$ rpki-client -vvf rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft File: u2XjT0_eqStZoyVHozggimCJHgk.mft (raw, json) Hash identifier: rua4VES1DMj1/4lUjnJ6dvEPKcNFOwppmY2W4DkpuUw= Subject key identifier: 2A:FC:D5:04:05:88:35:0E:91:1C:83:CA:B7:40:97:89:15:E2:42:C0 Authority key identifier: BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 Certificate issuer: /CN=A917F224/serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Certificate serial: 0BB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft Manifest number: 0BA8 Signing time: Thu 24 Apr 2025 18:52:02 +0000 Manifest this update: Thu 24 Apr 2025 18:52:02 +0000 Manifest next update: Thu 01 May 2025 18:52:02 +0000 Files and hashes: 1: u2XjT0_eqStZoyVHozggimCJHgk.crl (hash: amspQhIGvAWYV5FWlddSE5CKKrcSflTn26zBwobJ7G4=) 2: A46E4EAC205911EAAB6ECF1FC4F9AE02.roa (hash: 6VuhUdY4wX4JtAdDLdZ6VRCxsSJ2dhl5mfVJFdysXwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2993 (0xbb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F224, serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Validity Not Before: Apr 24 18:52:02 2025 GMT Not After : May 1 18:52:02 2025 GMT Subject: CN=680a8852-4c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:14:0d:a5:f6:60:41:d4:7f:0d:26:5a:94: c0:99:a0:75:80:69:bc:00:5b:fc:30:91:90:ad:c1: 74:15:9b:b0:8b:50:23:4b:91:4b:35:7d:41:0e:23: fe:87:45:66:d3:65:18:9e:55:33:81:0e:eb:a6:13: 3d:e9:82:a2:b0:7b:4d:0d:db:0e:a0:fb:f0:70:f0: 24:93:c4:be:ea:b0:b4:13:00:07:04:d0:76:94:a4: 7a:1e:ae:ff:95:7e:65:9c:f8:43:d4:1c:39:6e:5c: 36:fa:fd:0b:37:06:02:64:1a:2d:db:a3:5f:75:95: 06:d2:49:b2:80:33:f9:36:f2:a8:46:4b:b6:85:f5: 08:26:70:5d:08:42:81:67:c3:91:d6:5f:2e:4a:0a: df:af:3b:56:32:5c:c1:5a:05:3a:4c:66:1e:bd:4b: 21:90:1d:ec:e5:d5:67:4d:44:45:25:f8:54:08:ba: dd:78:49:10:44:18:09:c3:2c:a7:89:a9:cd:c7:fc: 9c:5d:de:5e:4a:27:f9:4c:dc:78:54:0d:b6:bc:95: 5c:6a:af:6f:b4:76:7a:0b:a4:f1:59:c8:3f:2b:2f: 0f:86:07:b7:bc:72:71:1e:e9:90:21:30:26:b5:d8: 7d:47:ca:01:07:e5:01:bf:b3:35:f5:7d:3f:1d:ed: 1d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FC:D5:04:05:88:35:0E:91:1C:83:CA:B7:40:97:89:15:E2:42:C0 X509v3 Authority Key Identifier: keyid:BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ec:25:92:2b:73:61:72:19:b0:5a:b1:22:8b:84:ca:99:31: 12:a0:54:74:02:73:7a:ea:bc:5c:b4:28:e6:4e:9c:9e:fd:a6: 35:20:9f:ea:f1:51:69:dc:c2:68:09:8a:d5:8f:29:c6:b6:16: 82:66:a1:c5:5f:e0:57:ad:83:00:68:07:a8:d8:b7:01:78:93: 2a:68:88:48:e1:50:f8:ee:60:ce:29:a6:9b:c1:ca:2d:ce:3e: 33:11:31:eb:83:54:53:15:0a:47:a5:a0:9b:fe:7c:9f:5d:36: 9c:fb:48:11:44:fb:5f:ef:0c:e5:51:30:2f:9f:aa:76:4f:e3: f3:4f:44:aa:96:76:c8:cf:6d:52:08:03:8e:a0:27:68:9f:d2: 33:cd:eb:15:d8:fa:1b:d9:3d:fa:ac:59:04:cd:94:af:44:88: 2e:59:4c:8f:93:e5:07:ee:d0:23:47:e7:43:04:2a:26:e5:40: 40:ff:49:80:fe:09:9b:6b:d8:0c:43:43:bc:dd:b1:49:3a:c9: 9f:37:22:11:e9:86:49:83:e8:cd:97:f1:2f:b1:e7:21:5a:dd: 0f:6c:34:a5:69:14:a9:42:68:87:49:59:cc:05:0e:b9:7c:c0: b8:50:9f:b6:b8:90:3b:fa:9c:95:2f:20:84:8e:93:ae:c7:c8: 53:9b:76:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyMjQxMTAvBgNVBAUTKEJCNjVFMzRGNEZERUE5MkI1OUEzMjU0N0EzMzgyMDhB NjA4OTFFMDkwHhcNMjUwNDI0MTg1MjAyWhcNMjUwNTAxMTg1MjAyWjAYMRYwFAYD VQQDEw02ODBhODg1Mi00YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT8UDaX2YEHUfw0mWpTAmaB1gGm8AFv8MJGQrcF0FZuwi1AjS5FLNX1BDiP+ h0Vm02UYnlUzgQ7rphM96YKisHtNDdsOoPvwcPAkk8S+6rC0EwAHBNB2lKR6Hq7/ lX5lnPhD1Bw5blw2+v0LNwYCZBot26NfdZUG0kmygDP5NvKoRku2hfUIJnBdCEKB Z8OR1l8uSgrfrztWMlzBWgU6TGYevUshkB3s5dVnTURFJfhUCLrdeEkQRBgJwyyn ianNx/ycXd5eSif5TNx4VA22vJVcaq9vtHZ6C6TxWcg/Ky8Phge3vHJxHumQITAm tdh9R8oBB+UBv7M19X0/He0dawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCr81QQF iDUOkRyDyrdAl4kV4kLAMB8GA1UdIwQYMBaAFLtl409P3qkrWaMlR6M4IIpgiR4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjIyNC82RTlCQTQxQTIw NTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFTdFpveVZIb3pnZ2ltQ0pI Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UyWGpUMF9lcVN0Wm95VkhvemdnaW1DSkhnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjIyNC82RTlCQTQxQTIwNTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFT dFpveVZIb3pnZ2ltQ0pIZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE7CWSK3NhchmwWrEii4TKmTESoFR0AnN66rxctCjmTpye/aY1IJ/q 8VFp3MJoCYrVjynGthaCZqHFX+BXrYMAaAeo2LcBeJMqaIhI4VD47mDOKaabwcot zj4zETHrg1RTFQpHpaCb/nyfXTac+0gRRPtf7wzlUTAvn6p2T+PzT0SqlnbIz21S CAOOoCdon9IzzesV2Pob2T36rFkEzZSvRIguWUyPk+UH7tAjR+dDBCom5UBA/0mA /gmba9gMQ0O83bFJOsmfNyIR6YZJg+jNl/EvsechWt0PbDSlaRSpQmiHSVnMBQ65 fMC4UJ+2uJA7+pyVLyCEjpOux8hTm3ZL -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:49 2025 by rpki-client