$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: lzpu3RDNEnRcZIezVs+8Cf1Wp6dIQNCMkYHqx1Jt8+Q= Subject key identifier: 9A:F3:60:BA:9C:C2:E9:5A:07:E8:61:2B:63:1B:AA:39:D6:CD:DB:09 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 015E Signing time: Fri 25 Apr 2025 03:15:48 +0000 Manifest this update: Fri 25 Apr 2025 03:15:48 +0000 Manifest next update: Fri 02 May 2025 03:15:48 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: Ua/FId5rSOCTNN7gQF9ttL8RcwyEeuDy87Pbif+2Z5g=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: bQCg19K5xN+p4d0M6W+H8xOlCOrAN5+b0tebovRRHFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Apr 25 03:15:48 2025 GMT Not After : May 2 03:15:48 2025 GMT Subject: CN=680afe64-e2f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c1:b6:bf:66:57:0b:cc:e2:35:fe:e9:d4:12: 15:14:62:dc:42:73:1e:3b:5b:46:72:3c:94:b1:ed: 02:ca:52:99:ac:68:3e:6e:9a:f5:c9:68:6f:5f:c2: 69:f8:7e:d1:96:c0:f1:6f:fd:35:b8:14:e9:04:5f: c0:e4:ed:7a:6f:e3:51:c7:9a:f2:1f:5c:a9:74:2d: 79:44:39:24:6f:7f:5b:62:51:fe:84:96:67:27:ca: bd:e6:2c:04:cc:7f:97:6c:dc:d9:59:24:01:10:90: 8f:df:99:45:4d:a9:2b:5c:2a:ea:74:1d:c5:e2:45: eb:59:3b:3b:4b:80:98:01:a9:09:a0:92:3e:2b:fa: 0b:c7:86:e2:92:f3:5a:99:5f:76:f5:89:0c:fc:1f: d2:cf:42:3e:44:b4:ef:38:c3:ff:90:1a:22:5b:4b: 09:8d:9d:74:d4:67:47:b2:95:fc:76:c9:5c:f3:d6: 1b:36:56:cb:cc:8b:ef:e5:f5:9c:3d:94:2d:9d:1a: 77:89:c5:43:76:dd:16:53:9f:b9:2c:53:a3:a2:2d: b1:a4:e0:d3:11:00:d5:bd:af:aa:91:8f:8e:60:a8: f7:d5:96:f6:e0:4e:ec:27:2a:9e:dc:35:f6:9a:45: 15:79:4f:51:d6:af:d9:a0:0f:07:6c:0a:f5:07:81: c5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F3:60:BA:9C:C2:E9:5A:07:E8:61:2B:63:1B:AA:39:D6:CD:DB:09 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a6:66:b9:d7:61:c3:ae:60:ef:0c:e4:b4:78:37:c0:ab:e5: 50:a7:d8:b5:12:c3:91:ed:db:d6:b2:82:f2:d2:6d:bf:48:81: ba:6f:41:78:62:cc:d9:ce:21:31:5e:3e:47:59:03:29:28:3b: ef:cd:0b:cd:38:7d:6a:ac:38:8b:2a:74:14:7a:bc:d5:38:ff: e8:f8:2c:0c:89:cf:52:03:d9:0b:75:0f:45:a9:dd:fa:69:74: 5c:3f:7d:b5:ba:2e:68:2a:43:11:0c:6e:f0:9e:30:0c:e0:d3: 36:d6:d5:c8:12:8c:1b:95:c3:61:e9:9a:c5:ea:2a:6a:e6:55: 1b:6a:e7:47:db:e0:c3:60:48:1b:98:6c:27:80:48:2a:f6:81: c8:84:e0:da:f2:d9:4b:8d:0f:e2:2f:09:01:66:e7:d6:53:2e: 00:b3:ff:5b:8e:c2:01:30:c2:4e:b4:f7:e3:da:70:6e:de:08: 69:fd:00:44:3f:65:c2:78:b1:f4:9e:34:dc:5a:6a:be:bc:cf: 67:b6:ad:93:3c:f9:5b:94:de:a0:3a:7e:04:b7:f0:5b:81:14: b7:49:8f:0f:f0:f3:42:a2:6d:9e:48:ae:f2:0c:48:ed:a0:84: 5d:a1:42:5f:8d:6e:7d:f1:65:eb:f6:57:83:05:f3:04:42:fc: 94:ca:33:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjUwNDI1MDMxNTQ4WhcNMjUwNTAyMDMxNTQ4WjAYMRYwFAYD VQQDEw02ODBhZmU2NC1lMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMG2v2ZXC8ziNf7p1BIVFGLcQnMeO1tGcjyUse0CylKZrGg+bpr1yWhvX8Jp +H7RlsDxb/01uBTpBF/A5O16b+NRx5ryH1ypdC15RDkkb39bYlH+hJZnJ8q95iwE zH+XbNzZWSQBEJCP35lFTakrXCrqdB3F4kXrWTs7S4CYAakJoJI+K/oLx4bikvNa mV929YkM/B/Sz0I+RLTvOMP/kBoiW0sJjZ101GdHspX8dslc89YbNlbLzIvv5fWc PZQtnRp3icVDdt0WU5+5LFOjoi2xpODTEQDVva+qkY+OYKj31Zb24E7sJyqe3DX2 mkUVeU9R1q/ZoA8HbAr1B4HF7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrzYLqc wulaB+hhK2MbqjnWzdsJMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfpma512HDrmDvDOS0eDfAq+VQp9i1EsOR7dvWsoLy0m2/SIG6b0F4 YszZziExXj5HWQMpKDvvzQvNOH1qrDiLKnQUerzVOP/o+CwMic9SA9kLdQ9Fqd36 aXRcP321ui5oKkMRDG7wnjAM4NM21tXIEowblcNh6ZrF6ipq5lUbaudH2+DDYEgb mGwngEgq9oHIhODa8tlLjQ/iLwkBZufWUy4As/9bjsIBMMJOtPfj2nBu3ghp/QBE P2XCeLH0njTcWmq+vM9ntq2TPPlblN6gOn4Et/BbgRS3SY8P8PNCom2eSK7yDEjt oIRdoUJfjW598WXr9leDBfMEQvyUyjMz -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:08 2025 by rpki-client