$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft File: 2K83cS1WsbaT720D40bADPPwST4.mft (raw, json) Hash identifier: sh6cCzqnCJUguNGTlQgAiClwKQnHXjOWQzXji3yAr2I= Subject key identifier: 61:6B:5E:C5:B3:E7:00:79:07:4A:74:69:88:5B:5C:2F:03:03:EB:E2 Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0F43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft Manifest number: 0F35 Signing time: Thu 24 Apr 2025 17:35:59 +0000 Manifest this update: Thu 24 Apr 2025 17:35:58 +0000 Manifest next update: Thu 01 May 2025 17:35:58 +0000 Files and hashes: 1: 2K83cS1WsbaT720D40bADPPwST4.crl (hash: AkY63j2koM7xAEiy8xOWVz1RGN7t3XMcF/uqr06IGSw=) 2: CC99502E382F11EEAB87A63EC4F9AE02.roa (hash: H75rCk5vM8kD4h9GxneHBI+FagArNRGg0zjNp/brQWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3907 (0xf43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Apr 24 17:35:58 2025 GMT Not After : May 1 17:35:58 2025 GMT Subject: CN=680a767e-e6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:33:29:25:53:f1:5d:9e:fa:f8:9e:4b:33:d8: ed:87:45:61:f8:de:6c:33:af:bf:6c:21:db:2c:cb: ca:b5:88:10:7f:58:5f:e5:f6:a5:fd:d9:1c:60:c9: 47:f7:bc:ce:af:54:8d:e3:57:d9:67:b2:a4:5f:a3: 87:4e:06:93:48:b4:e7:2e:d2:22:5e:f4:8a:99:ab: 9a:aa:63:0e:b9:f4:96:5a:ab:e7:cd:04:b3:fa:ad: 25:3c:7c:ee:41:8a:8b:de:32:23:4f:fa:5f:5b:76: 24:ed:11:95:29:85:02:66:aa:f5:f9:c3:03:61:10: a9:c1:e3:14:db:1b:cc:20:70:35:33:ae:d7:85:71: 20:05:df:59:a8:d5:34:56:f5:6c:fe:01:a0:a2:f7: 3e:a8:5a:38:cc:0d:26:84:78:9c:72:3c:a7:54:ec: 2f:c1:47:cd:a2:ab:5b:5b:33:fb:01:e7:9e:e2:ac: bc:92:5e:e8:13:9a:3d:85:ba:40:9f:3d:42:26:50: 23:39:45:1d:f9:a5:c4:d7:d7:b8:ec:24:9a:1a:6b: 2a:34:e7:f2:02:45:72:a8:03:66:0b:8d:47:5c:3b: be:fe:8d:af:3e:62:4c:12:9e:4d:72:f7:da:1c:8b: 04:99:ad:4e:9a:77:f9:bc:eb:fe:72:f4:25:3e:2e: 9e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6B:5E:C5:B3:E7:00:79:07:4A:74:69:88:5B:5C:2F:03:03:EB:E2 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9d:32:27:a1:66:1c:78:ba:96:36:11:df:7c:21:21:c5:d1: fd:f6:5b:36:17:c7:d9:9b:e8:f7:e3:32:4c:1c:62:74:b0:ae: 2e:ff:52:34:30:63:34:be:1d:3d:b9:de:bc:4d:4b:0c:29:1e: 21:23:9f:2a:ed:97:7b:e3:1a:15:24:b3:31:d0:e8:0d:b8:18: fa:e6:bd:17:6c:a8:9f:d3:9d:8e:d7:18:0a:62:93:1f:bc:10: b3:01:74:64:dd:10:38:90:9f:8f:15:e2:13:6b:4c:f4:d7:79: e3:48:f5:b4:13:44:f5:7c:d5:76:51:cd:7a:b3:ec:d9:7e:e0: a6:d7:ba:ba:e5:e3:c0:cb:ce:a9:b6:9f:44:e6:4e:7d:1b:82: 2c:de:8c:d3:72:e1:57:ed:3d:60:02:2d:9a:c1:e3:58:a6:2f: c2:70:49:98:07:86:d5:51:c3:39:de:a4:af:ce:35:5d:e7:da: 34:bb:88:aa:33:0b:59:d4:9c:c5:77:a2:d4:21:7d:11:74:3a: 78:5d:40:77:ab:fc:74:75:90:9a:20:94:22:cf:0e:6e:03:cc: 1e:13:75:97:1c:9e:52:e8:8d:bd:6a:34:c1:54:08:c4:05:7d: 74:a1:0e:1c:a5:4d:0f:aa:97:2f:e8:eb:e0:08:4e:33:3d:c0: a2:98:07:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjUwNDI0MTczNTU4WhcNMjUwNTAxMTczNTU4WjAYMRYwFAYD VQQDEw02ODBhNzY3ZS1lNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzMpJVPxXZ76+J5LM9jth0Vh+N5sM6+/bCHbLMvKtYgQf1hf5fal/dkcYMlH 97zOr1SN41fZZ7KkX6OHTgaTSLTnLtIiXvSKmauaqmMOufSWWqvnzQSz+q0lPHzu QYqL3jIjT/pfW3Yk7RGVKYUCZqr1+cMDYRCpweMU2xvMIHA1M67XhXEgBd9ZqNU0 VvVs/gGgovc+qFo4zA0mhHiccjynVOwvwUfNoqtbWzP7Aeee4qy8kl7oE5o9hbpA nz1CJlAjOUUd+aXE19e47CSaGmsqNOfyAkVyqANmC41HXDu+/o2vPmJMEp5Ncvfa HIsEma1Omnf5vOv+cvQlPi6eWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFrXsWz 5wB5B0p0aYhbXC8DA+viMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODZEMC9GQTc4QjA0NDZGQ0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3Ni YVQ3MjBENDBiQURQUHdTVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCnTInoWYceLqWNhHffCEhxdH99ls2F8fZm+j34zJMHGJ0sK4u/1I0 MGM0vh09ud68TUsMKR4hI58q7Zd74xoVJLMx0OgNuBj65r0XbKif052O1xgKYpMf vBCzAXRk3RA4kJ+PFeITa0z013njSPW0E0T1fNV2Uc16s+zZfuCm17q65ePAy86p tp9E5k59G4Is3ozTcuFX7T1gAi2aweNYpi/CcEmYB4bVUcM53qSvzjVd59o0u4iq MwtZ1JzFd6LUIX0RdDp4XUB3q/x0dZCaIJQizw5uA8weE3WXHJ5S6I29ajTBVAjE BX10oQ4cpU0Pqpcv6OvgCE4zPcCimAeN -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:51 2025 by rpki-client