$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft File: iAd3htZlI61ZmNY_aXr0LwOcKqk.mft (raw, json) Hash identifier: QIVyW++Bd4dBxDIAjQszWIT3+3SGzHAWOKlPL3+17iU= Subject key identifier: F5:93:30:89:FB:14:92:0F:7A:1A:0C:A8:90:16:A9:47:CF:5D:E2:73 Authority key identifier: 88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 Certificate issuer: /CN=A914A4E2/serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Certificate serial: 106B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft Manifest number: 105A Signing time: Thu 24 Apr 2025 17:22:39 +0000 Manifest this update: Thu 24 Apr 2025 17:22:39 +0000 Manifest next update: Thu 01 May 2025 17:22:39 +0000 Files and hashes: 1: iAd3htZlI61ZmNY_aXr0LwOcKqk.crl (hash: YUuQrjsxz+Q6YPZZ1HMzyfWNvdnpCFYTLhyCdzn00Uk=) 2: 744CCD5834F911E98AB73628C4F9AE02.roa (hash: Xi30fjCwdu1ys1ihQmxOl+2PGZkizPRtJAwU5and9os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4203 (0x106b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4E2, serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Validity Not Before: Apr 24 17:22:39 2025 GMT Not After : May 1 17:22:39 2025 GMT Subject: CN=680a735f-008d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:70:47:43:01:cd:f3:af:8c:12:0f:30:db:2c: 45:ad:a3:ba:75:6c:51:1e:9b:7f:81:15:0d:cd:6a: b6:a1:49:ca:76:7f:82:3d:c3:b5:76:82:29:c8:d8: 8f:12:71:64:75:f4:df:90:4e:5b:81:c8:a3:bb:79: a7:cc:ef:35:ce:fa:93:7f:e0:37:e7:a4:f3:a3:95: ca:1f:7d:93:6d:6c:ae:24:6a:75:e1:06:8a:37:a7: bd:f9:4a:71:b4:51:03:91:88:f4:68:49:b4:e8:f2: aa:ea:03:66:4b:cb:a8:ad:eb:c9:6c:f9:ba:de:45: 9e:33:0e:a3:67:ff:81:04:56:ce:33:eb:2c:a7:1e: 8b:63:e3:d9:f7:c0:2a:e2:bb:74:c4:46:a2:f6:e3: f6:a3:14:6d:80:ab:e0:7f:69:2d:c5:06:65:82:a4: d5:3a:94:85:db:7d:af:64:af:3c:1a:14:6a:2b:fd: 6e:fd:8a:0d:76:fd:ed:fb:8a:12:6f:d8:02:7d:5e: 54:3e:fc:3d:0d:b6:c1:ae:e7:0f:53:5f:59:6b:f5: 11:47:a4:1a:ac:da:02:c1:82:b0:56:83:ac:36:64: 0a:9b:b4:61:e0:01:a7:0e:70:21:5b:a2:3c:13:32: ac:76:22:57:29:dd:f7:cd:1c:aa:e9:11:91:42:e4: 0c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:93:30:89:FB:14:92:0F:7A:1A:0C:A8:90:16:A9:47:CF:5D:E2:73 X509v3 Authority Key Identifier: keyid:88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b8:d9:78:42:8c:31:6a:ae:dc:53:74:d0:d8:41:53:bb:16: 55:5f:4d:d7:2e:a9:50:86:d9:77:a4:97:d7:79:33:32:ca:54: ea:1f:5e:18:1a:c2:bf:db:f9:a2:73:74:9f:8f:7e:bd:35:8f: 13:74:a5:83:4f:74:b4:15:be:11:c7:46:61:78:42:c8:ec:46: b7:5e:5c:76:97:eb:c5:e4:9d:42:77:db:43:83:45:ae:cf:4b: 99:5b:76:df:10:ee:9f:dd:6c:4d:9a:dc:30:6a:c9:4b:17:45: 23:dc:7a:e4:44:42:e4:33:02:c4:2e:44:93:c4:88:1e:c1:00: e0:be:fb:be:fd:c7:20:ca:dc:a3:be:d9:a7:ab:30:11:bb:c2: 4b:8c:d3:4c:75:a2:8f:ef:e1:c6:46:c6:2b:43:1f:bc:dc:cd: af:da:91:8f:05:12:6f:a4:d9:1b:20:bb:63:23:fd:f4:96:81: 5a:f2:e2:44:ac:78:fa:21:f0:a3:d3:74:ad:4e:75:ab:8d:2b: 89:5d:70:e4:75:2d:ab:fd:19:91:a7:14:4f:e2:7e:dd:39:a1: c8:40:27:b1:60:0c:86:d3:40:4f:81:04:05:9f:4f:a2:7a:05: ed:7c:fc:94:ac:3a:8d:5c:c0:9d:3a:48:f2:c8:31:14:b5:1b: 7b:c2:30:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0RTIxMTAvBgNVBAUTKDg4MDc3Nzg2RDY2NTIzQUQ1OTk4RDYzRjY5N0FGNDJG MDM5QzJBQTkwHhcNMjUwNDI0MTcyMjM5WhcNMjUwNTAxMTcyMjM5WjAYMRYwFAYD VQQDEw02ODBhNzM1Zi0wMDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXBHQwHN86+MEg8w2yxFraO6dWxRHpt/gRUNzWq2oUnKdn+CPcO1doIpyNiP EnFkdfTfkE5bgciju3mnzO81zvqTf+A356Tzo5XKH32TbWyuJGp14QaKN6e9+Upx tFEDkYj0aEm06PKq6gNmS8uorevJbPm63kWeMw6jZ/+BBFbOM+sspx6LY+PZ98Aq 4rt0xEai9uP2oxRtgKvgf2ktxQZlgqTVOpSF232vZK88GhRqK/1u/YoNdv3t+4oS b9gCfV5UPvw9DbbBrucPU19Za/URR6QarNoCwYKwVoOsNmQKm7Rh4AGnDnAhW6I8 EzKsdiJXKd33zRyq6RGRQuQMgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWTMIn7 FJIPehoMqJAWqUfPXeJzMB8GA1UdIwQYMBaAFIgHd4bWZSOtWZjWP2l69C8DnCqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRFMi9CMjU2QjAzMDM0 RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2MVptTllfYVhyMEx3T2NL cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBZDNodFpsSTYxWm1OWV9hWHIwTHdPY0txay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRFMi9CMjU2QjAzMDM0RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2 MVptTllfYVhyMEx3T2NLcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASuNl4Qowxaq7cU3TQ2EFTuxZVX03XLqlQhtl3pJfXeTMyylTqH14Y GsK/2/mic3Sfj369NY8TdKWDT3S0Fb4Rx0ZheELI7Ea3Xlx2l+vF5J1Cd9tDg0Wu z0uZW3bfEO6f3WxNmtwwaslLF0Uj3HrkRELkMwLELkSTxIgewQDgvvu+/ccgytyj vtmnqzARu8JLjNNMdaKP7+HGRsYrQx+83M2v2pGPBRJvpNkbILtjI/30loFa8uJE rHj6IfCj03StTnWrjSuJXXDkdS2r/RmRpxRP4n7dOaHIQCexYAyG00BPgQQFn0+i egXtfPyUrDqNXMCdOkjyyDEUtRt7wjDp -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:43 2025 by rpki-client