$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: AoHIljNtVuPCkcUp/pcMkDuTphnHlfMlQx681W1XlGw= Subject key identifier: 0B:00:E4:C8:F0:C7:B3:E6:B7:7C:54:81:D2:23:4A:90:69:62:34:D6 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0877 Signing time: Thu 24 Apr 2025 20:34:54 +0000 Manifest this update: Thu 24 Apr 2025 20:34:53 +0000 Manifest next update: Thu 01 May 2025 20:34:53 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: 3oVJWk7P+CyWWP6gZpEVj7IjM2eaSXKwyq67Z5fXXr4=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2209 (0x8a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Apr 24 20:34:53 2025 GMT Not After : May 1 20:34:53 2025 GMT Subject: CN=680aa06d-d354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:88:d3:88:d2:12:8b:68:a2:08:02:db:f4:86: 47:27:a2:10:97:64:24:1e:5f:9a:35:15:27:06:cd: 0e:a8:48:e6:df:06:6a:87:88:12:73:2c:12:78:01: 72:cb:fd:e0:40:2b:56:71:66:fe:c7:39:5b:c0:68: 84:86:0a:46:22:ca:d1:a8:6b:92:16:7b:9d:1e:dd: 15:34:4e:43:e6:02:52:5a:e0:bf:63:23:b0:8d:04: c1:50:b8:ac:57:a9:d8:50:48:ce:9c:4a:b1:5e:29: e8:1b:de:19:41:a4:1f:51:87:fc:b2:ae:d5:71:b3: 82:f7:83:0d:fb:09:e6:11:8a:30:db:49:c9:49:9b: f3:72:ea:87:66:ee:45:25:dd:03:b3:31:69:6e:af: 08:fc:3f:06:9f:5a:db:64:c2:14:04:27:f7:31:39: 00:2c:ae:ce:4b:96:88:e3:c6:07:40:15:1a:0f:d8: d1:c7:4d:a1:1f:c6:34:d1:40:ee:c5:c9:0e:64:be: 89:1a:f7:60:f4:b6:b2:e4:24:2f:9d:20:c2:30:df: 77:e8:fb:5e:e1:eb:52:07:cf:16:29:c8:8d:d3:79: c8:1f:08:78:d9:3c:9a:fc:bf:b8:f8:76:ab:43:97: 62:99:cc:73:3d:77:ce:7a:b2:3f:68:17:8b:0e:4b: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:00:E4:C8:F0:C7:B3:E6:B7:7C:54:81:D2:23:4A:90:69:62:34:D6 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ec:14:21:d1:20:ec:a0:67:39:7f:ec:fa:b0:df:dd:34:92: 52:9e:b9:80:47:df:2c:58:4b:10:5d:09:b7:43:a9:30:e3:cf: 65:ea:41:86:61:f3:28:5f:ea:c0:92:1d:fc:45:09:ac:4d:00: e4:de:cc:b5:b8:66:03:e4:4e:f6:0e:ab:a9:f2:6d:f7:3c:fd: e3:ca:e9:9c:f3:61:00:68:e6:bb:57:e2:9c:99:d2:a4:f6:7d: ce:a3:45:e4:b8:47:4f:3f:4a:ea:bb:a7:87:9d:90:ae:48:c5: 5c:af:77:4b:ae:d1:88:57:83:09:4d:6c:2d:22:9e:09:01:47: e7:49:8f:95:d8:6a:e0:b6:e5:23:88:32:35:bc:cd:32:ca:b5: b5:c5:e9:cd:92:2f:21:f8:2d:82:84:b0:8b:d1:77:d5:f6:46: 84:d5:71:04:d3:6a:87:39:4d:05:34:04:3f:cc:14:61:7c:a5: 46:07:dc:5c:4c:34:c9:a7:d6:c4:58:13:21:5d:2f:04:89:d1: 70:06:2a:17:e2:1e:bc:b2:ab:2f:9e:83:4e:37:66:d0:5f:da: 3e:24:35:14:1d:d5:7a:e2:3b:ff:98:e8:b2:47:82:c5:47:d8: 0b:c9:75:10:55:af:51:b8:81:48:92:40:4f:6b:dc:3d:9d:dc: 58:80:62:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNDI0MjAzNDUzWhcNMjUwNTAxMjAzNDUzWjAYMRYwFAYD VQQDEw02ODBhYTA2ZC1kMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ojTiNISi2iiCALb9IZHJ6IQl2QkHl+aNRUnBs0OqEjm3wZqh4gScywSeAFy y/3gQCtWcWb+xzlbwGiEhgpGIsrRqGuSFnudHt0VNE5D5gJSWuC/YyOwjQTBULis V6nYUEjOnEqxXinoG94ZQaQfUYf8sq7VcbOC94MN+wnmEYow20nJSZvzcuqHZu5F Jd0DszFpbq8I/D8Gn1rbZMIUBCf3MTkALK7OS5aI48YHQBUaD9jRx02hH8Y00UDu xckOZL6JGvdg9Lay5CQvnSDCMN936Pte4etSB88WKciN03nIHwh42Tya/L+4+Har Q5dimcxzPXfOerI/aBeLDkt4WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsA5Mjw x7Pmt3xUgdIjSpBpYjTWMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy7BQh0SDsoGc5f+z6sN/dNJJSnrmAR98sWEsQXQm3Q6kw489l6kGG YfMoX+rAkh38RQmsTQDk3sy1uGYD5E72Dqup8m33PP3jyumc82EAaOa7V+KcmdKk 9n3Oo0XkuEdPP0rqu6eHnZCuSMVcr3dLrtGIV4MJTWwtIp4JAUfnSY+V2GrgtuUj iDI1vM0yyrW1xenNki8h+C2ChLCL0XfV9kaE1XEE02qHOU0FNAQ/zBRhfKVGB9xc TDTJp9bEWBMhXS8EidFwBioX4h68sqsvnoNON2bQX9o+JDUUHdV64jv/mOiyR4LF R9gLyXUQVa9RuIFIkkBPa9w9ndxYgGI/ -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:57 2025 by rpki-client