$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: qoFbZ3uq5VDu7cWuCBQzVl42L5OBMgIz6E50hVDlcJ4= Subject key identifier: 97:BA:24:9F:FC:5B:23:D9:1B:32:70:D5:2D:70:54:99:77:90:13:09 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AAE Signing time: Thu 24 Apr 2025 19:23:14 +0000 Manifest this update: Thu 24 Apr 2025 19:23:13 +0000 Manifest next update: Thu 01 May 2025 19:23:13 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: xxm2UCarEo6pOV5YZ2N0IQucILTzCE+/43dh6m5jhFc=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: 41cjFQ4140Z5h4e8/b+EfKqx6IFO/VtjT/VMpvwFsdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Apr 24 19:23:13 2025 GMT Not After : May 1 19:23:13 2025 GMT Subject: CN=680a8fa1-887c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ae:61:81:17:c0:74:f3:1a:d9:17:88:e9:fa: 85:67:da:cc:86:95:4e:77:8a:94:0f:70:56:50:2e: aa:ea:af:01:a3:e9:79:cb:14:ed:49:2b:f3:39:34: 38:70:4b:fa:21:b7:0d:4d:46:31:13:b4:6a:cf:4a: ec:f3:87:f6:34:cc:21:dd:e6:7f:7b:fa:5c:90:3b: 58:e0:1e:86:60:44:38:06:4c:92:c0:0d:9e:07:11: d9:db:28:be:b5:42:9a:5e:39:2b:3a:df:a2:8c:8a: cd:78:58:9c:44:d1:a0:f2:9f:1e:2d:b5:6a:0f:be: c1:e0:6f:8e:77:02:7e:94:6e:40:08:f0:7f:15:2e: 4e:88:9f:fc:af:6d:02:01:ab:5d:7a:cd:7d:66:f4: a0:78:9a:3b:a3:5a:5a:7b:17:ea:88:e5:d8:96:43: d7:a7:86:a7:93:ff:01:9c:f7:0a:c0:db:f7:0d:4e: 71:9f:c5:80:1f:35:8d:cc:50:2e:5e:fb:0e:8b:57: 8a:59:02:0a:f8:c8:51:b4:07:ef:69:3d:55:96:5e: 1c:ad:29:5d:cb:9f:c9:8c:b1:52:6a:75:3f:61:3d: 33:07:90:05:1c:89:bd:f7:1d:82:3c:b4:ee:d3:b0: 93:e2:df:85:1d:7b:2b:39:50:aa:f9:b4:26:c4:9a: 78:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BA:24:9F:FC:5B:23:D9:1B:32:70:D5:2D:70:54:99:77:90:13:09 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c9:7d:a8:94:24:5a:65:bc:be:a9:df:ee:58:ea:10:ef:53: f6:9c:86:17:05:b0:b6:84:a0:0f:a9:17:62:e8:e9:60:56:7e: 50:1c:f2:05:53:61:aa:24:ea:b1:1c:c3:3b:14:8f:1f:03:a7: 1c:14:ad:f1:ba:06:e4:54:4c:c0:4f:43:0b:5d:3a:1b:e9:31: c4:7b:4e:44:93:02:54:a0:56:4b:a1:7d:c9:9b:52:a6:8b:12: c8:42:ba:d3:0f:3f:71:ab:d4:fa:fa:ab:0e:a0:7b:52:a6:3d: 45:1d:3b:e0:8d:22:60:26:f7:ad:a0:2b:d1:f3:de:d5:5f:4f: 41:cd:50:fc:39:2e:11:f1:14:7a:2b:f5:52:dd:f0:2f:f0:d2: c3:a3:0a:20:5a:3e:3e:fc:dd:ac:cb:1f:75:8b:65:7f:c3:4a: 1b:f7:1d:c9:f9:01:36:1a:da:17:3c:bb:3b:db:3b:70:3d:d7: b5:ba:ec:c4:a5:dd:9a:b9:ca:11:76:9f:30:09:f9:41:c0:cc: 23:cf:a5:f7:31:5b:d1:2a:63:a1:93:fe:8a:b3:23:1a:62:a4: 7b:99:d0:db:88:1f:f1:b8:91:59:94:04:81:46:5d:11:fd:dc: 03:ea:5e:b5:45:9d:2c:74:9d:4f:eb:85:9d:a7:3a:8b:9e:56: e8:ab:4e:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwNDI0MTkyMzEzWhcNMjUwNTAxMTkyMzEzWjAYMRYwFAYD VQQDEw02ODBhOGZhMS04ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq65hgRfAdPMa2ReI6fqFZ9rMhpVOd4qUD3BWUC6q6q8Bo+l5yxTtSSvzOTQ4 cEv6IbcNTUYxE7Rqz0rs84f2NMwh3eZ/e/pckDtY4B6GYEQ4BkySwA2eBxHZ2yi+ tUKaXjkrOt+ijIrNeFicRNGg8p8eLbVqD77B4G+OdwJ+lG5ACPB/FS5OiJ/8r20C Aatdes19ZvSgeJo7o1paexfqiOXYlkPXp4ank/8BnPcKwNv3DU5xn8WAHzWNzFAu XvsOi1eKWQIK+MhRtAfvaT1Vll4crSldy5/JjLFSanU/YT0zB5AFHIm99x2CPLTu 07CT4t+FHXsrOVCq+bQmxJp4MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe6JJ/8 WyPZGzJw1S1wVJl3kBMJMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/yX2olCRaZby+qd/uWOoQ71P2nIYXBbC2hKAPqRdi6OlgVn5QHPIF U2GqJOqxHMM7FI8fA6ccFK3xugbkVEzAT0MLXTob6THEe05EkwJUoFZLoX3Jm1Km ixLIQrrTDz9xq9T6+qsOoHtSpj1FHTvgjSJgJvetoCvR897VX09BzVD8OS4R8RR6 K/VS3fAv8NLDowogWj4+/N2syx91i2V/w0ob9x3J+QE2GtoXPLs72ztwPde1uuzE pd2aucoRdp8wCflBwMwjz6X3MVvRKmOhk/6KsyMaYqR7mdDbiB/xuJFZlASBRl0R /dwD6l61RZ0sdJ1P64WdpzqLnlboq040 -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:53 2025 by rpki-client