$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft File: woYQciwbyJvjK01LiizCHeZxfMg.mft (raw, json) Hash identifier: S18dyA2YaNXGlTthUAqFpXLU1aFwjqpYlTnhOfyflCY= Subject key identifier: ED:CC:E0:3D:9C:2A:B3:4A:09:12:4B:0C:56:D6:9F:54:C2:CC:A4:FB Authority key identifier: C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 Certificate issuer: /CN=A91E11D6/serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft Manifest number: 027F Signing time: Fri 25 Apr 2025 01:25:30 +0000 Manifest this update: Fri 25 Apr 2025 01:25:29 +0000 Manifest next update: Fri 02 May 2025 01:25:29 +0000 Files and hashes: 1: woYQciwbyJvjK01LiizCHeZxfMg.crl (hash: Pj5jjlZBQoaw3OH27zEAgiZNKLIUjE3qxUKYc9JoVzw=) 2: ACBFA1221CD111EFB2BDF412C4F9AE02.roa (hash: ifFLN+8twN04B6jY6cx/b65AiJj/Z2yB7h3ev34IjTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11D6, serialNumber=C28610722C1BC89BE32B4D4B8A2CC21DE6717CC8 Validity Not Before: Apr 25 01:25:29 2025 GMT Not After : May 2 01:25:29 2025 GMT Subject: CN=680ae489-fec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1c:d2:d3:c3:b7:21:6c:9b:0b:b9:6c:e5:f0: 96:7c:5b:4b:3e:17:bf:48:41:3f:10:7f:52:9c:13: bb:fb:9e:bb:c3:71:ae:58:56:48:a2:c4:fd:ff:63: e9:15:7e:f1:32:6a:8b:b8:9c:2e:f7:15:d2:d4:3f: d8:d8:80:9a:06:4c:77:66:34:1c:c2:58:82:df:ab: 8c:6e:d2:3f:d2:2c:a3:24:c2:6c:a9:09:e6:64:7a: c2:1f:6b:6e:7e:68:4d:ea:db:2b:b8:82:f3:74:90: ea:57:ca:02:4a:e3:cb:19:01:7c:5a:39:1c:14:17: 1a:d9:d5:37:d6:dc:cf:b1:a1:3b:dd:5f:4e:59:cd: 5a:37:71:ff:6e:e4:33:de:a3:a4:df:5a:ef:f7:6b: 8d:3c:3b:9c:49:2b:00:f5:2a:1b:bf:d3:75:7d:3e: ec:43:ca:1f:70:ae:b1:cf:68:a7:13:9d:27:b6:3a: 8a:34:21:7d:8e:e3:b5:3a:9e:43:3c:3e:18:0f:d4: 74:e9:7a:0c:f4:3c:91:8b:49:97:cd:15:e6:8e:cc: a6:a8:34:fc:29:ee:5e:50:fd:e8:51:bf:cf:17:f2: 48:d8:3b:cb:77:cb:e0:ad:a6:02:c4:b7:56:48:1e: 8f:a7:d4:35:49:b0:4c:48:23:4e:7c:ed:f8:13:92: 10:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:CC:E0:3D:9C:2A:B3:4A:09:12:4B:0C:56:D6:9F:54:C2:CC:A4:FB X509v3 Authority Key Identifier: keyid:C2:86:10:72:2C:1B:C8:9B:E3:2B:4D:4B:8A:2C:C2:1D:E6:71:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woYQciwbyJvjK01LiizCHeZxfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11D6/77DEFD32063911ED818C4016C4F9AE02/woYQciwbyJvjK01LiizCHeZxfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:a5:9b:9c:f9:89:93:6f:41:e8:85:a7:06:05:5f:c4:33:47: