$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: Jo4xAt3eERxZeR72dSbyV42qK+kApHkt+TL+ctXwY9o= Subject key identifier: 6B:75:D2:09:B8:FF:02:08:B2:60:AC:60:71:A7:50:1B:27:92:C0:34 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: C7 Signing time: Fri 25 Apr 2025 04:47:55 +0000 Manifest this update: Fri 25 Apr 2025 04:47:54 +0000 Manifest next update: Fri 02 May 2025 04:47:54 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: jMIVwlNffRgfqT4DFVG7tU/wQ9nj0+vvd4hKsyGiqSk=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Apr 25 04:47:54 2025 GMT Not After : May 2 04:47:54 2025 GMT Subject: CN=680b13fa-39bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:37:4e:0c:86:49:83:bb:fe:7b:0d:6b:69:27: 87:61:73:31:d4:5f:7a:d2:8a:ac:1c:db:fd:e6:80: 15:9c:d7:73:a4:96:c3:4f:de:fa:8d:c9:83:33:9e: c4:7e:d7:d9:30:ac:1f:0a:73:ff:8f:73:6b:4c:9f: 79:24:82:11:9b:3e:ca:b0:f8:f8:9f:48:b4:4e:9a: 90:90:53:4d:9a:a0:a3:9d:e8:89:f0:99:b8:41:f4: ef:70:a5:67:bf:ad:e0:35:76:63:73:08:01:50:9f: 41:ea:d1:02:24:96:02:50:9a:10:47:fc:94:da:5c: 36:5f:46:b7:5c:b8:af:a3:48:85:5e:13:09:6e:aa: c2:54:88:a1:18:dc:0b:e0:3a:4c:02:cc:94:c6:ac: 0f:86:88:8c:5b:fd:26:be:65:0b:a7:78:bf:ee:a3: e1:0d:2c:4d:24:7e:ef:d4:c2:83:a4:4e:ed:37:22: ee:ba:70:cf:a3:94:a9:fc:97:d4:38:c0:6f:a0:d2: 33:5f:82:d7:0a:21:90:f2:57:c1:0c:80:a6:99:d7: 8f:c0:0a:61:2e:71:0c:34:5c:6c:46:8d:39:0b:10: 54:c3:f7:ad:ee:72:df:42:1f:10:f2:c1:cc:0f:de: 7c:0e:71:f3:06:46:e1:6f:0d:99:f8:f7:f0:6a:8f: a3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:75:D2:09:B8:FF:02:08:B2:60:AC:60:71:A7:50:1B:27:92:C0:34 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9a:82:e6:1f:46:84:4e:bc:c7:3c:a5:f4:f8:f5:ad:4d:18: f6:48:c7:67:42:75:c5:cd:cd:2f:db:24:b8:ac:f9:ff:bb:51: ec:f0:91:42:61:62:2b:8f:49:88:f6:a5:76:e5:7b:af:6d:9b: 1c:21:e0:4f:76:f9:41:7d:95:7f:83:64:6b:11:f9:8f:79:ae: c7:cf:2c:24:6d:55:89:4e:31:69:9e:79:8e:57:21:22:ea:e6: e7:ba:52:a9:4e:38:ff:29:7c:29:a0:5a:34:14:0b:e3:e3:9b: cf:79:ea:0e:fb:c2:23:09:46:97:cd:03:75:4f:fa:05:cf:57: 19:b0:eb:99:b3:0c:4b:67:1b:a9:75:58:f2:ca:23:29:2c:49: 78:be:61:7a:67:ac:78:1c:50:12:a7:9a:20:e7:a6:06:ef:fa: 72:4f:64:81:ac:0e:ee:19:16:7f:34:8c:dd:3a:b7:fc:e7:4a: 07:87:88:fc:af:ff:da:9b:a3:b3:89:41:12:f0:d9:c6:93:02: 7f:37:22:9b:02:ad:cf:e7:7b:21:71:9e:94:eb:a0:45:cf:a1: b1:63:7d:b3:26:d6:ea:b7:be:2c:f4:4e:b8:c5:5e:c8:0f:ed: ce:ff:59:bd:5a:2e:dd:b9:6e:4f:f6:7e:25:5d:46:ed:d9:ca: 7f:af:54:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwNDI1MDQ0NzU0WhcNMjUwNTAyMDQ0NzU0WjAYMRYwFAYD VQQDEw02ODBiMTNmYS0zOWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzdODIZJg7v+ew1raSeHYXMx1F960oqsHNv95oAVnNdzpJbDT976jcmDM57E ftfZMKwfCnP/j3NrTJ95JIIRmz7KsPj4n0i0TpqQkFNNmqCjneiJ8Jm4QfTvcKVn v63gNXZjcwgBUJ9B6tECJJYCUJoQR/yU2lw2X0a3XLivo0iFXhMJbqrCVIihGNwL 4DpMAsyUxqwPhoiMW/0mvmULp3i/7qPhDSxNJH7v1MKDpE7tNyLuunDPo5Sp/JfU OMBvoNIzX4LXCiGQ8lfBDICmmdePwAphLnEMNFxsRo05CxBUw/et7nLfQh8Q8sHM D958DnHzBkbhbw2Z+Pfwao+jLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGt10gm4 /wIIsmCsYHGnUBsnksA0MB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsmoLmH0aETrzHPKX0+PWtTRj2SMdnQnXFzc0v2yS4rPn/u1Hs8JFC YWIrj0mI9qV25XuvbZscIeBPdvlBfZV/g2RrEfmPea7HzywkbVWJTjFpnnmOVyEi 6ubnulKpTjj/KXwpoFo0FAvj45vPeeoO+8IjCUaXzQN1T/oFz1cZsOuZswxLZxup dVjyyiMpLEl4vmF6Z6x4HFASp5og56YG7/pyT2SBrA7uGRZ/NIzdOrf850oHh4j8 r//am6OziUES8NnGkwJ/NyKbAq3P53shcZ6U66BFz6GxY32zJtbqt74s9E64xV7I D+3O/1m9Wi7duW5P9n4lXUbt2cp/r1Qy -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:41 2025 by rpki-client