$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: ctbaT86Kwer0KvJbuNr6elh3YXUCaP8xC32kAJhT6dY= Subject key identifier: 04:E7:7B:3A:5A:5D:DC:2D:D3:F2:0F:14:26:88:42:CC:C1:33:D8:E1 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 01EA Signing time: Mon 07 Apr 2025 01:44:48 +0000 Manifest this update: Mon 07 Apr 2025 01:44:47 +0000 Manifest next update: Mon 14 Apr 2025 01:44:47 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: 9ThkB76HfqtoNj7HLm3rPiNeXrLUVVMIIK5/wYIlt5Y=) 2: 99D6D8089BF111ED8043AD1FC4F9AE02.roa (hash: RN89+S1mBA7UPdGt6AqckCvGseRU/f6VRbIgO417GXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F Validity Not Before: Apr 7 01:44:47 2025 GMT Not After : Apr 14 01:44:47 2025 GMT Subject: CN=67f32e10-516e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:63:cf:33:e0:74:a7:0a:6d:b8:a0:01:8d: 6a:12:d7:5a:f8:60:d2:3e:fd:01:1a:7f:c3:06:7c: 7a:47:3c:9a:dd:ee:f0:e2:1c:5b:b3:fe:24:5d:77: 50:33:20:26:47:71:d1:39:7a:e0:e5:a5:28:a0:07: 17:16:9e:a4:4f:a1:09:3c:ef:aa:c3:82:36:d8:06: 2a:f8:7b:d6:99:4f:99:eb:56:c4:de:11:cf:51:28: fe:3a:16:ef:70:ce:36:cb:9a:91:f9:fd:4d:d7:b2: 09:08:e1:9c:86:af:b5:c3:cb:7f:4f:b1:fd:ac:01: 4d:dc:67:81:a0:3a:01:63:05:f3:c9:68:59:e8:c9: 9e:58:7e:53:3f:bc:eb:df:15:ab:b4:d8:eb:bd:44: a9:c7:a0:7a:9b:80:9f:1d:78:eb:1a:39:19:a5:a5: c7:39:03:fb:3d:84:42:db:c3:80:c3:dd:06:34:e0: 7e:e2:2e:ef:c8:ba:5a:c8:be:d5:4d:39:9e:ed:ba: 7a:e9:5c:a5:0d:5e:2c:03:df:0a:99:e4:1d:72:e2: ef:96:11:fc:06:67:b7:24:ec:f6:cc:b4:b1:9c:94: af:aa:6f:d2:e9:f4:6b:16:8b:f6:13:3f:1a:21:b7: de:e6:df:c1:04:c5:77:9d:d1:42:eb:a8:ae:ed:db: 18:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E7:7B:3A:5A:5D:DC:2D:D3:F2:0F:14:26:88:42:CC:C1:33:D8:E1 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:70:10:91:36:a6:ef:8a:66:0c:04:06:0a:10:49:2e:aa:97: 7d:fb:aa:3d:3f:c9:1e:0b:b3:00:96:0c:9a:cc:17:a8:f7:54: cc:df:55:b0:d0:08:0f:30:23:7b:7c:c7:a3:a4:0e:b2:06:d2: d8:a1:20:a9:ca:54:29:cc:93:f0:76:84:4e:fd:5a:50:61:b3: 2f:08:b8:d8:4d:63:ca:67:6e:8b:52:4b:d6:b2:4a:d3:63:41: ec:42:14:8b:89:39:80:2f:ae:41:4e:e5:0d:57:0c:75:b0:aa: d8:aa:2e:5f:36:c4:eb:67:de:14:84:d5:c8:dc:1b:c5:dc:43: ee:9c:f4:cb:05:a8:24:f3:93:da:af:c3:2b:5d:0b:ba:5a:c4: 66:ac:46:75:eb:d5:5e:4a:80:74:a4:a5:4e:43:45:9b:38:1d: a5:d6:08:76:20:02:91:70:4b:22:6f:63:0c:63:99:e2:85:1e: 9c:bf:30:30:02:19:a1:78:58:43:d7:eb:21:5c:2e:b3:f9:80: 2f:3b:47:4a:e5:9a:a5:f3:da:80:20:81:2c:83:c6:64:18:66: 32:be:63:fa:76:1f:6a:f8:81:82:ee:73:29:d2:4a:b9:a5:b0: 64:e0:56:08:07:a6:50:cd:da:4c:89:66:5a:0b:f1:a0:1a:77: 34:22:8e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUwNDA3MDE0NDQ3WhcNMjUwNDE0MDE0NDQ3WjAYMRYwFAYD VQQDEw02N2YzMmUxMC01MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26ljzzPgdKcKbbigAY1qEtda+GDSPv0BGn/DBnx6Rzya3e7w4hxbs/4kXXdQ MyAmR3HROXrg5aUooAcXFp6kT6EJPO+qw4I22AYq+HvWmU+Z61bE3hHPUSj+Ohbv cM42y5qR+f1N17IJCOGchq+1w8t/T7H9rAFN3GeBoDoBYwXzyWhZ6MmeWH5TP7zr 3xWrtNjrvUSpx6B6m4CfHXjrGjkZpaXHOQP7PYRC28OAw90GNOB+4i7vyLpayL7V TTme7bp66VylDV4sA98KmeQdcuLvlhH8Bme3JOz2zLSxnJSvqm/S6fRrFov2Ez8a Ibfe5t/BBMV3ndFC66iu7dsYEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATnezpa Xdwt0/IPFCaIQszBM9jhMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALcBCRNqbvimYMBAYKEEkuqpd9+6o9P8keC7MAlgyazBeo91TM31Ww 0AgPMCN7fMejpA6yBtLYoSCpylQpzJPwdoRO/VpQYbMvCLjYTWPKZ26LUkvWskrT Y0HsQhSLiTmAL65BTuUNVwx1sKrYqi5fNsTrZ94UhNXI3BvF3EPunPTLBagk85Pa r8MrXQu6WsRmrEZ169VeSoB0pKVOQ0WbOB2l1gh2IAKRcEsib2MMY5nihR6cvzAw AhmheFhD1+shXC6z+YAvO0dK5Zql89qAIIEsg8ZkGGYyvmP6dh9q+IGC7nMp0kq5 pbBk4FYIB6ZQzdpMiWZaC/GgGnc0Io7d -----END CERTIFICATE-----Generated at Wed Apr 9 00:37:57 2025 by rpki-client