$ rpki-client -vvf rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.mft File: R8cEZQRKLhQBRUf6ebt6VP42674.mft (raw, json) Hash identifier: R1qSKjMB2yBkbpOGKwfuFB2DtyHDmJaD+hwYVBhk5vY= Subject key identifier: 51:FC:3A:47:D1:90:C6:74:F7:9F:C7:31:54:C4:4E:91:B8:A3:FA:79 Authority key identifier: 47:C7:04:65:04:4A:2E:14:01:45:47:FA:79:BB:7A:54:FE:36:EB:BE Certificate issuer: /CN=A919B80A/serialNumber=47C70465044A2E14014547FA79BB7A54FE36EBBE Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8cEZQRKLhQBRUf6ebt6VP42674.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.mft Manifest number: 0684 Signing time: Thu 24 Apr 2025 22:04:18 +0000 Manifest this update: Thu 24 Apr 2025 22:04:18 +0000 Manifest next update: Thu 01 May 2025 22:04:18 +0000 Files and hashes: 1: R8cEZQRKLhQBRUf6ebt6VP42674.crl (hash: b2X5rIVs+5TlmlrFUzPmQ2cXvkFkxvuTNaBwOaSBdws=) 2: 858F093E6D6C11EBA3CFBD21C4F9AE02.roa (hash: bRtjBGYS/QbRw/iqaVSzb9XF2vNOvi7n10101duqilA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.crl rsync://rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8cEZQRKLhQBRUf6ebt6VP42674.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B80A, serialNumber=47C70465044A2E14014547FA79BB7A54FE36EBBE Validity Not Before: Apr 24 22:04:18 2025 GMT Not After : May 1 22:04:18 2025 GMT Subject: CN=680ab562-2cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:21:75:d5:a3:11:19:fe:cb:2a:81:03:97:cf: e9:e8:85:70:1b:be:f8:2f:57:34:a6:1a:d7:cd:45: e5:e9:2e:62:d1:f8:4e:74:b3:09:11:cb:30:0c:e0: d3:95:2c:92:04:14:43:88:2d:02:0d:cf:70:a3:85: b8:e7:25:b5:45:24:35:29:57:39:40:65:8d:8c:83: ce:a9:e4:0a:38:58:5d:d0:5c:e4:7f:38:1e:5e:34: 5f:47:2a:e9:96:1a:ec:16:d9:51:19:e8:84:82:9a: 0d:89:70:99:88:bd:57:cb:a5:79:67:84:ef:89:60: 60:46:ae:d3:f2:7e:0a:d8:b0:29:50:40:80:4a:a2: 9e:f1:36:4d:5f:bd:f7:db:e8:7f:77:43:da:53:55: d1:ea:7c:c8:08:6f:d0:f2:61:ba:9e:3c:ec:ab:06: 3a:3d:0a:cb:e4:4c:93:35:8a:29:12:a5:5c:72:aa: 09:c1:99:6b:4a:63:2d:b7:b4:a8:f6:b1:84:80:cf: 27:7d:2b:50:86:5c:61:07:03:18:e2:ee:86:f4:97: 55:11:85:0c:9d:e4:fc:33:50:e7:21:8b:cf:9a:e0: 53:3b:65:ea:88:21:c0:df:91:83:4e:e6:b1:81:d1: f0:71:35:53:6e:44:d5:4d:7b:42:ae:e6:53:0e:8e: bd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FC:3A:47:D1:90:C6:74:F7:9F:C7:31:54:C4:4E:91:B8:A3:FA:79 X509v3 Authority Key Identifier: keyid:47:C7:04:65:04:4A:2E:14:01:45:47:FA:79:BB:7A:54:FE:36:EB:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8cEZQRKLhQBRUf6ebt6VP42674.