$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: id/2DL03bWczVglwkwhKB2jQplqE5Wc7VAHDR8OtDS8= Subject key identifier: E8:88:18:55:E0:1A:2B:16:D7:2A:70:06:43:3B:CD:D0:67:02:C4:CC Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 0376 Signing time: Fri 25 Apr 2025 00:41:04 +0000 Manifest this update: Fri 25 Apr 2025 00:41:03 +0000 Manifest next update: Fri 02 May 2025 00:41:03 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: 22UH3OpLovvONhI3jv5vCN3tInt1X/eph0eoqoDSgNY=) 2: 0484BF6EF76311EC93951455C4F9AE02.roa (hash: ycFGkMxe7h4Ku30iu/P421qHyOaZ/lm2w5Y03BcYNz8=) 3: 3F7E8DCAA45C11EC845FEA36C4F9AE02.roa (hash: DbGKbMecwcykqDAfU21+x6Kvm9Z6g5WTzg4SdqXRisc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Apr 25 00:41:03 2025 GMT Not After : May 2 00:41:03 2025 GMT Subject: CN=680ada1f-07a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3b:99:6b:ce:dd:ce:a5:52:fa:37:3d:67:d8: 50:86:39:ef:bd:45:bc:3a:7b:fc:c9:4b:18:e0:89: cf:c1:64:92:a1:d6:4a:89:db:6d:44:cb:eb:7d:41: 30:5d:5c:af:5d:c0:e0:8e:b0:ec:8c:62:73:90:b6: 60:d6:a8:4c:27:48:1c:a7:4b:97:99:58:03:15:e2: 24:85:d9:70:ea:f2:1e:e7:53:cf:ab:7e:cd:8d:f6: db:15:50:8f:89:13:8b:5e:d8:ca:e0:b4:02:4c:5d: bb:a7:74:df:63:f8:58:2c:9a:47:93:53:48:7d:00: 15:76:50:04:ba:34:63:36:65:81:dd:0e:c9:17:7c: d1:e1:5e:af:69:fa:b1:a7:2a:c6:e0:6b:83:a4:67: 12:21:31:12:ab:eb:6c:30:62:1c:3e:e4:9f:9d:9e: 31:a5:27:ce:bb:ef:71:c2:b4:7d:29:e8:1f:02:1c: ce:30:5d:60:16:7b:c7:59:53:3a:5f:24:18:5e:5a: 2f:98:0c:fc:e2:11:d8:4e:fa:b4:91:96:68:b5:22: a9:4c:74:3e:58:82:9a:d0:54:a5:8e:c6:7c:35:43: 6a:f8:d5:ac:42:08:1c:2b:a5:db:a3:35:89:8f:0d: ba:d3:34:25:29:39:0d:91:1f:50:3a:fe:42:74:be: 3c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:88:18:55:E0:1A:2B:16:D7:2A:70:06:43:3B:CD:D0:67:02:C4:CC X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:01:c6:ba:95:a1:72:7e:25:1e:3f:4a:96:88:8d:13:3e:b3: 68:55:6c:7f:9b:6a:80:0a:bb:53:da:06:f9:4e:cf:a9:59:90: 7c:73:e9:6b:80:e0:81:35:f9:39:a8:8d:8a:30:a1:88:b6:3e: 91:81:35:e6:10:24:7a:fd:09:43:12:a6:a2:83:5d:fc:86:b6: a0:13:c8:8a:e5:92:4d:e5:6f:27:ff:d1:1d:cc:f1:01:30:c4: 4f:20:a6:42:91:7a:c8:c5:cb:85:e8:08:50:49:cf:8e:56:97: b2:2b:89:6a:08:08:54:32:72:4a:71:e3:da:0b:c5:a3:2c:e9: 74:5b:fa:3a:9a:4e:57:36:e4:f3:09:c4:83:03:c1:3d:32:91: 24:4b:4f:0c:8d:ff:f7:e4:1f:5f:c9:45:61:01:0c:00:f1:ee: 76:a6:9a:af:46:d6:2d:9e:fe:97:6c:fd:74:f4:ad:74:7c:a8: c2:9d:83:55:03:dc:6b:8d:da:db:a2:ee:b2:6e:61:ab:1f:b9: 1e:62:4e:e2:41:c4:f3:a4:c1:15:f4:9a:f8:61:96:b6:6f:0f: 68:aa:1d:4d:4c:22:d1:57:c3:5a:24:e8:24:f1:1c:42:25:8f: cc:41:69:60:e5:16:b0:73:cc:6c:f4:c2:32:f0:62:64:cc:da: c8:00:32:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjUwNDI1MDA0MTAzWhcNMjUwNTAyMDA0MTAzWjAYMRYwFAYD VQQDEw02ODBhZGExZi0wN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5juZa87dzqVS+jc9Z9hQhjnvvUW8Onv8yUsY4InPwWSSodZKidttRMvrfUEw XVyvXcDgjrDsjGJzkLZg1qhMJ0gcp0uXmVgDFeIkhdlw6vIe51PPq37NjfbbFVCP iROLXtjK4LQCTF27p3TfY/hYLJpHk1NIfQAVdlAEujRjNmWB3Q7JF3zR4V6vafqx pyrG4GuDpGcSITESq+tsMGIcPuSfnZ4xpSfOu+9xwrR9KegfAhzOMF1gFnvHWVM6 XyQYXlovmAz84hHYTvq0kZZotSKpTHQ+WIKa0FSljsZ8NUNq+NWsQggcK6XbozWJ jw260zQlKTkNkR9QOv5CdL48lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiIGFXg GisW1ypwBkM7zdBnAsTMMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiAca6laFyfiUeP0qWiI0TPrNoVWx/m2qACrtT2gb5Ts+pWZB8c+lr gOCBNfk5qI2KMKGItj6RgTXmECR6/QlDEqaig138hragE8iK5ZJN5W8n/9EdzPEB MMRPIKZCkXrIxcuF6AhQSc+OVpeyK4lqCAhUMnJKcePaC8WjLOl0W/o6mk5XNuTz CcSDA8E9MpEkS08Mjf/35B9fyUVhAQwA8e52ppqvRtYtnv6XbP109K10fKjCnYNV A9xrjdrbou6ybmGrH7keYk7iQcTzpMEV9Jr4YZa2bw9oqh1NTCLRV8NaJOgk8RxC JY/MQWlg5Rawc8xs9MIy8GJkzNrIADIS -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:59 2025 by rpki-client