$ rpki-client -vvf rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft File: e0Coz49PGgbDbiA08Yo4v5jKWxg.mft (raw, json) Hash identifier: dkjr2RlBheXVdO3wGbxUEywF8cYlXaS7BEik9hZXDjA= Subject key identifier: 1A:4F:E1:B3:6F:52:73:AA:79:CC:AF:40:4F:F0:90:30:D1:EF:91:4C Authority key identifier: 7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 Certificate issuer: /CN=A9166123/serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft Manifest number: 0172 Signing time: Fri 25 Apr 2025 03:00:00 +0000 Manifest this update: Fri 25 Apr 2025 02:59:59 +0000 Manifest next update: Fri 02 May 2025 02:59:59 +0000 Files and hashes: 1: e0Coz49PGgbDbiA08Yo4v5jKWxg.crl (hash: dsXR+6vuYu56zep9OXMWyeuhfuRTe9/oDyGqY9o/WUM=) 2: A74C3132F49211ED8659177BC4F9AE02.roa (hash: 306udLdXsDXkERPewXDbNH98O47h8mfNTv4RCgj1cHQ=) 3: 2F9915D8718D11EE97E3E022C4F9AE02.roa (hash: coH1x8KY/cq3OGm3WBXbeivefI4OPLTpBCpIkFV1i7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166123, serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Validity Not Before: Apr 25 02:59:59 2025 GMT Not After : May 2 02:59:59 2025 GMT Subject: CN=680afab0-7252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:db:d8:60:09:78:19:11:88:e5:ae:90:9b: e7:8c:2b:c5:6c:08:86:b1:45:5b:5f:e6:ce:0d:20: 96:d4:6b:31:13:55:ee:96:96:77:3f:76:e8:22:63: 98:ad:dd:4c:9b:f8:cc:40:d0:ee:c5:ea:bc:cc:65: fc:e7:8b:72:08:74:fd:3f:5f:af:6b:f5:e6:38:b8: 0d:24:f2:5f:0f:d6:e2:e7:fe:f4:6e:f5:bf:33:a4: a8:b3:3b:cf:80:3d:fe:c6:e9:87:d1:19:d4:27:1c: aa:6c:a7:04:aa:b4:39:85:89:a3:89:ae:43:a1:52: 51:53:a1:9f:19:43:5f:16:43:e6:2e:f7:6d:56:cc: 7a:55:65:2c:ba:52:ff:13:fc:7e:dc:e1:9e:13:92: ea:9e:61:fe:41:d1:d6:92:4f:61:e7:15:25:38:3d: eb:2d:f8:3b:cc:e6:c3:f5:a9:0f:48:27:00:16:d0: 39:64:45:00:57:2c:c3:d3:b1:50:b8:46:48:e5:a6: d4:ec:1c:bf:33:74:d0:a3:b6:96:65:ac:59:ce:28: 8a:96:1a:2b:13:d2:a0:9d:0c:22:f4:fb:44:00:d3: 89:db:7c:3e:25:51:b2:0e:da:fe:59:5e:6c:cc:4b: d8:06:d1:e4:6d:5d:75:cc:27:f3:23:1b:76:a4:f1: f0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4F:E1:B3:6F:52:73:AA:79:CC:AF:40:4F:F0:90:30:D1:EF:91:4C X509v3 Authority Key Identifier: keyid:7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:46:2b:a1:0b:a4:dd:56:f9:33:ee:c2:37:0d:18:f3:92:f7: db:8b:a7:c4:ea:87:99:1d:25:ee:97:58:1a:48:7f:54:ee:5b: 88:e4:20:3a:ed:29:64:ee:1e:ac:3e:f8:cc:94:2e:73:20:0c: d0:12:9f:4a:43:9c:f0:8b:ce:ca:40:47:79:9b:87:2b:a6:47: 23:54:2e:d1:bf:bf:09:42:ab:95:95:d1:79:d0:24:81:80:b9: 14:20:dc:34:6a:24:ee:92:60:51:b8:2e:a5:f2:bd:15:47:0a: ec:ff:f1:13:28:27:96:a6:33:82:e8:db:e0:1d:2f:5c:73:43: 19:3b:e9:ed:e4:1b:1c:72:a4:fc:99:c2:68:68:97:47:99:ab: a6:2c:6d:d7:28:bc:e2:2c:34:99:d0:73:4a:69:e3:88:5b:f0: 59:41:2d:da:68:96:66:ee:0b:cf:ce:d6:15:ba:71:19:1b:48: 59:47:72:ef:cd:7a:bd:a8:53:ea:62:6e:4f:eb:54:90:94:48: 4e:2c:3d:64:d3:fa:b3:19:3c:1a:7b:4d:9f:34:c8:cc:e9:21: b8:bf:f9:f4:31:97:a4:d9:74:e7:b3:31:43:4b:e1:c0:2b:95: 0f:ae:e0:69:ca:d4:ad:e0:c7:a2:b5:a9:d4:63:ae:ea:2b:14: 79:2c:25:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYxMjMxMTAvBgNVBAUTKDdCNDBBOENGOEY0RjFBMDZDMzZFMjAzNEYxOEEzOEJG OThDQTVCMTgwHhcNMjUwNDI1MDI1OTU5WhcNMjUwNTAyMDI1OTU5WjAYMRYwFAYD VQQDEw02ODBhZmFiMC03MjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgLb2GAJeBkRiOWukJvnjCvFbAiGsUVbX+bODSCW1GsxE1XulpZ3P3boImOY rd1Mm/jMQNDuxeq8zGX854tyCHT9P1+va/XmOLgNJPJfD9bi5/70bvW/M6SoszvP gD3+xumH0RnUJxyqbKcEqrQ5hYmjia5DoVJRU6GfGUNfFkPmLvdtVsx6VWUsulL/ E/x+3OGeE5LqnmH+QdHWkk9h5xUlOD3rLfg7zObD9akPSCcAFtA5ZEUAVyzD07FQ uEZI5abU7By/M3TQo7aWZaxZziiKlhorE9KgnQwi9PtEANOJ23w+JVGyDtr+WV5s zEvYBtHkbV11zCfzIxt2pPHwUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpP4bNv UnOqecyvQE/wkDDR75FMMB8GA1UdIwQYMBaAFHtAqM+PTxoGw24gNPGKOL+YylsY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjEyMy8xQjAwRUFFOEY0 OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdnYkRiaUEwOFlvNHY1aktX eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UwQ296NDlQR2diRGJpQTA4WW80djVqS1d4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjEyMy8xQjAwRUFFOEY0OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdn YkRiaUEwOFlvNHY1aktXeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRiuhC6TdVvkz7sI3DRjzkvfbi6fE6oeZHSXul1gaSH9U7luI5CA6 7Slk7h6sPvjMlC5zIAzQEp9KQ5zwi87KQEd5m4crpkcjVC7Rv78JQquVldF50CSB gLkUINw0aiTukmBRuC6l8r0VRwrs//ETKCeWpjOC6NvgHS9cc0MZO+nt5BsccqT8 mcJoaJdHmaumLG3XKLziLDSZ0HNKaeOIW/BZQS3aaJZm7gvPztYVunEZG0hZR3Lv zXq9qFPqYm5P61SQlEhOLD1k0/qzGTwae02fNMjM6SG4v/n0MZek2XTnszFDS+HA K5UPruBpytSt4MeitanUY67qKxR5LCU0 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:43 2025 by rpki-client