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B80A/F8E722566D6A11EBB04F8620C4F9AE02/R8cEZQRKLhQBRUf6ebt6VP42674.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ca:11:b3:68:e0:a2:14:25:e0:bf:90:09:a1:97:8c:1f:a8: 03:5c:99:fb:33:b6:e8:7e:49:c0:0b:2d:19:c9:47:7c:7e:8f: 82:98:b7:58:77:43:52:68:cc:98:ad:b6:fc:2a:00:08:83:19: d6:47:d5:31:78:7e:e4:0c:c3:d0:35:16:03:6c:be:f0:38:8b: 21:ee:f1:a1:8b:b8:a3:6b:4d:d8:d4:e7:ed:13:e8:39:ae:d4: 9f:6e:28:5f:8d:5c:44:e7:46:ed:b2:4e:0b:a4:1b:60:80:8a: 0a:7c:e9:cf:67:31:e8:ac:89:de:56:94:ed:b9:39:72:76:0b: cc:7c:71:81:61:93:58:63:31:c2:70:62:5c:2e:88:51:51:7a: cf:16:96:03:24:fb:af:bf:ea:ac:b9:c7:56:52:ff:fa:7a:c0: d3:db:96:a3:0f:e2:ab:3d:d1:ee:cd:73:b2:b1:ba:36:35:b4: 17:ea:e7:62:c9:e4:b7:65:63:e1:75:cb:4a:68:ac:d9:2b:e3: aa:b1:00:17:0a:f1:2e:7a:64:48:c1:72:76:5b:e6:13:08:f3: 9b:36:a8:0b:75:e9:07:7a:6d:65:28:e8:d1:67:e9:e6:f5:59: fa:40:cb:c7:9a:87:51:1d:70:ee:ef:87:06:e5:06:2e:87:69: 5e:cc:e7:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI4MEExMTAvBgNVBAUTKDQ3QzcwNDY1MDQ0QTJFMTQwMTQ1NDdGQTc5QkI3QTU0 RkUzNkVCQkUwHhcNMjUwNDI0MjIwNDE4WhcNMjUwNTAxMjIwNDE4WjAYMRYwFAYD VQQDEw02ODBhYjU2Mi0yY2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CF11aMRGf7LKoEDl8/p6IVwG774L1c0phrXzUXl6S5i0fhOdLMJEcswDODT lSySBBRDiC0CDc9wo4W45yW1RSQ1KVc5QGWNjIPOqeQKOFhd0FzkfzgeXjRfRyrp lhrsFtlRGeiEgpoNiXCZiL1Xy6V5Z4TviWBgRq7T8n4K2LApUECASqKe8TZNX733 2+h/d0PaU1XR6nzICG/Q8mG6njzsqwY6PQrL5EyTNYopEqVccqoJwZlrSmMtt7So 9rGEgM8nfStQhlxhBwMY4u6G9JdVEYUMneT8M1DnIYvPmuBTO2XqiCHA35GDTuax gdHwcTVTbkTVTXtCruZTDo693wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFH8OkfR kMZ095/HMVTETpG4o/p5MB8GA1UdIwQYMBaAFEfHBGUESi4UAUVH+nm7elT+Nuu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjgwQS9GOEU3MjI1NjZE NkExMUVCQjA0Rjg2MjBDNEY5QUUwMi9SOGNFWlFSS0xoUUJSVWY2ZWJ0NlZQNDI2 NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I4Y0VaUVJLTGhRQlJVZjZlYnQ2VlA0MjY3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjgwQS9GOEU3MjI1NjZENkExMUVCQjA0Rjg2MjBDNEY5QUUwMi9SOGNFWlFSS0xo UUJSVWY2ZWJ0NlZQNDI2NzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxyhGzaOCiFCXgv5AJoZeMH6gDXJn7M7bofknACy0ZyUd8fo+CmLdY d0NSaMyYrbb8KgAIgxnWR9UxeH7kDMPQNRYDbL7wOIsh7vGhi7ija03Y1OftE+g5 rtSfbihfjVxE50btsk4LpBtggIoKfOnPZzHorIneVpTtuTlydgvMfHGBYZNYYzHC cGJcLohRUXrPFpYDJPuvv+qsucdWUv/6esDT25ajD+KrPdHuzXOysbo2NbQX6udi yeS3ZWPhdctKaKzZK+OqsQAXCvEuemRIwXJ2W+YTCPObNqgLdekHem1lKOjRZ+nm 9Vn6QMvHmodRHXDu74cG5QYuh2lezOdB -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:25 2025 by rpki-client