$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: bZgk8Fd/6kc/pRc+nbqrelZlOkOIwBW4WnFWKivG7Dc= Subject key identifier: 13:CE:2F:33:82:7E:3D:78:C6:FD:0F:29:A8:68:BD:48:74:1A:AD:F7 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 06B3 Signing time: Thu 24 Apr 2025 21:56:14 +0000 Manifest this update: Thu 24 Apr 2025 21:56:13 +0000 Manifest next update: Thu 01 May 2025 21:56:13 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: MQ/X0dq7RTer2xTIFjRphwgJFbqPV73F73Ac6i+t3+M=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Apr 24 21:56:13 2025 GMT Not After : May 1 21:56:13 2025 GMT Subject: CN=680ab37e-6ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e5:ff:10:e7:2c:f0:69:9d:0c:b0:44:55:4f: 5d:ca:7f:d5:20:69:bc:73:b2:12:45:48:1d:cc:81: de:e9:21:30:b6:ab:b8:e5:73:c7:6d:36:5d:11:d5: 58:20:36:36:31:9c:46:0a:98:a8:dc:e8:e8:b8:7b: 7f:68:d4:78:41:dd:ce:d1:bb:57:76:10:a4:64:99: 3f:18:f0:c3:f5:cb:68:f8:5b:2f:ff:28:a2:55:f3: 85:25:45:ca:6f:af:a0:1a:23:4f:a2:24:b4:b0:35: 6d:c1:e7:06:4d:3a:5f:53:c1:f0:43:3a:19:5f:1c: 15:08:77:ad:45:a2:1d:67:bb:f4:2c:80:66:f7:c5: 2e:48:7f:6d:c2:19:28:21:d6:f0:b4:f2:dd:14:54: 9f:54:d8:0c:12:d8:42:cb:4f:52:e4:26:0c:3f:05: c1:56:70:98:b3:83:7d:b7:ee:cb:7e:4b:98:58:aa: 9e:c6:d3:f6:df:ef:c8:39:c8:5c:dc:df:e8:95:e8: fc:fd:4a:06:dd:f5:fe:a7:86:00:98:08:e5:87:f9: 03:9b:fc:84:8e:4a:78:69:fd:23:5b:74:83:78:24: dc:4f:20:a2:c5:ae:84:f5:3f:c6:ca:6e:2f:86:7c: 5d:90:49:e7:8f:c2:f9:a4:4b:df:24:b3:dc:a3:53: 48:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:CE:2F:33:82:7E:3D:78:C6:FD:0F:29:A8:68:BD:48:74:1A:AD:F7 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:93:3a:30:54:c1:53:bc:fc:ca:5b:cc:89:eb:64:88:53:b6: 55:24:23:22:1b:3f:d0:f5:52:ae:7b:12:fd:ff:19:f2:31:a2: 52:46:e1:8c:9d:3e:1a:a4:da:da:db:d9:ed:a2:00:00:76:0c: fa:32:b7:6d:c4:0b:cf:b6:6d:a4:14:f1:c9:a9:2f:17:e9:5a: 03:c5:89:34:27:4d:f2:af:ab:54:9a:32:2c:fc:2e:f3:d5:c2: e4:c6:c1:da:72:df:75:e5:85:c6:2a:30:b7:fd:b4:41:c1:e0: 2c:0a:4b:4e:00:ce:5d:4e:2b:8e:39:d8:e8:a6:7d:71:ab:b1: 2a:4f:5f:b5:c3:03:b2:fc:29:63:a9:fe:e7:12:83:dd:08:37: d9:dc:58:72:e5:22:a5:46:b2:90:69:d5:9a:53:fe:0c:0a:1f: 92:58:9e:fa:ea:c6:58:de:fc:a9:f6:c6:63:75:25:31:03:85: a2:ae:99:73:c3:c6:ad:ce:f2:d2:0b:1c:c9:95:6b:da:22:9c: a5:66:0e:c1:ad:2d:5b:ce:81:f0:a3:21:ba:e2:44:b1:4b:25: 19:25:54:d7:c7:6e:85:21:14:cf:33:27:93:9e:59:5b:87:c1: c3:08:ef:43:27:80:ea:aa:03:3a:dd:fe:f1:6f:6a:9a:2e:e0: f9:59:89:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUwNDI0MjE1NjEzWhcNMjUwNTAxMjE1NjEzWjAYMRYwFAYD VQQDEw02ODBhYjM3ZS02Y2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOX/EOcs8GmdDLBEVU9dyn/VIGm8c7ISRUgdzIHe6SEwtqu45XPHbTZdEdVY IDY2MZxGCpio3OjouHt/aNR4Qd3O0btXdhCkZJk/GPDD9cto+Fsv/yiiVfOFJUXK b6+gGiNPoiS0sDVtwecGTTpfU8HwQzoZXxwVCHetRaIdZ7v0LIBm98UuSH9twhko IdbwtPLdFFSfVNgMEthCy09S5CYMPwXBVnCYs4N9t+7LfkuYWKqextP23+/IOchc 3N/olej8/UoG3fX+p4YAmAjlh/kDm/yEjkp4af0jW3SDeCTcTyCixa6E9T/Gym4v hnxdkEnnj8L5pEvfJLPco1NI+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPOLzOC fj14xv0PKahovUh0Gq33MB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0kzowVMFTvPzKW8yJ62SIU7ZVJCMiGz/Q9VKuexL9/xnyMaJSRuGM nT4apNra29ntogAAdgz6MrdtxAvPtm2kFPHJqS8X6VoDxYk0J03yr6tUmjIs/C7z 1cLkxsHact915YXGKjC3/bRBweAsCktOAM5dTiuOOdjopn1xq7EqT1+1wwOy/Clj qf7nEoPdCDfZ3Fhy5SKlRrKQadWaU/4MCh+SWJ766sZY3vyp9sZjdSUxA4Wirplz w8atzvLSCxzJlWvaIpylZg7BrS1bzoHwoyG64kSxSyUZJVTXx26FIRTPMyeTnllb h8HDCO9DJ4DqqgM63f7xb2qaLuD5WYnq -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:09 2025 by rpki-client