv TeOqCBRFVYKNGEfJgzZGvHK3COwnT4ax -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:33 2025 by rpki-client