$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: N032r7jPdGL+BWjO4bUcBmkryik19Ri3jHyzTZAMDkc= Subject key identifier: DC:27:D4:5B:30:47:85:41:9D:3C:A2:13:D7:80:17:29:4F:10:75:09 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 0F Signing time: Mon 05 May 2025 06:56:31 +0000 Manifest this update: Mon 05 May 2025 06:56:30 +0000 Manifest next update: Mon 12 May 2025 06:56:30 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: udCqTyzAzxwbuV6Dj+P5axZSodiXvU9pvLEuQuHAZE0=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 06:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: May 5 06:56:30 2025 GMT Not After : May 12 06:56:30 2025 GMT Subject: CN=6818611f-8fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:a6:cf:b6:03:2b:70:34:26:6b:77:f0:ef: c2:67:78:65:9c:2e:8c:87:91:d0:ca:55:17:51:54: 1b:41:aa:e3:8c:6f:84:e1:32:3e:a7:12:e2:3b:74: 68:f2:01:e4:59:0f:ec:1b:27:8b:e7:3d:61:97:f4: e6:0b:eb:69:1a:31:52:d3:72:d0:57:1f:42:b8:d1: f4:8f:ec:d2:8a:90:77:da:9c:07:3a:95:79:0c:6b: ff:90:55:10:d9:7d:f4:9d:4f:e0:24:73:1f:0b:98: 3e:77:61:06:f4:ab:20:e3:92:9c:76:2b:e6:6c:08: 97:bb:02:4c:9c:b9:87:f7:12:d5:8c:40:ff:05:dd: 58:33:70:cf:2a:4a:d0:1a:66:d0:1e:3b:31:18:bd: b4:13:28:fb:b0:2c:42:f3:cd:7b:96:e6:bd:f3:65: 09:55:9b:2e:fc:01:ec:fa:eb:03:18:76:27:82:e3: ad:9a:4a:0f:13:49:2d:7f:9c:66:2f:c9:ee:01:99: 9f:0a:e0:25:d2:ea:76:15:0c:34:8b:b3:ba:f5:f9: 94:c0:60:a8:58:0a:9e:20:50:84:25:6c:3a:94:3d: f6:f8:b8:76:a1:d7:f4:57:44:12:5e:17:5f:0c:ba: 9c:f5:97:53:f4:df:b9:a6:ae:52:ac:89:70:f6:3d: d6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:27:D4:5B:30:47:85:41:9D:3C:A2:13:D7:80:17:29:4F:10:75:09 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:a4:4b:f2:60:5f:9f:06:ea:73:13:11:88:67:35:78:c2:88: 31:b4:2a:9b:ea:3c:cd:6e:fa:87:c3:a9:e5:9c:6f:9f:ca:28: 8d:1c:11:48:cb:2c:67:ec:06:61:83:b8:9d:c0:93:6b:4a:7d: 87:e1:a1:ba:a3:97:77:3e:3d:30:4d:b9:77:e4:e0:f4:5c:85: 41:f8:03:97:a5:9e:6d:1e:1a:cf:32:5e:52:8b:f3:a7:50:8c: 8f:74:a4:86:81:f7:66:b4:02:0a:be:f3:e6:2c:5f:9d:bb:41: e8:63:0f:fc:e3:37:f1:2e:8c:0a:2a:8b:92:85:2c:45:12:16: 4d:8e:81:57:fe:54:e2:03:43:0e:35:53:36:ee:3e:64:2a:ea: fd:75:b6:dd:a2:18:a5:98:81:49:c2:39:2f:f1:07:1d:66:51: 79:6f:e7:8a:81:29:af:19:91:22:96:08:a0:ba:d0:18:19:7e: f1:63:80:2b:8c:76:af:25:0d:37:28:a9:a6:35:f7:98:b9:6e: 68:58:e0:f3:6a:a8:09:7f:42:d5:78:48:da:07:f4:98:38:53: c3:f3:a1:12:a9:b6:6b:5b:7b:ca:02:da:b0:91:19:a4:f4:02: 3b:80:96:d0:48:93:45:f3:eb:fc:da:21:6f:32:68:78:bc:95: 1a:d7:a6:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTA1MDUwNjU2MzBaFw0yNTA1MTIwNjU2MzBaMBgxFjAUBgNV BAMTDTY4MTg2MTFmLThmZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7P6bPtgMrcDQma3fw78JneGWcLoyHkdDKVRdRVBtBquOMb4ThMj6nEuI7dGjy AeRZD+wbJ4vnPWGX9OYL62kaMVLTctBXH0K40fSP7NKKkHfanAc6lXkMa/+QVRDZ ffSdT+Akcx8LmD53YQb0qyDjkpx2K+ZsCJe7AkycuYf3EtWMQP8F3VgzcM8qStAa ZtAeOzEYvbQTKPuwLELzzXuW5r3zZQlVmy78Aez66wMYdieC462aSg8TSS1/nGYv ye4BmZ8K4CXS6nYVDDSLs7r1+ZTAYKhYCp4gUIQlbDqUPfb4uHah1/RXRBJeF18M upz1l1P037mmrlKsiXD2PdabAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3CfUWzBH hUGdPKIT14AXKU8QdQkwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABCkS/JgX58G6nMTEYhnNXjCiDG0KpvqPM1u+ofDqeWcb5/KKI0cEUjL LGfsBmGDuJ3Ak2tKfYfhobqjl3c+PTBNuXfk4PRchUH4A5elnm0eGs8yXlKL86dQ jI90pIaB92a0Agq+8+YsX527QehjD/zjN/EujAoqi5KFLEUSFk2OgVf+VOIDQw41 UzbuPmQq6v11tt2iGKWYgUnCOS/xBx1mUXlv54qBKa8ZkSKWCKC60BgZfvFjgCuM dq8lDTcoqaY195i5bmhY4PNqqAl/QtV4SNoH9Jg4U8PzoRKptmtbe8oC2rCRGaT0 AjuAltBIk0Xz6/zaIW8yaHi8lRrXpnI= -----END CERTIFICATE-----Generated at Mon May 5 19:51:51 2025 by rpki-client