$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: OK2pAnz6yosZnDzxXW3miE7MeiwYEZWAxbtNo1wIcIQ= Subject key identifier: BA:5D:24:A9:A0:F2:A5:BB:76:B3:1C:54:C5:85:1C:FB:1A:48:51:22 Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 15 Signing time: Fri 25 Apr 2025 07:01:16 +0000 Manifest this update: Fri 25 Apr 2025 07:01:16 +0000 Manifest next update: Fri 02 May 2025 07:01:16 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: j4Y1UHgSlfbTPE/3xCA+6Kl3B/aFkwkoW+dnNZomj3M=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: r5ruoCtRcYnEcHexWC9aJqjiLOW/BTPK5UGFj2P9wTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Apr 25 07:01:16 2025 GMT Not After : May 2 07:01:16 2025 GMT Subject: CN=680b333c-f7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:87:72:08:ec:5e:a9:ae:a7:bc:99:0d:3a: 89:14:36:1d:1e:1c:a3:94:6e:3d:5d:9b:ef:e0:82: ca:50:a5:ca:3a:71:6c:0d:ec:ec:42:ce:20:42:7d: 48:0e:da:ca:e1:12:16:9b:9e:1c:d6:d8:be:df:c4: 39:09:9b:a7:90:ab:05:b7:47:33:fd:55:4d:f3:dc: e5:16:d8:54:16:0c:6f:38:e3:7c:77:13:68:9f:54: 59:58:c4:42:80:4d:41:a5:bd:68:ba:50:f3:2d:62: 34:7d:29:66:07:f2:00:44:0f:e0:40:3c:c0:5c:f3: c0:2f:a3:6e:ce:f9:4a:31:ac:57:39:ea:a4:03:c0: e7:b2:45:11:75:c6:eb:a8:1c:74:a5:ab:c3:25:32: 81:a5:6c:8d:d4:69:4c:fe:ad:25:ad:6d:2d:32:71: dc:61:9e:25:f6:e8:21:91:d5:3f:5c:5b:c9:95:21: b2:18:7b:d8:50:3b:fd:9f:38:ec:e7:aa:d9:88:35: 0e:3e:0f:54:2c:69:6a:8a:d7:fb:e3:85:e0:5e:6f: 3d:46:b1:ba:8f:2a:72:08:fd:ed:45:91:7b:06:b2: a3:de:5b:83:1c:c1:2c:e5:cb:a5:92:94:b4:8e:02: c3:8f:fa:16:b5:b5:7f:34:26:83:85:0a:40:6d:b9: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5D:24:A9:A0:F2:A5:BB:76:B3:1C:54:C5:85:1C:FB:1A:48:51:22 X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c3:c9:2a:50:52:61:80:a4:12:9a:42:62:b2:ff:22:27:4b: 05:3a:fc:db:93:6f:d0:8e:d3:de:59:1d:56:cf:74:97:0b:73: 45:1c:bf:38:d5:95:13:de:72:6b:4b:db:d8:d5:bd:79:f2:0f: d3:5c:8d:2c:54:6b:f7:4b:fd:6b:33:42:ac:aa:20:d5:e3:8a: 86:25:4b:e6:d0:f2:08:0f:cd:70:44:02:60:49:12:45:82:41: 7f:b3:ae:3e:b7:a1:56:0d:98:f5:cc:cc:d8:70:3e:3c:5e:3f: ea:0c:69:a3:ab:11:6b:64:42:66:a6:9f:5d:c8:08:6b:44:e8: 8c:92:32:ad:ec:1f:18:8e:c5:cf:65:ca:b2:00:7b:f6:e6:a2: 5c:da:d3:1b:00:de:c5:5d:04:42:00:33:ae:88:7e:3b:2d:09: 13:b5:72:28:29:ea:cb:4f:7d:09:3f:5c:ca:b7:93:09:8c:21: 24:4d:ca:9a:f4:72:13:9b:1e:b7:8e:7b:46:8f:96:a9:f0:5a: 0d:68:54:7d:92:6d:7d:14:4d:48:21:47:b0:2b:62:2b:c8:f2: c3:f1:3b:f7:1c:45:be:f5:56:02:27:05:9f:d9:43:3c:f6:a6: 93:f6:86:50:a5:63:95:eb:55:7b:19:4b:22:a4:9c:df:8e:17: 78:a0:ae:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA0MjUwNzAxMTZaFw0yNTA1MDIwNzAxMTZaMBgxFjAUBgNV BAMTDTY4MGIzMzNjLWY3ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbo4dyCOxeqa6nvJkNOokUNh0eHKOUbj1dm+/ggspQpco6cWwN7OxCziBCfUgO 2srhEhabnhzW2L7fxDkJm6eQqwW3RzP9VU3z3OUW2FQWDG8443x3E2ifVFlYxEKA TUGlvWi6UPMtYjR9KWYH8gBED+BAPMBc88Avo27O+UoxrFc56qQDwOeyRRF1xuuo HHSlq8MlMoGlbI3UaUz+rSWtbS0ycdxhniX26CGR1T9cW8mVIbIYe9hQO/2fOOzn qtmINQ4+D1QsaWqK1/vjheBebz1GsbqPKnII/e1FkXsGsqPeW4McwSzly6WSlLSO AsOP+ha1tX80JoOFCkBtud7rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUul0kqaDy pbt2sxxUxYUc+xpIUSIwHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ3DySpQUmGApBKaQmKy/yInSwU6/NuTb9CO095ZHVbPdJcLc0UcvzjV lRPecmtL29jVvXnyD9NcjSxUa/dL/WszQqyqINXjioYlS+bQ8ggPzXBEAmBJEkWC QX+zrj63oVYNmPXMzNhwPjxeP+oMaaOrEWtkQmamn13ICGtE6IySMq3sHxiOxc9l yrIAe/bmolza0xsA3sVdBEIAM66IfjstCRO1cigp6stPfQk/XMq3kwmMISRNypr0 chObHreOe0aPlqnwWg1oVH2SbX0UTUghR7ArYivI8sPxO/ccRb71VgInBZ/ZQzz2 ppP2hlClY5XrVXsZSyKknN+OF3igris= -----END CERTIFICATE-----Generated at Sat Apr 26 16:17:53 2025 by rpki-client