$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: nOwou2b2jRLpQ0BJuaduAiQHz9k+BhABSMwMh1lqP/U= Subject key identifier: 8E:1B:FD:9E:84:59:93:5E:BC:EF:E3:A8:B0:0B:6A:F6:3A:A0:70:29 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05C1 Signing time: Thu 24 Apr 2025 22:52:00 +0000 Manifest this update: Thu 24 Apr 2025 22:51:59 +0000 Manifest next update: Thu 01 May 2025 22:51:59 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: cMNQOgco247m4EE6OOkNcSvQmPgCoodrZCRBbTCey2E=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Apr 24 22:51:59 2025 GMT Not After : May 1 22:51:59 2025 GMT Subject: CN=680ac090-a834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:58:41:4b:73:66:2a:98:3e:aa:34:48:5d:3e: e5:45:32:ee:81:2f:27:a8:a5:df:ef:29:50:bf:f1: a0:e0:80:59:86:25:cf:99:e0:c2:6d:6e:9d:39:6c: b9:c7:be:3f:34:95:26:c3:aa:2b:f8:73:4c:eb:40: 83:bc:27:28:1d:88:00:9d:94:b1:14:62:22:c3:3b: 89:70:ff:59:63:27:96:f8:7f:f9:42:9e:b0:92:bf: a1:a8:f8:ae:68:fe:dc:9c:dd:0e:26:18:33:d6:fd: 39:5a:f1:ed:6a:4c:9e:5a:c8:d4:66:d6:e4:79:c8: a5:0f:69:a6:98:e3:f9:a2:9c:2d:3a:24:d3:bb:07: b5:3c:9b:b4:d1:b1:73:88:ca:e9:4c:46:df:f6:3a: f8:e3:a0:41:94:93:43:4a:ae:0a:73:c0:07:dd:fa: 0e:45:80:43:83:e8:44:ae:08:52:50:ea:cb:75:f3: 0b:82:da:1f:14:b0:0b:d8:d7:a7:48:d1:c9:30:a6: df:6c:23:cb:f9:a4:2d:57:dc:56:26:09:52:d6:aa: a1:de:67:b9:e4:df:f5:e7:b2:a8:15:47:db:c0:24: 4b:28:0e:cc:f1:1b:87:06:44:a6:fc:f0:d8:bb:1e: 3b:db:58:63:56:97:8a:fe:f8:e0:9c:52:e5:15:91: b5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1B:FD:9E:84:59:93:5E:BC:EF:E3:A8:B0:0B:6A:F6:3A:A0:70:29 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:68:22:5d:58:6e:59:df:c0:3b:58:23:5a:8a:a4:b3:44:c4: 1f:27:10:d6:f8:d9:1f:0b:27:1a:bc:db:e5:1f:a2:d6:5f:ad: 4f:59:af:85:49:49:6b:fa:a7:e3:43:46:17:b1:09:bb:c9:5e: 7f:67:19:e8:59:a1:77:41:2c:59:4e:ce:3b:75:b5:fb:7d:bf: b8:15:29:53:aa:f5:7a:08:3c:a2:03:a7:f2:6d:f4:f7:2d:39: 83:69:b4:01:47:73:d1:91:fe:b5:86:d3:42:30:82:32:1b:49: 49:20:7b:31:f7:49:29:f7:13:de:00:6b:40:ff:db:d6:ff:3c: da:3c:04:76:06:af:75:b2:e1:a6:50:02:84:7b:67:92:7c:e9: 6c:5d:1a:f3:79:e1:f8:c1:40:60:d2:86:0c:81:d0:1d:eb:68: 76:ca:0f:de:ee:b9:6a:d5:a2:84:64:dc:37:78:5e:ef:70:7b: b0:ba:1f:59:8c:ef:8b:94:0a:94:6c:8e:b4:88:ba:30:21:a5: 9b:9f:cc:97:9c:e3:40:e8:cf:54:9f:0d:39:5d:a3:6c:ee:a0: 54:ce:86:65:0d:28:4b:18:24:f3:52:98:f2:89:4c:b0:9a:7c: 5c:bd:23:d2:9d:2a:49:da:51:d5:57:73:00:1a:4b:98:4d:6b: 99:89:8a:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNDI0MjI1MTU5WhcNMjUwNTAxMjI1MTU5WjAYMRYwFAYD VQQDEw02ODBhYzA5MC1hODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFhBS3NmKpg+qjRIXT7lRTLugS8nqKXf7ylQv/Gg4IBZhiXPmeDCbW6dOWy5 x74/NJUmw6or+HNM60CDvCcoHYgAnZSxFGIiwzuJcP9ZYyeW+H/5Qp6wkr+hqPiu aP7cnN0OJhgz1v05WvHtakyeWsjUZtbkecilD2mmmOP5opwtOiTTuwe1PJu00bFz iMrpTEbf9jr446BBlJNDSq4Kc8AH3foORYBDg+hErghSUOrLdfMLgtofFLAL2Nen SNHJMKbfbCPL+aQtV9xWJglS1qqh3me55N/157KoFUfbwCRLKA7M8RuHBkSm/PDY ux4721hjVpeK/vjgnFLlFZG1lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4b/Z6E WZNevO/jqLALavY6oHApMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcaCJdWG5Z38A7WCNaiqSzRMQfJxDW+NkfCycavNvlH6LWX61PWa+F SUlr+qfjQ0YXsQm7yV5/ZxnoWaF3QSxZTs47dbX7fb+4FSlTqvV6CDyiA6fybfT3 LTmDabQBR3PRkf61htNCMIIyG0lJIHsx90kp9xPeAGtA/9vW/zzaPAR2Bq91suGm UAKEe2eSfOlsXRrzeeH4wUBg0oYMgdAd62h2yg/e7rlq1aKEZNw3eF7vcHuwuh9Z jO+LlAqUbI60iLowIaWbn8yXnONA6M9Unw05XaNs7qBUzoZlDShLGCTzUpjyiUyw mnxcvSPSnSpJ2lHVV3MAGkuYTWuZiYpO -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:03 2025 by rpki-client