$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: l6+caj0TIKjDcJ6JIImSSNaD/yE1K2d3KJ9oZ7L1Hv0= Subject key identifier: 23:56:25:12:42:4B:5A:7B:0D:91:63:75:7B:AD:33:18:D9:91:3C:0C Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04C1 Signing time: Thu 24 Apr 2025 23:37:08 +0000 Manifest this update: Thu 24 Apr 2025 23:37:08 +0000 Manifest next update: Thu 01 May 2025 23:37:08 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: TbJvav+m/zHLz/ivfoLXrAh3DbZNC+9ZXiO82OBXlhw=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Apr 24 23:37:08 2025 GMT Not After : May 1 23:37:08 2025 GMT Subject: CN=680acb24-502e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0f:9d:c8:7e:a8:e3:c4:fb:5e:b4:3b:9a:fe: 26:f7:e7:32:84:d4:c9:a1:67:6e:23:87:89:45:b5: e9:81:9e:2e:e1:12:57:b0:b5:e3:3b:70:fb:21:9f: 64:56:cd:00:53:6f:ca:c5:64:70:b7:9f:78:90:a9: 4b:f3:85:79:e6:8c:54:18:c3:39:6c:43:8b:f5:f6: f6:54:f9:07:75:28:1a:31:21:41:0b:b4:60:a7:81: da:64:c7:2d:68:0e:d4:9c:03:a5:45:1d:ce:62:65: 0c:44:9f:02:2f:81:d2:3a:eb:1d:48:c2:a6:71:e2: 75:21:eb:05:0a:3e:ea:7b:d8:3c:00:b6:55:e5:1f: 49:bf:49:06:84:72:72:a6:a3:0e:fc:cd:7d:d5:d6: 35:40:e5:e9:f5:67:53:66:54:f6:49:22:d6:05:8f: 7b:3e:7e:29:35:6a:5c:1e:90:bb:27:71:5d:5d:38: 9e:19:3f:0e:ac:68:61:2e:de:48:b6:3c:2b:66:a5: 79:1f:35:bb:ab:4e:87:6c:9d:20:dd:92:8e:c6:46: f2:b3:27:17:d3:8a:47:ce:b0:a4:91:3e:f6:b9:7f: 95:1d:c5:e2:f0:63:6c:da:c3:3e:0f:55:c8:5d:62: fa:32:9b:03:a9:0a:1b:76:99:06:00:c0:e6:17:cc: 73:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:56:25:12:42:4B:5A:7B:0D:91:63:75:7B:AD:33:18:D9:91:3C:0C X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:47:2e:ef:a5:ad:fe:39:3b:48:7e:b5:4e:53:69:7f:76:eb: f8:55:b0:40:83:5b:62:50:92:9a:74:22:43:a5:0d:45:57:93: fa:39:5b:ed:e2:0d:bb:38:a2:ec:8f:12:ad:f6:76:aa:7d:f9: 82:e8:91:7c:fa:6c:a6:e9:e8:d8:a9:f4:93:83:24:6b:38:cb: 96:e1:36:03:39:0f:88:21:75:18:5d:0e:10:bc:29:7c:36:bc: e2:0a:34:bd:72:e6:b4:f0:a1:25:14:6c:3a:81:34:08:62:94: 28:2e:8c:f7:30:e3:d2:1b:53:c2:04:3b:01:7b:95:5a:e6:8b: c2:e8:32:7a:74:46:59:71:90:5d:af:62:dc:af:49:6d:9e:a5: 2a:57:4d:0a:f1:7d:7d:e4:a1:bb:64:78:4f:7b:64:4d:90:de: 75:2f:94:65:10:ad:a0:ce:7f:c5:f5:9f:85:b5:2b:b3:2d:47: c4:7c:1f:22:56:27:b2:07:0b:de:54:de:4f:8c:59:4a:35:8d: 91:50:ad:12:52:e2:4b:c9:3e:2d:cd:b9:0a:53:9e:63:b1:73: b1:4f:35:65:29:eb:c2:15:ed:fd:a8:27:94:3e:df:b4:52:f5: 3e:42:83:04:26:15:2f:d9:d2:07:d2:e9:73:4a:51:e0:ad:f7: 2a:bb:27:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwNDI0MjMzNzA4WhcNMjUwNTAxMjMzNzA4WjAYMRYwFAYD VQQDEw02ODBhY2IyNC01MDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQ+dyH6o48T7XrQ7mv4m9+cyhNTJoWduI4eJRbXpgZ4u4RJXsLXjO3D7IZ9k Vs0AU2/KxWRwt594kKlL84V55oxUGMM5bEOL9fb2VPkHdSgaMSFBC7Rgp4HaZMct aA7UnAOlRR3OYmUMRJ8CL4HSOusdSMKmceJ1IesFCj7qe9g8ALZV5R9Jv0kGhHJy pqMO/M191dY1QOXp9WdTZlT2SSLWBY97Pn4pNWpcHpC7J3FdXTieGT8OrGhhLt5I tjwrZqV5HzW7q06HbJ0g3ZKOxkbysycX04pHzrCkkT72uX+VHcXi8GNs2sM+D1XI XWL6MpsDqQobdpkGAMDmF8xzVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNWJRJC S1p7DZFjdXutMxjZkTwMMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwRy7vpa3+OTtIfrVOU2l/duv4VbBAg1tiUJKadCJDpQ1FV5P6OVvt 4g27OKLsjxKt9naqffmC6JF8+mym6ejYqfSTgyRrOMuW4TYDOQ+IIXUYXQ4QvCl8 NrziCjS9cua08KElFGw6gTQIYpQoLoz3MOPSG1PCBDsBe5Va5ovC6DJ6dEZZcZBd r2Lcr0ltnqUqV00K8X195KG7ZHhPe2RNkN51L5RlEK2gzn/F9Z+FtSuzLUfEfB8i VieyBwveVN5PjFlKNY2RUK0SUuJLyT4tzbkKU55jsXOxTzVlKevCFe39qCeUPt+0 UvU+QoMEJhUv2dIH0ulzSlHgrfcquydw -----END CERTIFICATE-----Generated at Sat Apr 26 15:17:49 2025 by rpki-client