$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: wHbXGmlzmUL5dAWImYChiM8PGvUIdfNxn4e9NYccp14= Subject key identifier: 37:2D:D9:37:AB:02:91:78:52:DB:2E:C8:58:8A:5D:FE:6A:5D:60:71 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 0193 Signing time: Fri 25 Apr 2025 02:42:43 +0000 Manifest this update: Fri 25 Apr 2025 02:42:43 +0000 Manifest next update: Fri 02 May 2025 02:42:43 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: SflvZAzxfas93BGdK9hmRHKH4Tp3q/Fl1vFWxsx9Bbs=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Apr 25 02:42:43 2025 GMT Not After : May 2 02:42:43 2025 GMT Subject: CN=680af6a3-5378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1e:d3:ee:66:5b:08:da:61:5c:ea:79:97:e8: f3:12:bb:b4:17:06:33:7b:6d:95:1e:36:87:85:b7: aa:96:4c:a2:ec:79:8f:4d:8e:10:f7:1b:0f:a8:cb: 6d:f7:08:ac:3c:73:8e:22:f8:e8:e9:bb:1a:dd:3c: 51:c7:16:13:61:04:94:f4:95:14:2c:13:07:32:60: b4:4e:51:43:c9:62:b7:2a:89:c1:f3:45:58:96:b4: d9:aa:46:ec:10:54:7e:0d:9b:14:b8:13:ef:d0:de: 86:38:39:8e:00:e8:e8:1d:dd:2f:64:d6:55:ca:10: a0:ee:ed:66:91:dd:62:f7:11:77:00:d5:0f:66:9c: 13:a1:75:46:e7:99:e6:81:4a:57:9c:6d:42:fd:9b: b8:d5:b7:a1:a6:b8:b8:cf:52:92:81:68:c3:dd:0d: 73:8c:1a:cd:8b:65:4e:06:9f:45:8f:74:a9:62:3b: a0:82:64:7a:7a:69:a0:3a:05:b1:a7:cf:2c:bf:2d: b0:ae:0b:ea:b9:91:a1:79:7b:01:6a:45:d4:e2:53: ba:6c:51:07:01:b0:3d:27:f4:dd:63:2f:a6:64:6e: 7a:8b:40:80:ad:1b:df:a5:45:c8:50:70:bc:d2:6b: bb:09:5e:cd:9c:87:f1:48:2c:3e:94:dd:54:e9:18: 80:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:2D:D9:37:AB:02:91:78:52:DB:2E:C8:58:8A:5D:FE:6A:5D:60:71 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:6e:8d:ab:f4:b2:50:84:60:b7:d2:82:38:5b:f8:cb:b7:cd: 10:a3:3c:58:4b:1f:ef:77:8f:14:8e:a6:94:2c:52:51:60:20: 8c:f9:19:75:c6:6b:62:4b:a2:8a:c4:4d:7e:0c:c7:7c:05:93: ce:6f:6d:28:08:56:9e:e4:44:fa:23:c6:37:a4:a4:99:92:4c: 19:56:e0:e0:a9:18:8b:ca:30:ee:b6:dd:19:10:59:93:aa:70: 66:2a:39:a5:be:e4:bf:2b:e1:c6:60:bd:68:7f:2e:5a:8f:ab: 21:54:6c:3c:32:fe:a2:91:8b:49:0e:c4:cb:4a:6d:65:f4:f3: 3f:90:4d:6e:cb:f5:ee:11:c8:80:d1:67:75:75:52:94:28:6b: a6:0a:77:97:ac:05:9c:2f:97:5a:88:12:46:56:79:04:99:08: f9:25:dc:a0:0f:a1:4e:f8:56:ab:be:7b:50:81:02:da:e6:18: 77:5b:94:d6:9c:1b:2e:e7:4f:71:94:19:67:02:15:3b:7c:5b: 5d:af:db:1a:31:f0:17:b2:33:23:a1:c5:a8:84:f1:c4:f0:49: 14:e3:41:9f:c2:87:62:bf:18:57:1b:97:9b:57:66:10:6e:2e: 18:7f:68:0c:cd:16:26:8a:07:1d:89:48:df:a2:38:62:10:50: 3c:fc:b0:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUwNDI1MDI0MjQzWhcNMjUwNTAyMDI0MjQzWjAYMRYwFAYD VQQDEw02ODBhZjZhMy01Mzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B7T7mZbCNphXOp5l+jzEru0FwYze22VHjaHhbeqlkyi7HmPTY4Q9xsPqMtt 9wisPHOOIvjo6bsa3TxRxxYTYQSU9JUULBMHMmC0TlFDyWK3KonB80VYlrTZqkbs EFR+DZsUuBPv0N6GODmOAOjoHd0vZNZVyhCg7u1mkd1i9xF3ANUPZpwToXVG55nm gUpXnG1C/Zu41behpri4z1KSgWjD3Q1zjBrNi2VOBp9Fj3SpYjuggmR6emmgOgWx p88svy2wrgvquZGheXsBakXU4lO6bFEHAbA9J/TdYy+mZG56i0CArRvfpUXIUHC8 0mu7CV7NnIfxSCw+lN1U6RiAxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDct2Ter ApF4UtsuyFiKXf5qXWBxMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMbo2r9LJQhGC30oI4W/jLt80QozxYSx/vd48UjqaULFJRYCCM+Rl1 xmtiS6KKxE1+DMd8BZPOb20oCFae5ET6I8Y3pKSZkkwZVuDgqRiLyjDutt0ZEFmT qnBmKjmlvuS/K+HGYL1ofy5aj6shVGw8Mv6ikYtJDsTLSm1l9PM/kE1uy/XuEciA 0Wd1dVKUKGumCneXrAWcL5daiBJGVnkEmQj5JdygD6FO+FarvntQgQLa5hh3W5TW nBsu509xlBlnAhU7fFtdr9saMfAXsjMjocWohPHE8EkU40GfwodivxhXG5ebV2YQ bi4Yf2gMzRYmigcdiUjfojhiEFA8/LAJ -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:49 2025 by rpki-client