$ rpki-client -vvf rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft File: -0iFaOdSC8eCoRmJdikDDtBpXNs.mft (raw, json) Hash identifier: s7JhcFwCj4KDMRsVg4mnJqUl7uI0WUrP9JEQqq3u0XI= Subject key identifier: D7:C1:EF:FB:80:DD:81:2C:45:86:38:97:F4:A9:52:F7:29:5C:46:7B Authority key identifier: FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB Certificate issuer: /CN=A914459D/serialNumber=FB488568E7520BC782A119897629030ED0695CDB Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft Manifest number: 35 Signing time: Fri 25 Apr 2025 06:37:00 +0000 Manifest this update: Fri 25 Apr 2025 06:37:00 +0000 Manifest next update: Fri 02 May 2025 06:37:00 +0000 Files and hashes: 1: -0iFaOdSC8eCoRmJdikDDtBpXNs.crl (hash: 1+F0Eu4ROYlCl9tTV9/V+eEPQDWCnACkt4MtrGATHjA=) 2: 4720EB9ED60F11EFA2510540C4F9AE02.roa (hash: Q8ipP3E5cVxqpK+wwh4P32pECYgAwVU6B1+eB8QC8yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914459D, serialNumber=FB488568E7520BC782A119897629030ED0695CDB Validity Not Before: Apr 25 06:37:00 2025 GMT Not After : May 2 06:37:00 2025 GMT Subject: CN=680b2d8c-ae67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:01:1c:e2:18:45:4d:fd:d0:42:e5:fe:cb: 94:17:e5:fc:43:4f:f0:8a:5e:e7:b6:f9:d9:d2:c9: d2:8c:6d:49:e2:18:20:31:28:5c:22:3e:dd:ac:db: 4b:39:ba:a8:4d:9c:0f:4a:b2:b6:79:31:3c:a6:0a: 54:2a:3e:7e:e4:30:37:73:01:74:bc:28:27:f6:72: eb:2b:bd:3b:67:44:6a:08:d4:4c:65:b0:cb:61:12: 4b:c2:9c:e0:97:24:36:3e:ac:f6:30:ce:e3:ad:04: 50:d1:3e:b1:29:cf:c2:12:95:79:3a:fe:b7:e9:21: 2a:2b:4e:47:69:18:6a:16:8a:ef:cb:ca:8c:72:42: ec:63:30:3b:fd:bd:86:46:5f:fc:be:fa:d6:3a:3e: 75:ef:11:f1:dc:4c:5c:61:a9:e5:e1:d9:b4:0c:2f: c6:49:f0:a7:53:b9:a8:21:b6:c5:da:ce:24:58:55: aa:c7:50:a7:0b:54:8f:4e:3f:d0:9a:3c:45:9d:6c: 2d:5c:d5:0a:5c:38:8b:75:34:ae:61:e8:d3:bc:dd: 21:46:c2:31:10:23:b6:c3:70:97:18:f6:33:bc:3c: 17:ee:c6:d4:09:26:b2:7a:4a:e5:69:f0:37:05:d5: 08:68:90:e9:0d:fa:f2:e7:f0:fc:b0:22:40:76:1f: 73:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C1:EF:FB:80:DD:81:2C:45:86:38:97:F4:A9:52:F7:29:5C:46:7B X509v3 Authority Key Identifier: keyid:FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c4:b8:6a:ed:a7:53:5a:6b:2a:b3:bd:1c:2d:29:0b:62:9d: 86:d5:7b:ad:4d:4b:64:ff:fc:3c:da:39:93:25:5a:e2:d6:f5: 94:87:de:32:39:8a:71:12:fb:a7:36:87:d9:46:a7:f0:6e:c1: 16:f8:0f:1c:7c:5f:f3:34:9f:84:9e:08:d6:8d:87:1f:85:b4: 69:c0:0c:92:03:23:39:02:c0:a7:0b:ee:3e:f9:0f:76:ce:80: 1b:7e:9b:1e:f4:88:6f:ea:6b:e8:19:50:0c:f8:3e:ab:89:58: dc:13:22:f4:b8:41:22:ee:21:b7:de:fb:2c:fa:34:0a:3e:44: 0e:98:e3:55:ee:4b:fb:61:3c:f2:e1:f6:c0:8a:7b:45:89:97: d1:8d:2b:44:07:0b:63:88:a9:a2:11:f4:5e:9c:03:b5:1b:02: d4:a0:0d:2e:58:37:6c:8f:c5:2c:fe:28:21:68:bc:a5:3e:3f: 48:a0:33:de:35:43:c2:22:97:c0:f8:3e:68:c0:7e:a4:37:0e: 29:59:52:1a:3d:0d:32:f1:e7:a7:85:f0:0e:0b:84:86:b8:bd: 8d:69:38:38:58:b9:40:93:df:87:a2:ad:4a:cf:f3:58:6c:0f: bd:8b:e7:6a:fb:60:f8:0a:89:60:58:63:45:8c:10:2b:04:e0: c9:5f:67:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDU5RDExMC8GA1UEBRMoRkI0ODg1NjhFNzUyMEJDNzgyQTExOTg5NzYyOTAzMEVE MDY5NUNEQjAeFw0yNTA0MjUwNjM3MDBaFw0yNTA1MDIwNjM3MDBaMBgxFjAUBgNV BAMTDTY4MGIyZDhjLWFlNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPgQEc4hhFTf3QQuX+y5QX5fxDT/CKXue2+dnSydKMbUniGCAxKFwiPt2s20s5 uqhNnA9KsrZ5MTymClQqPn7kMDdzAXS8KCf2cusrvTtnRGoI1ExlsMthEkvCnOCX JDY+rPYwzuOtBFDRPrEpz8ISlXk6/rfpISorTkdpGGoWiu/LyoxyQuxjMDv9vYZG X/y++tY6PnXvEfHcTFxhqeXh2bQML8ZJ8KdTuaghtsXaziRYVarHUKcLVI9OP9Ca PEWdbC1c1QpcOIt1NK5h6NO83SFGwjEQI7bDcJcY9jO8PBfuxtQJJrJ6SuVp8DcF 1QhokOkN+vLn8PywIkB2H3MlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU18Hv+4Dd gSxFhjiX9KlS9ylcRnswHwYDVR0jBBgwFoAU+0iFaOdSC8eCoRmJdikDDtBpXNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0NTlELzBCM0Y2NjVBRDYw RjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhlQ29SbUpkaWtERHRCcFhO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTBpRmFPZFNDOGVDb1JtSmRpa0REdEJwWE5zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 NTlELzBCM0Y2NjVBRDYwRjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhl Q29SbUpkaWtERHRCcFhOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALTEuGrtp1NaayqzvRwtKQtinYbVe61NS2T//DzaOZMlWuLW9ZSH3jI5 inES+6c2h9lGp/BuwRb4Dxx8X/M0n4SeCNaNhx+FtGnADJIDIzkCwKcL7j75D3bO gBt+mx70iG/qa+gZUAz4PquJWNwTIvS4QSLuIbfe+yz6NAo+RA6Y41XuS/thPPLh 9sCKe0WJl9GNK0QHC2OIqaIR9F6cA7UbAtSgDS5YN2yPxSz+KCFovKU+P0igM941 Q8Iil8D4PmjAfqQ3DilZUho9DTLx56eF8A4LhIa4vY1pODhYuUCT34eirUrP81hs D72L52r7YPgKiWBYY0WMECsE4MlfZ+o= -----END CERTIFICATE-----Generated at Sat Apr 26 04:07:18 2025 by rpki-client