$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft File: j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft (raw, json) Hash identifier: hM3s7A0JlwP9exhqzlkCJ2O2Z+1N+bUb69tPR/ntmss= Subject key identifier: 86:57:3A:33:CB:9C:88:70:87:C4:4F:AD:01:6F:D8:DC:B2:E4:D3:2D Authority key identifier: 8F:E5:A7:C9:98:FB:8B:78:AC:33:1E:AE:83:BC:17:86:23:EE:3C:9E Certificate issuer: /CN=A913EF1D/serialNumber=8FE5A7C998FB8B78AC331EAE83BC178623EE3C9E Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft Manifest number: CD Signing time: Sun 27 Apr 2025 04:37:00 +0000 Manifest this update: Sun 27 Apr 2025 04:36:59 +0000 Manifest next update: Sun 04 May 2025 04:36:59 +0000 Files and hashes: 1: j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl (hash: GewhHghY4T+SANR1d+lph8eLzvoIizXfUBPxAWfrSqQ=) 2: 1AE7ED46ECE711EEB12F9A1FC4F9AE02.roa (hash: Ux7MrDkQdEj+Gtfnp0Wmpu2t6Z1MtA7yxD7lmndlZrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 04:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF1D, serialNumber=8FE5A7C998FB8B78AC331EAE83BC178623EE3C9E Validity Not Before: Apr 27 04:36:59 2025 GMT Not After : May 4 04:36:59 2025 GMT Subject: CN=680db46b-aecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b5:ee:02:55:f7:4b:cb:bf:e2:69:38:36:be: 02:94:71:03:d8:1d:3d:ca:66:75:2d:fe:9b:be:fc: 6a:69:e8:71:ef:4a:32:5b:dc:a3:62:c3:4c:2e:7e: 6f:a7:fc:79:44:58:38:ab:b1:80:03:fd:ea:bc:1b: 55:31:f3:53:19:1a:56:45:b2:b0:ba:4f:6b:86:ca: 64:db:34:78:0f:ab:6a:41:f5:f3:24:4f:9d:55:35: ff:88:d6:5f:a1:9d:83:b9:71:7a:67:94:09:d3:25: 2b:27:1e:86:b4:d2:7c:7b:0d:96:b4:62:d2:97:4f: f9:49:c3:b4:7c:01:4e:6d:ec:5d:28:06:8c:a3:9f: fa:12:21:22:d9:d3:a3:e3:1b:32:97:d4:7a:0b:52: 77:c4:bf:21:24:60:1d:0b:9c:4b:ea:93:e1:a9:a1: e4:e0:ea:81:9f:52:ec:62:24:63:64:20:d9:a4:11: 4f:b3:9f:c3:bd:b7:66:7a:73:d9:b5:fd:da:be:a4: bf:2c:dd:49:fe:54:c7:d6:5a:ce:57:71:3a:f8:ee: b1:6e:76:16:2e:15:a7:22:e6:9f:50:63:e0:14:cd: 35:fa:f2:60:b9:16:61:cb:9e:0f:37:52:04:8a:1b: 8e:60:4e:d7:7d:28:ab:cb:e5:f3:46:92:c6:f8:4a: 2a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:57:3A:33:CB:9C:88:70:87:C4:4F:AD:01:6F:D8:DC:B2:E4:D3:2D X509v3 Authority Key Identifier: keyid:8F:E5:A7:C9:98:FB:8B:78:AC:33:1E:AE:83:BC:17:86:23:EE:3C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:be:a8:ab:4c:7e:29:7e:fb:ad:8d:75:18:32:c3:9c:59:c5: