$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: Yai4/4+jCKf1Xc8+7a/PR/fKIKQj8+bObpGNf026CXM= Subject key identifier: 49:04:C2:36:E6:4D:AD:0D:67:48:06:AA:35:A9:2E:DE:93:15:3B:C7 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 32 Signing time: Thu 17 Apr 2025 06:27:44 +0000 Manifest this update: Thu 17 Apr 2025 06:27:44 +0000 Manifest next update: Thu 24 Apr 2025 06:27:43 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: cfYWzEBi6pfYU1yl85nW72i8SeVi1S1BSIk8SSeFrsU=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Apr 17 06:27:44 2025 GMT Not After : Apr 24 06:27:43 2025 GMT Subject: CN=68009f60-390a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:e2:cd:e1:2a:a0:bf:35:26:b1:e7:e3:78:e4: 16:8a:4b:cb:27:6a:c2:4a:d7:39:d5:5e:33:de:eb: d1:85:72:61:0e:19:39:e3:e9:7e:be:f3:69:67:e4: 76:a2:58:34:87:ec:30:25:0d:22:4f:e8:ca:1d:93: 96:06:e8:a0:67:71:57:85:36:7f:20:8f:f4:09:b8: 89:de:a9:64:5b:04:8e:33:bd:31:d8:49:a8:44:d6: 75:2d:57:ab:63:61:43:4a:1e:66:c9:52:5e:3e:ad: e2:5d:e3:27:55:18:30:87:50:bd:99:fe:e3:20:dc: a5:5b:29:61:9b:23:9a:56:a8:f5:96:cf:32:ce:7e: 24:28:db:2c:2a:6e:87:88:c4:11:4a:7b:b2:cf:0c: 4f:1a:8f:b1:8c:5b:36:2b:de:3d:aa:33:65:49:36: f6:36:56:b9:c0:69:6f:a6:c3:a2:5a:3b:43:c7:ca: 99:06:44:29:77:20:7f:36:8d:d4:ee:14:8a:5f:b1: c7:96:50:24:26:d8:6d:b2:dd:de:b1:87:ce:3e:30: 8f:82:e0:2d:49:34:15:54:4d:4d:91:5a:1c:fd:5f: 69:87:88:28:f7:7c:bc:81:79:39:8d:d1:09:55:05: 20:72:8d:69:5f:37:58:a2:91:73:c3:40:69:3d:c4: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:04:C2:36:E6:4D:AD:0D:67:48:06:AA:35:A9:2E:DE:93:15:3B:C7 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:52:84:bb:a0:5b:ee:6c:3a:d3:88:03:28:49:c6:dc:a8:0b: 4d:f6:c6:5a:aa:97:1c:32:33:c6:2f:b0:86:9f:03:ff:23:a4: bb:3f:bb:52:c7:c9:d8:ac:cf:60:36:4a:19:54:0f:48:4e:71: 06:4c:c3:03:d7:06:4f:d6:ae:15:88:47:3c:eb:b7:e6:e9:a0: d6:15:05:75:58:03:d8:d1:a0:37:0a:99:a9:b7:00:ca:35:80: 11:42:8d:f4:45:dc:a9:bf:ad:4c:4b:13:7a:3a:ac:12:f9:f9: d5:7b:d1:fe:05:82:d7:cb:83:ed:c4:c0:17:83:65:63:75:81: 75:1c:2d:8e:e6:3f:c2:3f:d0:da:e9:9a:8c:2b:7b:eb:02:4a: 8f:c1:1e:ed:23:9a:79:f4:ee:28:a8:9b:6f:b1:c9:54:24:f7: a1:dc:8a:b2:50:58:cf:65:1d:1a:c7:77:64:fb:47:48:1a:27: ef:7e:56:b0:7f:d5:76:75:2d:84:98:62:c8:2d:47:8d:89:40: ec:3e:52:92:eb:8b:81:35:37:06:4a:dc:ab:66:d5:d1:f3:91: 79:6a:88:24:74:c4:91:c2:fc:2b:d7:20:7f:12:3b:7f:9c:2b: a3:40:f3:14:e7:06:09:8e:bc:55:e1:2b:2e:5f:89:b2:13:c1: c2:4d:33:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA0MTcwNjI3NDRaFw0yNTA0MjQwNjI3NDNaMBgxFjAUBgNV BAMTDTY4MDA5ZjYwLTM5MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD94s3hKqC/NSax5+N45BaKS8snasJK1znVXjPe69GFcmEOGTnj6X6+82ln5Hai WDSH7DAlDSJP6Modk5YG6KBncVeFNn8gj/QJuIneqWRbBI4zvTHYSahE1nUtV6tj YUNKHmbJUl4+reJd4ydVGDCHUL2Z/uMg3KVbKWGbI5pWqPWWzzLOfiQo2ywqboeI xBFKe7LPDE8aj7GMWzYr3j2qM2VJNvY2VrnAaW+mw6JaO0PHypkGRCl3IH82jdTu FIpfsceWUCQm2G2y3d6xh84+MI+C4C1JNBVUTU2RWhz9X2mHiCj3fLyBeTmN0QlV BSByjWlfN1iikXPDQGk9xK4VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSQTCNuZN rQ1nSAaqNaku3pMVO8cwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALdShLugW+5sOtOIAyhJxtyoC032xlqqlxwyM8YvsIafA/8jpLs/u1LH ydisz2A2ShlUD0hOcQZMwwPXBk/WrhWIRzzrt+bpoNYVBXVYA9jRoDcKmam3AMo1 gBFCjfRF3Km/rUxLE3o6rBL5+dV70f4FgtfLg+3EwBeDZWN1gXUcLY7mP8I/0Nrp mowre+sCSo/BHu0jmnn07iiom2+xyVQk96HcirJQWM9lHRrHd2T7R0gaJ+9+VrB/ 1XZ1LYSYYsgtR42JQOw+UpLri4E1NwZK3Ktm1dHzkXlqiCR0xJHC/CvXIH8SO3+c K6NA8xTnBgmOvFXhKy5fibITwcJNM+g= -----END CERTIFICATE-----Generated at Fri Apr 18 21:06:05 2025 by rpki-client