ef:f3:50:fd:7e:b2:d3:4e:9a:c2:6e:72:2c:d9:1b:5f:d8:c7: 49:ab:04:e4:b1:8a:5d:6a:16:e1:68:89:43:73:4b:40:71:85: b3:09:f4:7d:0b:4f:12:4c:7a:66:89:e9:bd:d5:76:5c:a1:fc: d1:c7:db:4b:7e:5a:a6:d6:c4:ed:cc:bb:a8:ef:b8:15:00:dc: 87:6e:95:ab:52:3b:db:6d:55:ca:19:06:c7:e3:8a:0d:63:3d: 92:eb:03:f5:3d:d9:5b:43:e2:84:da:24:f8:10:58:c6:ad:f5: d9:5b:84:c0:72:8d:56:44:46:ba:ff:74:84:33:ff:65:8a:82: 1a:90:25:f6:c5:9c:bc:64:1f:a1:48:8f:b5:25:3e:82:76:4e: 23:61:3c:df:b3:84:4c:da:c7:0d:54:98:3f:a0:00:84:08:6f: f7:e3:d9:84:ab:9a:6b:ba:d2:7c:16:51:56:f1:03:5d:12:df: aa:51:55:c9:0e:e1:f7:bb:9f:c9:bf:7b:c5:95:b1:96:b3:63: 21:db:7e:60:b4:a3:06:3b:50:50:13:2d:04:ad:23:d6:e3:7a: 76:01:6b:e7:ed:43:70:11:11:e2:e1:f0:39:a0:76:2c:94:12: 4b:fb:5f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExRDYxMTAvBgNVBAUTKEMyODYxMDcyMkMxQkM4OUJFMzJCNEQ0QjhBMkNDMjFE RTY3MTdDQzgwHhcNMjUwNDI1MDEyNTI5WhcNMjUwNTAyMDEyNTI5WjAYMRYwFAYD VQQDEw02ODBhZTQ4OS1mZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8xzS08O3IWybC7ls5fCWfFtLPhe/SEE/EH9SnBO7+567w3GuWFZIosT9/2Pp FX7xMmqLuJwu9xXS1D/Y2ICaBkx3ZjQcwliC36uMbtI/0iyjJMJsqQnmZHrCH2tu fmhN6tsruILzdJDqV8oCSuPLGQF8WjkcFBca2dU31tzPsaE73V9OWc1aN3H/buQz 3qOk31rv92uNPDucSSsA9Sobv9N1fT7sQ8ofcK6xz2inE50ntjqKNCF9juO1Op5D PD4YD9R06XoM9DyRi0mXzRXmjsymqDT8Ke5eUP3oUb/PF/JI2DvLd8vgraYCxLdW SB6Pp9Q1SbBMSCNOfO34E5IQ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3M4D2c KrNKCRJLDFbWn1TCzKT7MB8GA1UdIwQYMBaAFMKGEHIsG8ib4ytNS4oswh3mcXzI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFENi83N0RFRkQzMjA2 MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlKdmpLMDFMaWl6Q0hlWnhm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dvWVFjaXdieUp2akswMUxpaXpDSGVaeGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFENi83N0RFRkQzMjA2MzkxMUVEODE4QzQwMTZDNEY5QUUwMi93b1lRY2l3YnlK dmpLMDFMaWl6Q0hlWnhmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDpZuc+YmTb0HohacGBV/EM0fv81D9frLTTprCbnIs2Rtf2MdJqwTk sYpdahbhaIlDc0tAcYWzCfR9C08STHpmiem91XZcofzRx9tLflqm1sTtzLuo77gV ANyHbpWrUjvbbVXKGQbH44oNYz2S6wP1PdlbQ+KE2iT4EFjGrfXZW4TAco1WREa6 /3SEM/9lioIakCX2xZy8ZB+hSI+1JT6Cdk4jYTzfs4RM2scNVJg/oACECG/349mE q5prutJ8FlFW8QNdEt+qUVXJDuH3u5/Jv3vFlbGWs2Mh235gtKMGO1BQEy0ErSPW 43p2AWvn7UNwERHi4fA5oHYslBJL+18o -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:38 2025 by rpki-client