$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: eS/Nhjz6eaqIvkqf6e8Bgl0ADFj2jB07NzzkaotAR+I= Subject key identifier: 82:6F:24:3D:86:5E:E6:8A:26:4C:B7:E3:1D:2E:9F:61:C2:8E:F6:2A Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 01F1 Signing time: Fri 25 Apr 2025 01:55:32 +0000 Manifest this update: Fri 25 Apr 2025 01:55:32 +0000 Manifest next update: Fri 02 May 2025 01:55:32 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: KbBQGt2z+bQgS7/QEwAMigV5JeUO/CPCi5XeV/UlwnA=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: lqcM6RjOOpcHbcMSpsAk23mqpVkVNUDVGMmcyhyBg8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Apr 25 01:55:32 2025 GMT Not After : May 2 01:55:32 2025 GMT Subject: CN=680aeb94-9549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:7b:38:34:06:5d:c6:a7:11:65:84:36:ef: 95:fa:8f:61:9d:5b:6d:c8:21:23:d3:6f:ef:a6:9e: 66:5f:27:e2:2f:5f:07:69:ac:15:14:f8:8b:5e:c0: 44:d0:88:a7:ea:1c:80:5a:d6:e1:cb:c1:2d:63:86: 0c:ab:5b:88:4b:e8:da:ad:05:2d:ae:63:34:af:6f: a0:33:34:25:d5:6d:0c:ba:97:a7:80:3b:e8:a3:51: ec:2a:2d:04:61:7e:f0:2a:76:44:a2:aa:88:bd:c4: 7a:f7:d0:3b:a7:9a:bf:92:c1:b4:35:9f:33:ce:2f: d6:02:7d:78:7e:fb:ac:7c:d4:28:bf:d2:64:64:56: 3a:3e:88:e8:8a:f4:c7:d1:94:52:2d:47:a7:35:ec: be:79:9c:52:fc:ca:b4:60:91:fc:22:07:fe:58:8f: 15:7d:a1:a2:7a:42:31:64:00:da:b3:a6:1d:b2:1e: 99:5c:5f:89:2a:e4:99:29:87:dc:37:d1:80:55:67: e4:48:55:f5:e8:f6:9f:aa:80:4e:01:5a:33:53:21: e1:e9:2e:d9:18:db:87:5b:97:5c:a3:0e:93:fe:0e: 61:63:b6:4c:53:01:e0:50:92:33:7e:1c:cb:fc:a0: 91:de:71:21:36:8b:80:69:56:ab:0d:64:7d:0f:64: 23:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6F:24:3D:86:5E:E6:8A:26:4C:B7:E3:1D:2E:9F:61:C2:8E:F6:2A X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:49:20:95:36:63:e1:e6:f8:e2:94:bf:f0:28:39:11:c5:bb: a5:54:5a:a8:15:f3:bc:dc:8d:c7:00:33:82:d1:e0:04:c9:d5: b4:9d:a9:fb:8d:41:ae:09:fb:26:8a:1e:f6:42:3d:35:e3:c4: fa:47:ec:30:d9:76:49:b7:d0:5b:8f:23:dc:67:1f:28:fa:1d: 66:05:b1:ac:59:da:b4:2c:af:d6:ca:4f:cb:7b:00:cd:de:ff: 8c:49:73:21:ad:52:c0:84:32:90:0d:4b:12:82:a1:6f:77:5c: 3b:1f:d8:66:58:c2:cc:07:d0:90:16:6d:e0:85:a4:d7:83:d3: 1b:4f:b8:b7:c0:49:52:ec:0d:e8:9d:a1:22:f1:1a:d4:c7:6e: 85:31:04:92:c8:12:00:c8:3c:c2:37:6b:1a:95:1b:c7:8f:92: 38:9b:fa:34:4f:2e:41:05:a2:95:da:a1:34:14:aa:73:e1:a4: a0:44:6f:67:28:d0:e4:25:5a:e1:cc:a9:3a:99:8f:fd:40:a4: b6:ae:0c:a3:80:70:c8:27:c6:f4:59:bd:78:4c:52:18:11:ee: c1:b8:7f:1b:b0:04:3d:68:e9:ee:7a:15:aa:61:a7:af:51:5e: a5:49:f8:b8:22:52:1b:ce:c3:b2:9f:6b:2e:46:15:ca:14:0d: b5:2a:51:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUwNDI1MDE1NTMyWhcNMjUwNTAyMDE1NTMyWjAYMRYwFAYD VQQDEw02ODBhZWI5NC05NTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGt7ODQGXcanEWWENu+V+o9hnVttyCEj02/vpp5mXyfiL18HaawVFPiLXsBE 0Iin6hyAWtbhy8EtY4YMq1uIS+jarQUtrmM0r2+gMzQl1W0MupengDvoo1HsKi0E YX7wKnZEoqqIvcR699A7p5q/ksG0NZ8zzi/WAn14fvusfNQov9JkZFY6PojoivTH 0ZRSLUenNey+eZxS/Mq0YJH8Igf+WI8VfaGiekIxZADas6Ydsh6ZXF+JKuSZKYfc N9GAVWfkSFX16PafqoBOAVozUyHh6S7ZGNuHW5dcow6T/g5hY7ZMUwHgUJIzfhzL /KCR3nEhNouAaVarDWR9D2QjYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJvJD2G XuaKJky34x0un2HCjvYqMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbSSCVNmPh5vjilL/wKDkRxbulVFqoFfO83I3HADOC0eAEydW0nan7 jUGuCfsmih72Qj0148T6R+ww2XZJt9BbjyPcZx8o+h1mBbGsWdq0LK/Wyk/LewDN 3v+MSXMhrVLAhDKQDUsSgqFvd1w7H9hmWMLMB9CQFm3ghaTXg9MbT7i3wElS7A3o naEi8RrUx26FMQSSyBIAyDzCN2salRvHj5I4m/o0Ty5BBaKV2qE0FKpz4aSgRG9n KNDkJVrhzKk6mY/9QKS2rgyjgHDIJ8b0Wb14TFIYEe7BuH8bsAQ9aOnuehWqYaev UV6lSfi4IlIbzsOyn2suRhXKFA21KlH1 -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:57 2025 by rpki-client