$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: bs/xIKCP8ztEcObF0Xew06GNkTa9KIq6Th/NiVHndUk= Subject key identifier: 47:FD:72:D0:F9:B1:05:E5:46:2B:04:61:79:17:7E:5E:CF:FF:E6:F3 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 063A Signing time: Thu 24 Apr 2025 22:24:43 +0000 Manifest this update: Thu 24 Apr 2025 22:24:43 +0000 Manifest next update: Thu 01 May 2025 22:24:43 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: hFoN8BTE0bUKBTG/Q8DLXHrASiE/9HTPdVndgVH0MEY=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 1444bb5xjFLOm1pP6Amz/K/2h6LYyRRZNFd2Apyax+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Apr 24 22:24:43 2025 GMT Not After : May 1 22:24:43 2025 GMT Subject: CN=680aba2b-ed59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cb:4f:55:1e:84:49:d5:67:f7:08:48:e3:a1: 21:ad:ae:7c:84:fe:bd:04:ab:e4:e5:58:7f:72:78: d8:1f:28:ff:79:a1:83:b0:d0:e2:d6:40:c9:94:d1: 3a:a3:2a:45:b3:8b:70:0d:46:4e:f8:dd:f4:df:e1: 80:fe:d5:49:9a:c1:7f:f1:e8:2d:cc:c9:08:d7:f5: 65:1f:9f:ab:29:fc:20:76:45:27:25:16:33:f7:47: 69:4a:df:0e:ca:c1:d5:6e:97:05:3d:b5:14:c1:4b: 3d:f0:ab:77:36:42:96:1e:be:52:c2:11:3a:b0:10: 91:eb:6f:ea:f6:16:fa:51:43:d1:51:c7:bf:59:0b: 61:fa:37:88:a7:c2:f9:8a:aa:4c:5e:5f:f2:21:da: 0d:c6:d4:55:eb:8d:9c:b2:c8:b2:1e:a0:42:bb:34: 9b:1e:1f:5e:75:28:44:e6:9e:f9:82:20:bf:30:a8: 37:1c:c5:48:13:c2:05:68:81:a5:a6:24:c6:d1:39: d3:b5:06:9b:6e:59:99:8e:4e:ef:33:76:70:30:01: da:06:42:00:5f:80:26:58:a6:36:ba:1e:3b:50:a0: 62:30:61:cb:62:f7:b4:6e:36:f9:e8:ec:0f:16:d6: 2f:57:25:bb:89:c5:d9:a9:ea:3f:76:88:a8:49:82: da:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FD:72:D0:F9:B1:05:E5:46:2B:04:61:79:17:7E:5E:CF:FF:E6:F3 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6a:6b:a1:6e:f9:7f:4d:54:cd:0a:f9:ac:b3:e1:70:a3:ec: 2d:a4:52:d5:76:13:c9:75:d9:82:67:bc:04:ca:af:53:41:00: 47:f9:dd:e9:3c:f3:68:08:68:3b:d2:9a:30:16:9a:3b:3d:37: e5:d4:71:64:c6:9b:5f:07:b7:0d:3d:3d:90:fd:91:41:f6:26: 95:32:4a:df:fe:7c:97:d6:d3:93:ed:03:3e:96:30:74:5e:75: 95:91:eb:03:c8:51:ee:0f:bf:43:f4:c8:a2:5f:a4:67:57:cc: f7:2d:91:9b:8e:0e:84:0a:4e:8c:c0:84:b4:65:cb:d6:1b:c5: 66:2d:b4:13:dd:ee:2b:b2:19:af:6f:f9:fb:0d:07:bd:b3:85: 28:a6:03:b7:c8:30:4a:e7:5a:22:1e:67:25:4b:86:f0:37:2a: 17:a2:f6:b1:8b:fa:39:eb:1d:d0:44:e4:26:b0:8f:cf:b6:8b: d4:e6:ea:23:5c:1d:9c:24:e2:c3:cb:e7:cb:8a:59:e7:b2:08: f5:e9:6b:32:7e:19:19:4a:7d:c0:12:e8:67:93:b0:d7:8e:1a: 16:a4:d8:f2:b1:03:09:84:d8:6a:61:d3:0b:56:12:6b:8e:c6: 9c:5b:ba:18:25:0f:16:4d:34:9a:ac:da:dc:5f:68:c6:61:db: 4f:59:10:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwNDI0MjIyNDQzWhcNMjUwNTAxMjIyNDQzWjAYMRYwFAYD VQQDEw02ODBhYmEyYi1lZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MtPVR6ESdVn9whI46Ehra58hP69BKvk5Vh/cnjYHyj/eaGDsNDi1kDJlNE6 oypFs4twDUZO+N303+GA/tVJmsF/8egtzMkI1/VlH5+rKfwgdkUnJRYz90dpSt8O ysHVbpcFPbUUwUs98Kt3NkKWHr5SwhE6sBCR62/q9hb6UUPRUce/WQth+jeIp8L5 iqpMXl/yIdoNxtRV642cssiyHqBCuzSbHh9edShE5p75giC/MKg3HMVIE8IFaIGl piTG0TnTtQabblmZjk7vM3ZwMAHaBkIAX4AmWKY2uh47UKBiMGHLYve0bjb56OwP FtYvVyW7icXZqeo/doioSYLahwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEf9ctD5 sQXlRisEYXkXfl7P/+bzMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcamuhbvl/TVTNCvmss+Fwo+wtpFLVdhPJddmCZ7wEyq9TQQBH+d3p PPNoCGg70powFpo7PTfl1HFkxptfB7cNPT2Q/ZFB9iaVMkrf/nyX1tOT7QM+ljB0 XnWVkesDyFHuD79D9MiiX6RnV8z3LZGbjg6ECk6MwIS0ZcvWG8VmLbQT3e4rshmv b/n7DQe9s4UopgO3yDBK51oiHmclS4bwNyoXovaxi/o56x3QROQmsI/PtovU5uoj XB2cJOLDy+fLilnnsgj16WsyfhkZSn3AEuhnk7DXjhoWpNjysQMJhNhqYdMLVhJr jsacW7oYJQ8WTTSarNrcX2jGYdtPWRD7 -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:13 2025 by rpki-client