c1:c3:a0:8e:d5:6d:19:f5:77:e4:01:a8:02:0a:6e:b2:28:88: 55:81:f1:4e:c4:34:bd:d8:12:68:ae:d4:a8:52:ee:5a:04:13: 73:df:23:1a:c9:d3:bf:ba:4b:90:2c:5e:fa:6e:7d:19:89:3f: b9:3f:28:06:f7:61:b8:06:98:74:e7:6b:c3:fa:51:57:46:6d: 4a:ee:9e:b5:de:4c:63:1f:8f:ed:4b:26:67:e2:cc:cf:3f:22: e2:ed:39:d9:9d:ca:a7:38:e1:d0:ae:95:e4:09:ec:7a:7f:dc: 3f:36:35:cb:00:00:19:8b:86:6d:ba:d8:75:1a:4c:f8:96:fb: 95:26:1c:4a:9b:2d:f0:14:ff:1c:a7:d9:81:40:6a:8d:c9:9c: 6a:b0:15:f2:95:0d:c5:f3:d8:6d:c3:08:4d:f6:60:80:bd:66: 60:5d:dc:0c:a5:09:b4:23:17:88:9f:65:65:d1:eb:25:b0:38: 68:fe:13:0a:37:6c:d2:f6:c7:f5:fb:34:21:ba:47:0d:78:67: 05:ab:f3:37:00:f3:2e:f0:0f:34:a8:3a:42:6e:ae:c2:c8:f3: de:27:f5:c9:06:79:19:0b:3c:a4:38:74:a9:8c:d0:44:18:03: da:05:e7:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGMUQxMTAvBgNVBAUTKDhGRTVBN0M5OThGQjhCNzhBQzMzMUVBRTgzQkMxNzg2 MjNFRTNDOUUwHhcNMjUwNDI3MDQzNjU5WhcNMjUwNTA0MDQzNjU5WjAYMRYwFAYD VQQDEw02ODBkYjQ2Yi1hZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbXuAlX3S8u/4mk4Nr4ClHED2B09ymZ1Lf6bvvxqaehx70oyW9yjYsNMLn5v p/x5RFg4q7GAA/3qvBtVMfNTGRpWRbKwuk9rhspk2zR4D6tqQfXzJE+dVTX/iNZf oZ2DuXF6Z5QJ0yUrJx6GtNJ8ew2WtGLSl0/5ScO0fAFObexdKAaMo5/6EiEi2dOj 4xsyl9R6C1J3xL8hJGAdC5xL6pPhqaHk4OqBn1LsYiRjZCDZpBFPs5/DvbdmenPZ tf3avqS/LN1J/lTH1lrOV3E6+O6xbnYWLhWnIuafUGPgFM01+vJguRZhy54PN1IE ihuOYE7XfSiry+XzRpLG+EoqEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZXOjPL nIhwh8RPrQFv2Nyy5NMtMB8GA1UdIwQYMBaAFI/lp8mY+4t4rDMeroO8F4Yj7jye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUYxRC9CQTlDRDhBQ0VD RTYxMUVFQUFFOUU4MUVDNEY5QUUwMi9qLVdueVpqN2kzaXNNeDZ1Zzd3WGhpUHVQ SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2otV255Wmo3aTNpc014NnVnN3dYaGlQdVBKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUYxRC9CQTlDRDhBQ0VDRTYxMUVFQUFFOUU4MUVDNEY5QUUwMi9qLVdueVpqN2kz aXNNeDZ1Zzd3WGhpUHVQSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcvqirTH4pfvutjXUYMsOcWcXBw6CO1W0Z9XfkAagCCm6yKIhVgfFO xDS92BJortSoUu5aBBNz3yMaydO/ukuQLF76bn0ZiT+5PygG92G4Bph052vD+lFX Rm1K7p613kxjH4/tSyZn4szPPyLi7TnZncqnOOHQrpXkCex6f9w/NjXLAAAZi4Zt uth1Gkz4lvuVJhxKmy3wFP8cp9mBQGqNyZxqsBXylQ3F89htwwhN9mCAvWZgXdwM pQm0IxeIn2Vl0eslsDho/hMKN2zS9sf1+zQhukcNeGcFq/M3APMu8A80qDpCbq7C yPPeJ/XJBnkZCzykOHSpjNBEGAPaBecH -----END CERTIFICATE-----Generated at Tue Apr 29 06:16:32 2025 by rpki-client