$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: 8YZ1K5MG2kgunnFKV4TsnOY42ULyTIbwkrhD74FMFe4= Subject key identifier: 9B:A2:F7:70:EE:B1:45:45:B3:E9:C9:F9:A2:63:71:EF:84:84:35:A2 Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 026F Signing time: Fri 25 Apr 2025 01:28:22 +0000 Manifest this update: Fri 25 Apr 2025 01:28:22 +0000 Manifest next update: Fri 02 May 2025 01:28:22 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: +8CVSqpSlxBn3k17KjIn3czicWUpBu1MCmZhM5WPWz8=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: aPI8mVL7Dstx7y3IRo2S4CN1FA4wN8FwOnV7yts7LdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586, serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Validity Not Before: Apr 25 01:28:22 2025 GMT Not After : May 2 01:28:22 2025 GMT Subject: CN=680ae536-c6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:14:7b:f7:77:c3:d3:be:0d:e5:f5:4b:d8:10: 5b:1f:0d:97:cc:6f:42:a0:86:80:1c:69:70:c7:17: da:ce:35:bf:8a:ea:72:94:3c:81:3e:82:5f:11:9d: 2d:7f:13:73:7a:5e:dc:f8:e3:f4:bb:e5:45:f8:ec: 1e:da:e0:80:16:3b:52:90:1f:8c:5e:7f:1c:94:98: 97:60:6f:23:d7:e2:af:57:e9:29:e6:33:74:49:b2: e8:ba:ed:03:9f:e0:fd:63:ed:11:ba:66:ba:a2:0f: 75:2a:2b:68:ce:95:5c:18:14:4f:07:61:ea:f4:5c: 28:c0:6b:fc:d9:55:9d:c2:13:87:27:ac:ac:72:11: bb:7e:e9:62:5b:35:da:98:b6:25:ef:77:8d:c8:e2: ee:26:17:ae:43:20:a6:31:52:08:15:8a:37:f1:d3: 6f:d2:a0:07:a5:6c:a4:0e:d2:6f:19:4b:7f:71:f3: d6:8c:fa:ef:3b:d7:09:bc:79:7b:79:b9:87:3a:28: bf:26:65:63:3b:c5:17:31:1b:2f:45:9b:d8:5f:18: 3c:e1:3c:08:29:54:e0:7b:52:9c:a5:70:8c:7f:cc: 9f:13:f8:a1:c3:24:0c:1e:bc:e6:08:00:de:6b:5f: 07:26:a4:4a:88:8a:31:f9:dc:22:2e:7a:09:f2:6e: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A2:F7:70:EE:B1:45:45:B3:E9:C9:F9:A2:63:71:EF:84:84:35:A2 X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:fc:28:1c:b3:d3:a9:62:c8:4e:88:24:50:ef:71:36:dc:8a: f4:7c:16:62:14:05:d4:2c:5b:52:69:05:c8:79:2d:98:2a:48: 64:97:11:94:df:ec:13:40:12:05:58:70:ec:39:aa:e1:58:6a: 0d:03:ce:30:47:1a:3f:5e:1f:7f:2f:89:65:f9:c9:8f:c7:b7: ed:02:1c:3a:81:e5:ff:ec:40:db:3d:05:2c:6c:71:bb:6e:ef: bd:8e:f9:d3:19:01:07:f2:e9:cc:76:07:9e:e9:aa:33:76:8f: 1f:da:8e:70:0b:f2:7a:68:1e:d7:0c:99:89:45:28:8c:be:a5: ed:8b:0b:d1:04:66:80:66:e2:99:be:ef:1f:12:b0:d5:b5:1d: 9a:a1:13:f0:99:de:c8:0d:a1:6f:99:74:f1:23:82:4a:32:8c: 41:6c:61:2f:7b:2b:ac:55:02:36:e3:9d:f2:f4:19:6e:cd:bb: 5c:65:70:12:a8:df:35:97:2d:58:89:b8:15:ac:57:c7:0c:a4: f6:9f:fb:37:39:e1:7d:59:f8:95:a1:98:75:28:43:4c:e5:de: ee:0d:bd:10:75:85:23:08:5a:2a:84:3e:e5:6e:cc:4f:a8:19: bb:b8:8e:2d:cb:ab:9f:c0:90:5e:37:f6:82:d4:e6:8e:de:8c: 02:7e:eb:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjUwNDI1MDEyODIyWhcNMjUwNTAyMDEyODIyWjAYMRYwFAYD VQQDEw02ODBhZTUzNi1jNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRR793fD074N5fVL2BBbHw2XzG9CoIaAHGlwxxfazjW/iupylDyBPoJfEZ0t fxNzel7c+OP0u+VF+Owe2uCAFjtSkB+MXn8clJiXYG8j1+KvV+kp5jN0SbLouu0D n+D9Y+0Ruma6og91KitozpVcGBRPB2Hq9FwowGv82VWdwhOHJ6yschG7fuliWzXa mLYl73eNyOLuJheuQyCmMVIIFYo38dNv0qAHpWykDtJvGUt/cfPWjPrvO9cJvHl7 ebmHOii/JmVjO8UXMRsvRZvYXxg84TwIKVTge1KcpXCMf8yfE/ihwyQMHrzmCADe a18HJqRKiIox+dwiLnoJ8m5y5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJui93Du sUVFs+nJ+aJjce+EhDWiMB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+/Cgcs9OpYshOiCRQ73E23Ir0fBZiFAXULFtSaQXIeS2YKkhklxGU 3+wTQBIFWHDsOarhWGoNA84wRxo/Xh9/L4ll+cmPx7ftAhw6geX/7EDbPQUsbHG7 bu+9jvnTGQEH8unMdgee6aozdo8f2o5wC/J6aB7XDJmJRSiMvqXtiwvRBGaAZuKZ vu8fErDVtR2aoRPwmd7IDaFvmXTxI4JKMoxBbGEveyusVQI2453y9BluzbtcZXAS qN81ly1YibgVrFfHDKT2n/s3OeF9WfiVoZh1KENM5d7uDb0QdYUjCFoqhD7lbsxP qBm7uI4ty6ufwJBeN/aC1OaO3owCfuvX -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:18 2025 by rpki-client