$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: Pga+cijVpZzu7n9Qkf+KccQPFc3FFi7YPY2+9qSSZO0= Subject key identifier: 3E:BB:55:1F:B7:98:E8:AE:08:1F:F7:35:87:EF:67:53:1C:80:4F:4B Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 05CB Signing time: Tue 08 Apr 2025 22:45:54 +0000 Manifest this update: Tue 08 Apr 2025 22:45:53 +0000 Manifest next update: Tue 15 Apr 2025 22:45:53 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: RTp6v747mWcsppaPZy2llDm3qlCfzK+tal0/rDLAHv8=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 22:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298 Validity Not Before: Apr 8 22:45:53 2025 GMT Not After : Apr 15 22:45:53 2025 GMT Subject: CN=67f5a721-1ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5d:96:d1:25:ec:26:1c:ca:e2:c7:6b:75:7c: 0b:a2:66:39:b0:2f:d7:2b:e2:a0:73:aa:85:76:4d: 3a:88:de:51:80:7d:65:a3:8e:2a:b7:89:b4:40:a6: 4f:02:87:a2:6a:c1:18:de:e5:3c:a6:ea:47:6d:a8: c0:81:d7:2b:e7:37:29:af:8b:5d:47:bc:eb:57:a4: bf:58:14:ad:78:75:f6:f5:ac:b2:f5:4a:83:d3:6e: 24:c6:cb:5d:01:0b:02:50:01:3e:5b:86:6b:0d:aa: 52:37:d6:ad:95:c7:59:81:93:92:01:51:15:30:79: 93:fd:6c:73:67:3a:fb:63:cd:6a:da:0a:35:50:dd: 21:fa:31:e3:55:84:96:9e:c1:f2:f0:2c:50:1f:33: 51:16:c1:2d:4e:f1:06:f4:4a:07:82:4d:f0:17:89: 3d:76:91:79:f0:97:3e:3e:2b:8c:9c:b6:d3:02:b2: 7b:74:cf:15:11:f7:a4:7c:5b:8a:e3:10:0a:9c:47: b7:29:e0:fe:33:27:15:8c:d2:eb:e3:05:a6:6a:46: cb:67:ff:a3:bc:15:5e:34:16:fc:bb:66:9f:d1:65: 2a:ca:02:0e:7a:de:e9:d8:3c:c5:4c:3a:12:a7:5d: c5:38:56:cd:e4:a0:eb:be:16:10:e2:e9:38:47:40: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BB:55:1F:B7:98:E8:AE:08:1F:F7:35:87:EF:67:53:1C:80:4F:4B X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:22:94:59:4b:a0:3e:8a:d7:c7:7f:ce:22:50:11:1a:7b:40: ea:2c:55:96:40:93:49:22:07:6d:6c:9e:81:15:f6:7d:9e:3f: e8:d8:ba:9d:55:96:5d:6e:bb:2a:82:16:a9:85:b4:45:63:f0: e4:c5:ad:8b:58:ae:26:4c:28:1d:0d:64:7c:f8:59:20:85:7c: 98:e6:83:f1:f8:85:10:dc:3f:e7:32:ca:e4:c9:fd:ea:96:94: 2f:70:f9:ce:a8:c0:54:cd:3c:34:c2:11:a2:72:e9:76:cd:08: 64:cc:1b:e9:ac:e6:8a:c1:97:ea:da:b5:41:b3:eb:e8:87:3e: 3d:bf:43:0a:29:dc:d1:92:3d:31:fb:47:0e:a4:1d:70:af:79: 5c:32:08:71:1e:48:32:fe:f9:01:cb:f3:b7:71:f0:8a:52:ee: 27:60:e0:26:79:84:ab:4a:55:90:98:be:86:74:4e:ba:aa:2d: d0:ad:72:00:c8:11:70:41:dc:31:85:e6:0d:ba:3e:c3:69:c2: 12:71:ef:10:b0:ea:cd:e1:17:96:ed:bb:71:84:36:26:18:94: 6a:cd:01:2b:58:5d:96:76:e2:7d:9e:8b:9b:6e:69:23:b2:87: 56:c8:ce:7f:b6:ea:d1:1a:c6:cb:1f:a4:8f:6d:75:66:0f:1c: 0b:a9:7f:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUwNDA4MjI0NTUzWhcNMjUwNDE1MjI0NTUzWjAYMRYwFAYD VQQDEw02N2Y1YTcyMS0xZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl2W0SXsJhzK4sdrdXwLomY5sC/XK+Kgc6qFdk06iN5RgH1lo44qt4m0QKZP AoeiasEY3uU8pupHbajAgdcr5zcpr4tdR7zrV6S/WBSteHX29ayy9UqD024kxstd AQsCUAE+W4ZrDapSN9atlcdZgZOSAVEVMHmT/WxzZzr7Y81q2go1UN0h+jHjVYSW nsHy8CxQHzNRFsEtTvEG9EoHgk3wF4k9dpF58Jc+PiuMnLbTArJ7dM8VEfekfFuK 4xAKnEe3KeD+MycVjNLr4wWmakbLZ/+jvBVeNBb8u2af0WUqygIOet7p2DzFTDoS p13FOFbN5KDrvhYQ4uk4R0AtHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD67VR+3 mOiuCB/3NYfvZ1McgE9LMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHIpRZS6A+itfHf84iUBEae0DqLFWWQJNJIgdtbJ6BFfZ9nj/o2Lqd VZZdbrsqghaphbRFY/Dkxa2LWK4mTCgdDWR8+FkghXyY5oPx+IUQ3D/nMsrkyf3q lpQvcPnOqMBUzTw0whGicul2zQhkzBvprOaKwZfq2rVBs+vohz49v0MKKdzRkj0x +0cOpB1wr3lcMghxHkgy/vkBy/O3cfCKUu4nYOAmeYSrSlWQmL6GdE66qi3QrXIA yBFwQdwxheYNuj7DacISce8QsOrN4ReW7btxhDYmGJRqzQErWF2WduJ9noubbmkj sodWyM5/turRGsbLH6SPbXVmDxwLqX/d -----END CERTIFICATE-----Generated at Sat Apr 12 00:31:21 2025 by rpki-client