$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: CUufZMvg/mMHzZu21E8dPEMIn3Y8pwkVzmJ7QAThNaY= Subject key identifier: 76:5D:4E:B2:9F:85:B9:FC:D3:A0:A2:CB:DF:89:16:5F:23:DA:65:77 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 14B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 14AE Signing time: Thu 24 Apr 2025 16:52:28 +0000 Manifest this update: Thu 24 Apr 2025 16:52:27 +0000 Manifest next update: Thu 01 May 2025 16:52:27 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: 2nm1MFhkmlK0CxpKmihtatRmqURWBHB3AQqAe6viqFo=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: Kpm1VRvUmk2GXeAxfKW1BgX1xl9xSgMJHiJXTqUoDIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5303 (0x14b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Apr 24 16:52:27 2025 GMT Not After : May 1 16:52:27 2025 GMT Subject: CN=680a6c4c-9e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:d1:fe:5f:7c:05:4e:24:9d:92:1d:33:52: 6f:dc:66:7b:0d:85:7b:76:f5:db:9e:9a:32:4c:6a: ce:2d:32:00:e1:8b:14:45:b1:53:d3:6e:3a:7f:53: 0b:d1:19:41:59:07:40:72:b9:6c:cc:46:ce:1b:ae: 78:7c:95:f0:c4:0e:44:7f:6a:a1:0d:43:60:35:04: 18:8d:7c:13:f1:ba:41:4d:da:7b:40:24:5b:58:13: 62:51:7d:ce:1d:2e:ef:65:98:a3:98:19:24:8d:23: bc:ed:4e:e8:9c:9b:14:01:3e:20:ac:47:5b:02:9c: 6a:9f:70:80:8e:88:5a:b7:aa:81:c2:e3:cc:51:62: e6:9a:c0:ce:6a:8d:9e:79:95:92:fe:0b:ac:c6:f2: a3:65:be:5b:ed:b8:62:cb:de:ab:7c:e4:d0:55:b2: 84:fa:64:78:0c:d8:eb:98:33:49:ca:28:2f:fc:6d: 16:7d:1c:7d:da:55:84:ff:7c:d7:bf:b9:39:89:cb: d0:4a:c3:e3:6c:7d:12:72:06:67:e7:57:23:5f:88: 00:15:e1:bb:f6:30:3b:b5:c1:fe:6a:27:7c:43:07: 00:a1:60:3d:a5:59:2d:c8:af:31:7c:cf:15:e5:85: 21:2b:a3:38:42:85:53:fe:51:84:df:e3:f9:d7:38: e8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5D:4E:B2:9F:85:B9:FC:D3:A0:A2:CB:DF:89:16:5F:23:DA:65:77 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:49:ac:3b:55:17:60:05:06:59:71:b4:45:91:66:fd:26:43: 2e:03:82:08:63:d7:fb:4f:18:4a:8b:0d:cd:f9:ab:55:a7:39: 93:ce:db:77:f2:84:e5:42:9d:f6:30:e7:8c:07:2d:51:74:45: e1:43:6a:79:fa:64:0b:22:c3:64:be:bf:9a:0f:5f:4a:75:b3: 6b:5f:f2:d3:ca:73:8f:a4:db:35:ab:dc:dc:8c:21:5d:e2:7f: bc:d1:e8:dc:ba:b2:70:af:d9:4a:71:e4:9c:1f:e1:dc:54:34: e8:35:c6:c9:43:2a:b6:19:f5:c7:f0:1e:9d:f7:48:06:09:87: 63:19:f8:39:69:7a:33:13:e1:af:0a:ca:fe:7f:62:6c:7a:fe: 32:39:62:05:b3:dd:f9:97:7d:f5:a0:f5:02:3d:98:57:c2:b0: cc:8f:49:c1:38:f4:c9:37:5e:18:b4:f0:1c:23:c9:c4:0e:e6: 9a:de:18:9a:15:96:2e:a2:28:85:88:29:de:7c:3b:93:61:92: 97:41:f4:ba:e9:0c:0d:14:ee:a1:dc:9f:6e:89:fd:7f:68:d7: 7e:a2:42:ff:3d:e5:a9:c3:1e:8e:01:4f:2b:e2:4c:ab:93:a9: 93:f2:f7:59:89:ed:01:dc:2f:f8:85:03:99:ac:75:7e:88:77: fb:8b:dc:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUwNDI0MTY1MjI3WhcNMjUwNTAxMTY1MjI3WjAYMRYwFAYD VQQDEw02ODBhNmM0Yy05ZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+vR/l98BU4knZIdM1Jv3GZ7DYV7dvXbnpoyTGrOLTIA4YsURbFT0246f1ML 0RlBWQdAcrlszEbOG654fJXwxA5Ef2qhDUNgNQQYjXwT8bpBTdp7QCRbWBNiUX3O HS7vZZijmBkkjSO87U7onJsUAT4grEdbApxqn3CAjohat6qBwuPMUWLmmsDOao2e eZWS/gusxvKjZb5b7bhiy96rfOTQVbKE+mR4DNjrmDNJyigv/G0WfRx92lWE/3zX v7k5icvQSsPjbH0ScgZn51cjX4gAFeG79jA7tcH+aid8QwcAoWA9pVktyK8xfM8V 5YUhK6M4QoVT/lGE3+P51zjojQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZdTrKf hbn806Ciy9+JFl8j2mV3MB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADSaw7VRdgBQZZcbRFkWb9JkMuA4IIY9f7TxhKiw3N+atVpzmTztt3 8oTlQp32MOeMBy1RdEXhQ2p5+mQLIsNkvr+aD19KdbNrX/LTynOPpNs1q9zcjCFd 4n+80ejcurJwr9lKceScH+HcVDToNcbJQyq2GfXH8B6d90gGCYdjGfg5aXozE+Gv Csr+f2Jsev4yOWIFs935l331oPUCPZhXwrDMj0nBOPTJN14YtPAcI8nEDuaa3hia FZYuoiiFiCnefDuTYZKXQfS66QwNFO6h3J9uif1/aNd+okL/PeWpwx6OAU8r4kyr k6mT8vdZie0B3C/4hQOZrHV+iHf7i9w9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:54 2025 by rpki-client