$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: gFHFsv6j5sj26wd2r1N8c98oaZh7P+giH16ffN/0Qmc= Subject key identifier: 07:8F:1C:CC:E0:6E:C7:16:48:7E:69:0C:F5:63:CD:87:E3:F0:4A:43 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 14 Signing time: Fri 25 Apr 2025 07:03:26 +0000 Manifest this update: Fri 25 Apr 2025 07:03:26 +0000 Manifest next update: Fri 02 May 2025 07:03:26 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: Ef2DCOcIPVMjpd6Mj/Vao7NxvyWrFYymyXjjtPqm1Do=) 2: DE08EC260AF011F09BE4823DC4F9AE02.roa (hash: tS0pbkGyUAuopYmy/atTnvcHHOXmpYRnPtmCrrMVkIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Apr 25 07:03:26 2025 GMT Not After : May 2 07:03:26 2025 GMT Subject: CN=680b33be-b1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d6:36:c7:41:49:f2:3d:75:2e:aa:46:81:96: 6a:8a:32:6a:a1:ac:33:bb:66:07:69:ea:f9:a8:59: 03:c8:e6:80:ea:47:35:1a:b7:54:42:45:2b:63:16: 75:9d:b7:db:25:32:28:61:60:cd:1f:d7:f6:3e:6e: e5:c6:ec:bb:f3:f1:56:aa:9c:5b:f3:bf:ec:9f:a2: 0a:36:f6:08:9a:74:d0:a5:da:a4:a3:e8:b6:25:b2: 74:5f:e1:de:3c:0c:e7:11:aa:41:4e:8f:2c:9d:a2: b0:9a:08:1e:fb:29:7f:b8:6b:2f:80:a3:0f:0c:ab: 8c:b4:50:22:f1:de:df:23:08:17:86:11:bd:16:f1: 4c:91:9e:0f:da:d9:fa:17:54:c2:1e:f3:b8:94:db: ac:9f:64:9f:15:b6:e0:d9:c5:2d:1b:83:2c:19:ba: 9d:3d:46:d4:bd:ee:e5:11:86:bc:48:f6:0a:0f:ff: 4c:f5:2e:45:f3:79:22:98:9e:32:47:5c:04:1e:d4: 1a:76:45:9c:80:34:b9:f8:a3:6d:09:f2:2d:53:f8: b9:52:52:6e:2e:03:2b:3c:19:5c:f3:89:6e:c3:50: 00:c5:b4:9d:22:b0:9f:ce:fe:32:34:d4:6e:d8:84: 25:a4:bc:fd:e4:8e:e2:8e:75:2f:7c:b9:2c:bf:0a: 98:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8F:1C:CC:E0:6E:C7:16:48:7E:69:0C:F5:63:CD:87:E3:F0:4A:43 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9d:9d:9a:2c:99:32:e1:2c:2e:1d:e9:7f:2d:e9:19:ef:c6: bf:aa:3d:46:69:a7:eb:dc:71:89:b0:06:0f:db:c7:46:b0:50: f5:aa:ec:a5:59:32:00:85:72:97:5e:8d:e7:a6:27:e7:2c:3d: 46:8c:7c:99:77:53:3a:25:f7:8c:70:5f:74:df:32:04:2c:4e: 3d:94:a3:fb:e9:8b:29:91:7e:c0:59:74:9c:07:a0:1c:0f:1c: 4b:62:7d:d9:de:34:28:fa:eb:f6:be:22:7b:91:97:d3:00:a7: b1:e4:89:33:15:50:f3:a2:46:c2:0f:e8:78:9b:5c:c6:81:06: 2d:9a:69:63:f7:ed:ae:a5:bb:c9:2b:74:5b:b7:08:82:2b:6d: 17:70:93:18:90:48:25:bc:db:87:26:d4:b4:1e:a6:0b:f7:01: ee:a3:c2:79:74:40:0d:c9:cf:3b:32:e5:66:8a:05:02:ee:db: e9:58:71:b4:df:11:d5:eb:e5:0d:f5:b2:65:be:d7:b4:e1:16: c1:e5:e8:af:e2:b7:76:1d:91:cc:1d:73:01:d2:bd:c1:33:a7: 90:b7:51:0b:42:d1:18:1d:16:db:28:20:3e:6b:90:6a:97:6e: 1e:d0:a4:bc:0d:94:61:5b:76:ce:c3:de:b2:28:de:03:57:82: cc:0b:f8:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTA0MjUwNzAzMjZaFw0yNTA1MDIwNzAzMjZaMBgxFjAUBgNV BAMTDTY4MGIzM2JlLWIxY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe1jbHQUnyPXUuqkaBlmqKMmqhrDO7Zgdp6vmoWQPI5oDqRzUat1RCRStjFnWd t9slMihhYM0f1/Y+buXG7Lvz8VaqnFvzv+yfogo29giadNCl2qSj6LYlsnRf4d48 DOcRqkFOjyydorCaCB77KX+4ay+Aow8Mq4y0UCLx3t8jCBeGEb0W8UyRng/a2foX VMIe87iU26yfZJ8VtuDZxS0bgywZup09RtS97uURhrxI9goP/0z1LkXzeSKYnjJH XAQe1Bp2RZyANLn4o20J8i1T+LlSUm4uAys8GVzziW7DUADFtJ0isJ/O/jI01G7Y hCWkvP3kjuKOdS98uSy/CpjDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUB48czOBu xxZIfmkM9WPNh+PwSkMwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEqdnZosmTLhLC4d6X8t6Rnvxr+qPUZpp+vccYmwBg/bx0awUPWq7KVZ MgCFcpdejeemJ+csPUaMfJl3Uzol94xwX3TfMgQsTj2Uo/vpiymRfsBZdJwHoBwP HEtifdneNCj66/a+InuRl9MAp7HkiTMVUPOiRsIP6HibXMaBBi2aaWP37a6lu8kr dFu3CIIrbRdwkxiQSCW824cm1LQepgv3Ae6jwnl0QA3Jzzsy5WaKBQLu2+lYcbTf EdXr5Q31smW+17ThFsHl6K/it3YdkcwdcwHSvcEzp5C3UQtC0RgdFtsoID5rkGqX bh7QpLwNlGFbds7D3rIo3gNXgswL+Hk= -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:37 2025 by rpki-client