$ rpki-client -vvf rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft File: w7rY8KXaBY6fklA30EqnHJKLoXM.mft (raw, json) Hash identifier: 5UBBeR9DV1u6R+Lkh119UST5t+rTK+tRahTUGMyAYoQ= Subject key identifier: 48:3E:3A:63:90:8D:D4:44:82:7C:AD:21:9D:4A:29:4E:DA:CF:89:5F Authority key identifier: C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 Certificate issuer: /CN=A9189265/serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Certificate serial: 19AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft Manifest number: 19A5 Signing time: Thu 24 Apr 2025 16:24:13 +0000 Manifest this update: Thu 24 Apr 2025 16:24:12 +0000 Manifest next update: Thu 01 May 2025 16:24:12 +0000 Files and hashes: 1: w7rY8KXaBY6fklA30EqnHJKLoXM.crl (hash: S5QpmGUx8MOexeL3nAfVoJRHYD5VL3JliETk863DJ8w=) 2: 885DA760AA8811E799348329C4F9AE02.roa (hash: yqEcj3SZ3T1pYpHMLtfx0ZxmS715TGOM5EI1dS08gyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6575 (0x19af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189265, serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Validity Not Before: Apr 24 16:24:12 2025 GMT Not After : May 1 16:24:12 2025 GMT Subject: CN=680a65ac-409c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:38:25:73:69:6f:5b:71:ed:fa:58:55:85:af: 13:00:71:2e:35:21:14:6e:2c:44:4e:31:1d:a1:c7: fe:0d:7d:0a:5b:54:b6:bb:5e:d3:30:b7:ea:ec:a1: 17:09:05:50:21:57:a8:5a:32:44:e3:aa:9e:86:c3: 18:83:4a:0e:51:37:75:a0:e8:58:ff:ff:41:e4:d6: 13:c6:bd:bf:fa:bb:01:7b:d5:74:7b:90:a0:43:db: 7d:28:ed:b4:ba:43:ec:3c:64:31:05:fa:f5:4f:4a: 74:2f:74:76:ba:d1:47:89:a6:bd:8e:91:78:9b:70: ed:4b:3a:30:f5:f3:b3:44:16:e1:31:59:06:5a:d4: 44:58:70:9c:ab:2d:23:c5:87:37:64:ca:3f:ae:03: b4:4d:4b:af:49:c3:15:f9:34:9e:a2:b5:61:f1:5f: 56:99:04:60:9b:11:3c:86:bd:ec:81:57:6e:15:69: e3:39:e4:c4:1a:20:f0:d5:f8:2f:28:ba:3c:d6:9f: ea:55:f4:b1:ff:6a:4f:9e:36:dc:f9:bf:b1:c9:15: 6e:40:6c:c1:61:78:82:e2:be:f3:5f:cf:12:97:3c: 5a:c1:cf:f8:fb:0a:8a:13:d7:c5:ee:26:51:db:3f: 4c:b1:25:1a:fb:29:91:4c:65:2e:c8:13:ee:56:c4: 1e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3E:3A:63:90:8D:D4:44:82:7C:AD:21:9D:4A:29:4E:DA:CF:89:5F X509v3 Authority Key Identifier: keyid:C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ea:b2:11:82:10:53:3b:14:89:5a:8c:5b:5e:9a:23:8d:ca: 0c:5b:e8:e7:a3:52:39:a4:ed:fd:4b:82:53:8a:ec:9e:24:a0: b7:3a:b8:91:d0:c9:bd:ae:09:5e:a4:aa:f7:73:e3:18:13:7b: 62:87:59:43:28:0e:44:8b:29:12:3f:09:11:01:1f:21:bf:72: 23:61:30:29:05:24:38:1f:6b:30:70:c2:ad:ea:cd:27:5f:c7: b0:0a:5b:e2:07:db:46:23:4b:07:b8:74:48:21:84:48:cf:be: 35:9f:fe:72:27:50:0f:2a:17:37:8c:c7:21:cd:c8:05:71:f5: 53:d7:85:5b:1d:e7:8c:c0:66:ab:34:51:86:72:00:fc:f0:15: 55:35:1e:35:3d:2c:b5:8c:fe:e2:3b:bd:82:ad:09:8c:c9:c9: d3:a6:df:89:84:0e:15:74:e9:48:68:cf:37:b2:be:3c:cb:a9: 7a:9c:d1:b4:84:d5:e8:16:b0:e3:14:9b:b9:46:5c:6e:dc:ab: 90:32:83:29:0e:e6:47:5b:58:d1:0e:d0:ee:72:b7:87:ec:ef: 6a:3b:00:9a:65:c5:fc:21:f8:49:7b:c4:39:48:3a:11:8b:5a: 91:81:a1:61:79:d2:75:3f:41:83:f6:84:ef:d6:f7:91:52:9a: f7:04:1a:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjUxMTAvBgNVBAUTKEMzQkFEOEYwQTVEQTA1OEU5RjkyNTAzN0QwNEFBNzFD OTI4QkExNzMwHhcNMjUwNDI0MTYyNDEyWhcNMjUwNTAxMTYyNDEyWjAYMRYwFAYD VQQDEw02ODBhNjVhYy00MDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jglc2lvW3Ht+lhVha8TAHEuNSEUbixETjEdocf+DX0KW1S2u17TMLfq7KEX CQVQIVeoWjJE46qehsMYg0oOUTd1oOhY//9B5NYTxr2/+rsBe9V0e5CgQ9t9KO20 ukPsPGQxBfr1T0p0L3R2utFHiaa9jpF4m3DtSzow9fOzRBbhMVkGWtREWHCcqy0j xYc3ZMo/rgO0TUuvScMV+TSeorVh8V9WmQRgmxE8hr3sgVduFWnjOeTEGiDw1fgv KLo81p/qVfSx/2pPnjbc+b+xyRVuQGzBYXiC4r7zX88Slzxawc/4+wqKE9fF7iZR 2z9MsSUa+ymRTGUuyBPuVsQemwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEg+OmOQ jdREgnytIZ1KKU7az4lfMB8GA1UdIwQYMBaAFMO62PCl2gWOn5JQN9BKpxySi6Fz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2NS9EOEI0QjYxRTYw MjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZNmZrbEEzMEVxbkhKS0xv WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3clk4S1hhQlk2ZmtsQTMwRXFuSEpLTG9YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2NS9EOEI0QjYxRTYwMjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZ NmZrbEEzMEVxbkhKS0xvWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS6rIRghBTOxSJWoxbXpojjcoMW+jno1I5pO39S4JTiuyeJKC3OriR 0Mm9rglepKr3c+MYE3tih1lDKA5EiykSPwkRAR8hv3IjYTApBSQ4H2swcMKt6s0n X8ewClviB9tGI0sHuHRIIYRIz741n/5yJ1APKhc3jMchzcgFcfVT14VbHeeMwGar NFGGcgD88BVVNR41PSy1jP7iO72CrQmMycnTpt+JhA4VdOlIaM83sr48y6l6nNG0 hNXoFrDjFJu5Rlxu3KuQMoMpDuZHW1jRDtDucreH7O9qOwCaZcX8IfhJe8Q5SDoR i1qRgaFhedJ1P0GD9oTv1veRUpr3BBqa -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:37 2025 by rpki-client