$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: b7owroKnIJjjjf7Tv7lzl36Yd5HQOotwhgVr/fSA0uo= Subject key identifier: F7:D6:D7:99:6E:FA:7A:2D:BD:91:A2:73:1A:DC:D7:E7:19:EE:5D:05 Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 06CA Signing time: Thu 24 Apr 2025 21:58:11 +0000 Manifest this update: Thu 24 Apr 2025 21:58:11 +0000 Manifest next update: Thu 01 May 2025 21:58:11 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: xwseAUVLhZF/dw+TeZS6ZVmUz7TTaxBkbYyiuSVZaCY=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF, serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: Apr 24 21:58:11 2025 GMT Not After : May 1 21:58:11 2025 GMT Subject: CN=680ab3f3-fc48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d6:8a:a6:37:57:13:92:4e:7a:66:a0:2f:b3: 67:a8:3e:44:7a:d7:d1:16:68:87:e4:ff:c5:6a:73: 71:95:6a:47:e6:8d:ea:51:b2:54:ae:4b:1a:34:70: 26:f1:0b:0e:4e:14:e2:41:64:da:34:04:de:f2:fb: 74:92:43:dd:31:4a:aa:ba:f0:04:87:72:bc:fe:e7: d1:b3:97:31:2b:ab:74:36:9e:99:56:2f:4c:26:16: 96:38:56:85:22:d2:02:62:79:04:7b:73:dc:eb:15: 95:a5:39:3d:12:f7:a9:95:69:ee:40:8e:15:fb:6b: 6f:7d:59:e7:61:2d:83:02:95:c3:e9:a0:a9:93:80: 8e:5b:e5:de:dd:fe:cb:ae:da:98:76:d6:43:bb:bd: 69:d7:5c:93:1d:8c:90:a6:44:6b:24:7c:74:f4:2a: ad:a2:ad:08:20:ec:3b:02:fd:63:c5:86:58:55:59: 98:1b:8d:c1:bf:e2:5e:ce:d5:82:ea:56:60:d0:8c: 8f:c0:bf:34:79:51:26:00:0a:7b:cf:b6:00:83:10: 63:b3:2e:99:11:74:83:31:04:0e:65:d9:61:2f:a1: 41:ad:cf:67:b5:4f:1e:b1:17:a0:14:58:e2:e6:81: 85:6c:19:b4:54:e3:54:02:8d:5c:ec:6b:bd:08:b4: 81:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D6:D7:99:6E:FA:7A:2D:BD:91:A2:73:1A:DC:D7:E7:19:EE:5D:05 X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:38:76:b4:6f:02:eb:74:29:81:f4:f8:11:23:af:5c:e1:64: 04:82:08:c3:81:ba:24:1f:59:49:e4:82:18:42:fe:4d:06:fb: ef:1e:3c:af:3e:60:5a:4c:e8:b8:67:48:7d:e2:e2:47:45:16: 89:74:f6:f1:81:13:14:a7:b5:d9:5a:17:a0:12:fd:2a:b0:21: 86:25:1e:dc:c7:35:01:c9:36:0a:54:49:a9:bb:5d:ad:b0:5d: d1:ad:ec:17:f8:ef:37:61:ed:91:87:4f:55:c5:07:ea:04:6f: 9f:f2:b4:20:44:75:ea:a0:09:9b:92:bc:8c:af:fd:69:95:25: c9:97:2b:c5:82:64:32:77:fe:ec:08:c6:54:f1:52:1e:9c:22: 6b:9a:dc:21:7e:17:b9:56:ba:d1:38:ef:85:30:76:da:e0:19: 06:b2:5d:a6:99:6e:b6:28:d0:2b:d8:23:4e:d6:0a:6e:de:aa: ac:c5:d3:1a:a5:be:aa:8a:f8:63:3a:eb:eb:21:e5:09:a9:82: 11:5e:05:f0:d7:1d:04:92:f9:70:34:ba:17:8a:fa:0a:1a:a1: b6:4a:e9:3d:2d:83:8d:b0:57:be:4d:2c:d6:08:b9:79:6f:cf: bb:43:7e:bd:5f:05:90:42:d5:32:74:13:a5:90:dc:2e:23:dd: 71:72:18:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUwNDI0MjE1ODExWhcNMjUwNTAxMjE1ODExWjAYMRYwFAYD VQQDEw02ODBhYjNmMy1mYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7taKpjdXE5JOemagL7NnqD5EetfRFmiH5P/FanNxlWpH5o3qUbJUrksaNHAm 8QsOThTiQWTaNATe8vt0kkPdMUqquvAEh3K8/ufRs5cxK6t0Np6ZVi9MJhaWOFaF ItICYnkEe3Pc6xWVpTk9EveplWnuQI4V+2tvfVnnYS2DApXD6aCpk4COW+Xe3f7L rtqYdtZDu71p11yTHYyQpkRrJHx09Cqtoq0IIOw7Av1jxYZYVVmYG43Bv+JeztWC 6lZg0IyPwL80eVEmAAp7z7YAgxBjsy6ZEXSDMQQOZdlhL6FBrc9ntU8esRegFFji 5oGFbBm0VONUAo1c7Gu9CLSByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfW15lu +notvZGicxrc1+cZ7l0FMB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEOHa0bwLrdCmB9PgRI69c4WQEggjDgbokH1lJ5IIYQv5NBvvvHjyv PmBaTOi4Z0h94uJHRRaJdPbxgRMUp7XZWhegEv0qsCGGJR7cxzUByTYKVEmpu12t sF3RrewX+O83Ye2Rh09VxQfqBG+f8rQgRHXqoAmbkryMr/1plSXJlyvFgmQyd/7s CMZU8VIenCJrmtwhfhe5VrrROO+FMHba4BkGsl2mmW62KNAr2CNO1gpu3qqsxdMa pb6qivhjOuvrIeUJqYIRXgXw1x0EkvlwNLoXivoKGqG2Suk9LYONsFe+TSzWCLl5 b8+7Q369XwWQQtUydBOlkNwuI91xchg0 -----END CERTIFICATE-----Generated at Sat Apr 26 12:18:11 2025 by rpki-client