$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: iCL0N/yd0DbWajxng1u4zoN+ImTzuq9KD7granflXX0= Subject key identifier: A6:1C:AB:F4:60:6E:64:72:17:E6:D6:2D:2E:8B:77:B4:D8:30:F3:51 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0137 Signing time: Fri 25 Apr 2025 03:32:56 +0000 Manifest this update: Fri 25 Apr 2025 03:32:55 +0000 Manifest next update: Fri 02 May 2025 03:32:55 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 3qBZ8gaOLJP5Hl+S/7N0CmB+b2+0P3ZzVxvN2DL+vU8=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Apr 25 03:32:55 2025 GMT Not After : May 2 03:32:55 2025 GMT Subject: CN=680b0267-2d6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5d:5a:16:39:24:d8:8a:3b:4f:e1:c6:dd:54: 67:33:81:02:3a:e1:5b:6e:d3:48:b7:20:c4:98:24: 66:12:19:5b:0b:3c:78:1a:32:db:c0:f6:48:58:44: 67:c4:60:19:e7:80:06:61:fd:5b:31:fa:69:0e:f2: 47:51:de:03:04:18:90:ed:90:8d:69:dd:2b:1f:b6: 2d:eb:41:19:54:ec:22:a5:e7:92:dc:00:9c:b0:aa: 05:bc:34:71:f5:4c:bf:36:72:cf:4c:ec:45:6a:30: 76:1a:13:59:89:6f:8d:a7:fc:c6:88:08:aa:47:f5: 3a:ae:c1:10:95:08:25:f9:82:b8:34:c7:d2:a1:14: e9:d1:42:46:77:67:f1:85:a4:c9:c9:3b:a4:ef:a2: 9e:e0:6a:b9:5d:1c:f1:45:12:47:7e:aa:98:8c:64: c2:ef:63:b2:ba:a5:81:17:e1:e4:55:fc:d0:ac:a6: 16:a7:cb:e6:ee:d3:8b:3b:11:fc:95:16:f6:38:17: 8e:d3:15:2a:e4:93:a2:40:0e:07:a0:43:08:3d:6f: 9c:75:c2:af:9a:d8:6e:c6:39:c2:f4:82:de:c5:44: 18:d9:28:25:80:59:ef:8f:f6:be:4c:ba:0c:3d:3a: 0b:3e:b3:ef:73:f7:77:b0:f9:7f:ce:05:df:a3:f3: 92:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1C:AB:F4:60:6E:64:72:17:E6:D6:2D:2E:8B:77:B4:D8:30:F3:51 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b5:fa:18:b4:7a:48:5e:d2:78:28:5d:ab:41:18:d3:8e:55: 61:c8:f4:bb:c8:0e:33:ef:73:50:2f:0b:cc:f4:0e:61:a1:7e: dc:b2:c4:10:a0:91:83:2a:60:bf:76:c6:f9:19:6e:5c:90:27: 2f:d8:d3:13:9e:de:fb:c8:cd:38:17:8e:1a:37:b7:af:ba:8e: 68:ac:bd:6c:73:c7:98:a9:ea:5c:1b:96:ee:c2:e7:e8:31:a9: 32:31:4d:a7:bf:9c:1e:88:8e:53:9d:6f:28:7d:40:cd:ae:b4: 5e:8a:ee:52:8c:de:21:e3:b5:e8:c4:6f:d0:84:96:2d:5f:da: ca:dd:f3:ff:ed:ee:db:52:a9:54:54:28:aa:0b:3a:d0:b2:26: 49:66:17:aa:3c:9c:13:30:84:b7:b1:5f:f8:23:82:aa:a3:66: 28:79:9b:dd:d3:ef:72:f7:e0:e5:f5:e3:2d:ed:7e:75:cd:ba: ee:c0:e2:e2:2f:cd:68:8e:dc:4c:aa:20:a9:45:63:70:03:30: 0b:8e:f9:5a:d7:52:b2:56:fc:c4:3a:e1:56:9b:74:9e:75:bb: 47:0c:f3:f5:60:34:83:a2:66:8c:35:b3:ef:78:a8:a6:61:7d: a8:4d:c6:24:06:e2:ad:02:d0:52:d0:ea:9a:5a:dd:63:15:ff: 80:74:c9:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwNDI1MDMzMjU1WhcNMjUwNTAyMDMzMjU1WjAYMRYwFAYD VQQDEw02ODBiMDI2Ny0yZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV1aFjkk2Io7T+HG3VRnM4ECOuFbbtNItyDEmCRmEhlbCzx4GjLbwPZIWERn xGAZ54AGYf1bMfppDvJHUd4DBBiQ7ZCNad0rH7Yt60EZVOwipeeS3ACcsKoFvDRx 9Uy/NnLPTOxFajB2GhNZiW+Np/zGiAiqR/U6rsEQlQgl+YK4NMfSoRTp0UJGd2fx haTJyTuk76Ke4Gq5XRzxRRJHfqqYjGTC72OyuqWBF+HkVfzQrKYWp8vm7tOLOxH8 lRb2OBeO0xUq5JOiQA4HoEMIPW+cdcKvmthuxjnC9ILexUQY2SglgFnvj/a+TLoM PToLPrPvc/d3sPl/zgXfo/OSSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYcq/Rg bmRyF+bWLS6Ld7TYMPNRMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAftfoYtHpIXtJ4KF2rQRjTjlVhyPS7yA4z73NQLwvM9A5hoX7cssQQ oJGDKmC/dsb5GW5ckCcv2NMTnt77yM04F44aN7evuo5orL1sc8eYqepcG5buwufo MakyMU2nv5weiI5TnW8ofUDNrrReiu5SjN4h47XoxG/QhJYtX9rK3fP/7e7bUqlU VCiqCzrQsiZJZheqPJwTMIS3sV/4I4Kqo2YoeZvd0+9y9+Dl9eMt7X51zbruwOLi L81ojtxMqiCpRWNwAzALjvla11KyVvzEOuFWm3SedbtHDPP1YDSDomaMNbPveKim YX2oTcYkBuKtAtBS0OqaWt1jFf+AdMln -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:52 2025 by rpki-client