$ rpki-client -vvf rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft File: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft (raw, json) Hash identifier: puinuVRkyaUgcZaYPg43q3gDZ5gfuPRFyQbF7sT+/rw= Subject key identifier: 75:3E:27:04:7D:05:24:87:FA:4C:2B:D7:8C:57:AD:4C:BF:22:06:65 Authority key identifier: 0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 Certificate issuer: /CN=A9132742/serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft Manifest number: 03C3 Signing time: Fri 25 Apr 2025 00:24:57 +0000 Manifest this update: Fri 25 Apr 2025 00:24:57 +0000 Manifest next update: Fri 02 May 2025 00:24:56 +0000 Files and hashes: 1: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl (hash: ilceOPdMzw5BN8sVe5DOWKEzIcXeEXFSLop1aOxpzbg=) 2: 41A312C684BB11EC95CF1D6DC4F9AE02.roa (hash: gOa0TpZKNAKtEp1z7Y7hA0Mkc96+IudmzfWq1Ab24PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132742, serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Validity Not Before: Apr 25 00:24:57 2025 GMT Not After : May 2 00:24:56 2025 GMT Subject: CN=680ad659-38da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c9:42:09:1d:df:76:19:f7:68:f3:91:c6:f1: c6:30:54:32:8f:95:38:fc:9e:e9:9d:58:fe:e4:67: 4c:4f:47:d1:01:99:12:f5:ef:7e:5b:9d:ad:07:69: 9a:fd:79:0d:2a:1f:eb:69:ea:26:43:27:6d:0e:f2: 4a:92:3f:d1:2d:4f:5c:ce:b2:d2:04:f8:77:c2:35: 1d:8a:46:57:32:2d:b1:48:ca:ba:9f:0c:25:13:f6: 1c:3a:c8:d3:50:b1:74:81:bb:91:20:98:6a:42:34: 47:29:de:e9:9d:7f:a8:04:4d:1b:12:30:0b:01:31: 3b:05:d4:40:f7:33:06:a5:f8:1d:57:df:52:67:79: da:38:7b:cc:67:9b:a0:95:ac:96:dc:bc:d9:45:f7: 79:46:3c:77:bf:4b:5b:9f:af:77:eb:aa:8f:82:b8: c2:0e:54:63:52:fd:12:bc:b2:dd:04:3c:60:bf:ce: 0a:da:29:eb:f5:79:51:71:02:ef:4b:be:a7:26:32: eb:84:03:f8:3f:73:b9:ab:7d:8d:04:ca:61:0c:9f: d6:7d:81:a5:aa:7e:f5:d1:44:48:4b:43:7f:20:54: 35:e5:df:97:e6:8f:fc:d5:29:a6:d2:21:e7:ac:20: 04:4c:88:a9:3e:42:5f:36:5e:09:2b:66:97:05:2c: 1e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3E:27:04:7D:05:24:87:FA:4C:2B:D7:8C:57:AD:4C:BF:22:06:65 X509v3 Authority Key Identifier: keyid:0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1f:43:32:65:52:37:74:5e:9b:0f:0f:b7:8f:41:70:a6:4e: 66:81:ca:88:cc:2e:85:e7:0a:5e:f9:f0:ee:3e:5d:91:2e:c3: ec:2c:f3:77:14:de:04:14:f9:5e:c4:15:28:a1:c1:21:c2:1a: 38:e1:a2:73:ea:4d:4e:38:d1:24:4e:3e:81:e2:fa:e8:95:8d: 80:66:3c:68:c5:ef:f6:48:88:fc:79:ba:9e:bc:c0:5b:70:92: a5:8f:6c:10:13:44:1f:73:9b:15:54:85:48:b3:f6:5f:f3:d4: 7c:76:fe:b2:6c:6d:af:a2:64:7e:fa:d3:d5:9e:e5:58:31:97: a4:91:a8:08:bf:be:f2:75:43:28:6d:49:96:5e:e9:b1:70:5c: 10:54:1f:84:a9:2f:27:28:8b:48:1c:e5:29:05:c6:52:19:d6: 8c:81:a1:e5:9a:65:17:fc:87:6c:29:56:65:20:f7:44:a7:fa: 69:5d:33:54:0a:49:5f:03:fa:a5:95:a9:33:29:08:a7:0a:c8: 53:59:75:af:b5:a8:aa:99:92:36:56:d4:60:15:61:93:dd:0a: 7d:b9:3f:e5:fc:51:64:45:b6:05:78:15:61:3f:fb:b0:e7:8d: e8:0c:ad:ad:15:03:df:77:f2:ff:dd:64:fd:32:12:09:f9:ca: 69:af:ab:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3NDIxMTAvBgNVBAUTKDBDRUUwRDk2NzczRDVEREFENDY3OUUwRTgzOUE4REMx MjY2OUUyMzIwHhcNMjUwNDI1MDAyNDU3WhcNMjUwNTAyMDAyNDU2WjAYMRYwFAYD VQQDEw02ODBhZDY1OS0zOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxslCCR3fdhn3aPORxvHGMFQyj5U4/J7pnVj+5GdMT0fRAZkS9e9+W52tB2ma /XkNKh/raeomQydtDvJKkj/RLU9czrLSBPh3wjUdikZXMi2xSMq6nwwlE/YcOsjT ULF0gbuRIJhqQjRHKd7pnX+oBE0bEjALATE7BdRA9zMGpfgdV99SZ3naOHvMZ5ug layW3LzZRfd5Rjx3v0tbn69366qPgrjCDlRjUv0SvLLdBDxgv84K2inr9XlRcQLv S76nJjLrhAP4P3O5q32NBMphDJ/WfYGlqn710URIS0N/IFQ15d+X5o/81Smm0iHn rCAETIipPkJfNl4JK2aXBSweQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU+JwR9 BSSH+kwr14xXrUy/IgZlMB8GA1UdIwQYMBaAFAzuDZZ3PV3a1GeeDoOajcEmaeIy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc0Mi8wNDE1RDZGRTg0 QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhkclVaNTRPZzVxTndTWnA0 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPNE5sbmM5WGRyVVo1NE9nNXFOd1NacDRqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc0Mi8wNDE1RDZGRTg0QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhk clVaNTRPZzVxTndTWnA0akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2H0MyZVI3dF6bDw+3j0Fwpk5mgcqIzC6F5wpe+fDuPl2RLsPsLPN3 FN4EFPlexBUoocEhwho44aJz6k1OONEkTj6B4vrolY2AZjxoxe/2SIj8ebqevMBb cJKlj2wQE0Qfc5sVVIVIs/Zf89R8dv6ybG2vomR++tPVnuVYMZekkagIv77ydUMo bUmWXumxcFwQVB+EqS8nKItIHOUpBcZSGdaMgaHlmmUX/IdsKVZlIPdEp/ppXTNU CklfA/qllakzKQinCshTWXWvtaiqmZI2VtRgFWGT3Qp9uT/l/FFkRbYFeBVhP/uw 543oDK2tFQPfd/L/3WT9MhIJ+cppr6tn -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:44 2025 by rpki-client