$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: dct/y5unnIdynbONAhRx1sk4q67X9sXasbNUfcHECYc= Subject key identifier: B5:C0:C6:95:5C:0A:DD:01:8E:F6:59:2A:C9:60:29:AF:54:F6:9B:68 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 10B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 109B Signing time: Sat 26 Apr 2025 17:15:49 +0000 Manifest this update: Sat 26 Apr 2025 17:15:49 +0000 Manifest next update: Sat 03 May 2025 17:15:49 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: XHUViA39sB3MvU5U+BVgcJbxdcQ6LeghhLrq7TSPe48=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4278 (0x10b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Apr 26 17:15:49 2025 GMT Not After : May 3 17:15:49 2025 GMT Subject: CN=680d14c5-d4d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:42:4a:69:10:54:a9:82:3d:c9:34:ab:4c:c6: 51:9e:4b:a4:1d:e3:3c:e5:c6:db:27:7a:8f:f7:0c: 15:35:0b:59:7c:b1:e7:68:e2:30:d3:9f:be:c6:82: 08:c5:c9:54:3d:43:97:4a:6a:18:4c:6e:ec:64:51: e2:95:0a:e9:22:78:17:85:96:4e:a4:51:59:81:65: 25:16:65:f0:fe:0f:be:0b:00:d5:ae:82:6e:be:03: 71:1e:8a:c9:75:b7:8b:28:fa:35:be:5f:a7:19:9b: b8:d9:57:ea:82:22:10:52:20:ec:23:6a:27:5d:00: 12:f8:86:3a:33:7f:1a:01:b9:80:88:8d:f6:66:7b: 93:7c:f2:d8:72:41:e8:4c:3b:14:93:b3:3e:9f:bc: 34:a2:45:84:8c:3f:f7:01:ce:ee:e9:d4:20:b8:30: be:e1:7d:f6:6a:43:2b:63:4e:7c:73:f3:8a:96:13: 2b:07:04:bc:fa:bc:91:06:9c:f9:e4:67:f2:2b:01: da:cd:01:f9:b1:b1:86:28:fd:03:09:0b:12:05:b0: 94:62:e7:95:f3:a4:5e:8e:b5:97:20:05:6a:e0:34: 4e:4a:9a:22:b2:04:bb:83:b7:f5:2c:4c:e8:10:8f: 13:17:eb:96:e0:22:94:2f:75:3f:cb:49:ff:5a:2e: af:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C0:C6:95:5C:0A:DD:01:8E:F6:59:2A:C9:60:29:AF:54:F6:9B:68 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:31:c9:6a:23:2a:9b:e4:bf:f0:8f:4e:bd:1d:34:53:bf:99: f6:c7:6d:82:9e:8c:ab:de:66:b3:ec:f0:3f:23:9b:73:d9:21: 69:f7:90:47:66:d8:e2:97:9e:f5:2f:4d:01:ac:ab:d3:6b:d3: d7:2a:9a:70:02:66:d9:1d:68:25:8c:7f:92:a3:c4:bf:67:85: 2d:df:6f:82:64:6a:2e:5b:eb:f2:64:7a:d9:fa:d7:ac:77:93: dd:a7:f6:c6:e1:b2:4e:1b:4d:f2:67:2a:8f:e1:42:ea:41:23: 9e:50:78:b2:bd:e5:c9:ff:ab:c5:79:53:52:2f:dc:dd:56:a3: f8:77:3e:23:09:a2:31:6b:e7:d6:51:4d:d2:b9:f8:af:a6:2d: 0b:61:7a:3a:67:7b:5b:bb:10:78:3d:4f:2e:41:2f:50:dc:79: e0:4a:ee:bc:54:76:24:5b:19:ca:3b:bd:d6:62:9b:c7:43:ef: a6:64:f1:7e:5f:e4:7c:e7:15:01:0c:7a:90:9f:11:c8:5e:35: 02:ba:52:47:54:aa:c9:2b:62:e8:63:57:03:a1:6c:ca:22:3b: 4d:e1:a4:85:20:3a:72:08:05:e9:cd:92:dd:43:20:f4:00:d1: 47:f5:1e:33:6b:26:fd:a7:34:fa:7d:24:ab:3b:00:c7:5e:c8: e3:06:49:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwNDI2MTcxNTQ5WhcNMjUwNTAzMTcxNTQ5WjAYMRYwFAYD VQQDEw02ODBkMTRjNS1kNGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UJKaRBUqYI9yTSrTMZRnkukHeM85cbbJ3qP9wwVNQtZfLHnaOIw05++xoII xclUPUOXSmoYTG7sZFHilQrpIngXhZZOpFFZgWUlFmXw/g++CwDVroJuvgNxHorJ dbeLKPo1vl+nGZu42VfqgiIQUiDsI2onXQAS+IY6M38aAbmAiI32ZnuTfPLYckHo TDsUk7M+n7w0okWEjD/3Ac7u6dQguDC+4X32akMrY058c/OKlhMrBwS8+ryRBpz5 5GfyKwHazQH5sbGGKP0DCQsSBbCUYueV86RejrWXIAVq4DROSpoisgS7g7f1LEzo EI8TF+uW4CKUL3U/y0n/Wi6vjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXAxpVc Ct0BjvZZKslgKa9U9ptoMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMclqIyqb5L/wj069HTRTv5n2x22Cnoyr3maz7PA/I5tz2SFp95BH Ztjil571L00BrKvTa9PXKppwAmbZHWgljH+So8S/Z4Ut32+CZGouW+vyZHrZ+tes d5Pdp/bG4bJOG03yZyqP4ULqQSOeUHiyveXJ/6vFeVNSL9zdVqP4dz4jCaIxa+fW UU3Sufivpi0LYXo6Z3tbuxB4PU8uQS9Q3HngSu68VHYkWxnKO73WYpvHQ++mZPF+ X+R85xUBDHqQnxHIXjUCulJHVKrJK2LoY1cDoWzKIjtN4aSFIDpyCAXpzZLdQyD0 ANFH9R4zayb9pzT6fSSrOwDHXsjjBkmK -----END CERTIFICATE-----Generated at Sat Apr 26 20:07:18 2025 by rpki-client