$ rpki-client -vvf rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft File: WfIhqdcBRydJAka2joLCl2fHDTg.mft (raw, json) Hash identifier: CG7KJg8qjyNcHEjK6s5Eck5cCgtEVVnuKca5seHCW60= Subject key identifier: C6:3C:43:02:46:68:09:D0:05:02:2E:B6:A9:6A:07:40:F0:F3:0E:2C Authority key identifier: 59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 Certificate issuer: /CN=A912CE21/serialNumber=59F221A9D7014727490246B68E82C29767C70D38 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft Manifest number: 02A4 Signing time: Sat 05 Apr 2025 01:39:03 +0000 Manifest this update: Sat 05 Apr 2025 01:39:02 +0000 Manifest next update: Sat 12 Apr 2025 01:39:02 +0000 Files and hashes: 1: WfIhqdcBRydJAka2joLCl2fHDTg.crl (hash: HHtmeL9NIXOfqORcrSSMWCMtH/ZnIR8mk22UDAm+rOk=) 2: A033FFB4F7F511ECADEAB528C4F9AE02.roa (hash: AUauGFsDFbTkxG/ElUZSjeF53FqLNbIQuI1Fh9dzIQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CE21 Validity Not Before: Apr 5 01:39:02 2025 GMT Not After : Apr 12 01:39:02 2025 GMT Subject: CN=67f089b6-4482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:6a:ef:6a:19:05:2f:69:65:37:5a:fe:e3: 1a:e1:c0:df:ff:c3:40:d8:e1:14:13:2a:7c:07:f5: 5b:29:83:ef:76:ba:f2:e1:e3:8e:7a:bf:7f:6d:16: a4:5c:ea:b2:44:05:7a:30:36:b3:5f:a8:77:d1:c7: 43:84:9f:a3:7b:ee:86:9f:36:f3:88:68:56:9f:70: 3c:88:a4:89:0d:82:25:78:a8:f1:12:44:a9:69:58: 01:4c:c4:b4:c1:2b:86:be:ab:ee:c4:70:85:11:42: 07:7d:0f:63:f5:c1:ac:1e:aa:3e:2c:05:08:b7:20: cd:a2:a8:1d:6a:b9:61:25:ad:36:02:af:28:05:9f: 5d:7b:11:28:32:6a:cf:f0:81:44:28:16:32:1c:07: de:7a:fc:0e:c9:12:23:63:5d:61:fa:3b:c0:62:99: 58:eb:4d:dd:d2:0a:d9:70:6d:70:d6:ad:76:c6:c0: f9:70:0f:16:d9:a7:3e:82:f3:f7:55:f8:aa:e6:51: 02:0c:87:21:27:f8:17:84:84:f8:09:30:b0:0d:22: 8f:11:66:b6:77:a1:5e:86:9d:f7:bf:89:e8:cd:dd: f6:80:2e:04:f6:1a:3b:71:35:c2:c4:8d:60:e7:3e: 13:3c:32:ef:89:c2:76:5c:1f:06:1e:1e:bf:c1:3f: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:3C:43:02:46:68:09:D0:05:02:2E:B6:A9:6A:07:40:F0:F3:0E:2C X509v3 Authority Key Identifier: keyid:59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:aa:da:84:f6:c1:30:30:ba:97:0e:40:c5:ff:9c:7b:35:5a: d2:6a:c7:7e:78:29:55:95:a9:8a:05:8c:31:c1:d8:5c:ea:41: 69:53:9e:5b:85:18:d9:fa:8d:7a:0d:4a:e5:67:b8:db:41:81: 20:9e:e0:9f:50:81:b9:52:62:6a:b2:df:04:2c:ea:fd:76:36: 6e:a3:45:b2:3c:b9:2f:b3:a9:e7:88:b6:9c:8b:ba:2d:16:35: 20:a6:5d:a6:da:b7:40:e7:30:02:f7:12:f2:49:fa:56:c0:9c: 3a:00:03:16:a7:bc:d2:03:03:64:f6:62:ed:0f:4e:9f:63:e9: 55:32:14:ba:b3:7a:12:c9:d7:ef:f2:94:17:49:ce:90:15:23: 6e:65:18:e4:8c:74:9a:32:5d:8c:f4:7e:5d:34:07:1d:ad:96: b7:2c:72:ea:b2:97:4b:f0:49:48:9e:64:be:e8:7c:17:b7:34: 2a:4d:0e:db:9c:dc:fb:51:79:90:42:61:d0:ed:9c:96:2f:c0: a0:96:7f:a2:0c:c0:74:ec:ac:b2:4e:96:69:53:e5:74:5f:98: a2:46:a8:5f:00:b7:63:18:58:d7:bc:28:1b:8b:28:84:b6:13: a2:c1:e7:68:a6:4a:de:ca:7f:b8:a4:4a:59:1f:60:55:b3:23: 28:ec:bc:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNFMjExMTAvBgNVBAUTKDU5RjIyMUE5RDcwMTQ3Mjc0OTAyNDZCNjhFODJDMjk3 NjdDNzBEMzgwHhcNMjUwNDA1MDEzOTAyWhcNMjUwNDEyMDEzOTAyWjAYMRYwFAYD VQQDEw02N2YwODliNi00NDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+dq72oZBS9pZTda/uMa4cDf/8NA2OEUEyp8B/VbKYPvdrry4eOOer9/bRak XOqyRAV6MDazX6h30cdDhJ+je+6GnzbziGhWn3A8iKSJDYIleKjxEkSpaVgBTMS0 wSuGvqvuxHCFEUIHfQ9j9cGsHqo+LAUItyDNoqgdarlhJa02Aq8oBZ9dexEoMmrP 8IFEKBYyHAfeevwOyRIjY11h+jvAYplY603d0grZcG1w1q12xsD5cA8W2ac+gvP3 Vfiq5lECDIchJ/gXhIT4CTCwDSKPEWa2d6Fehp33v4nozd32gC4E9ho7cTXCxI1g 5z4TPDLvicJ2XB8GHh6/wT/6GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMY8QwJG aAnQBQIutqlqB0Dw8w4sMB8GA1UdIwQYMBaAFFnyIanXAUcnSQJGto6Cwpdnxw04 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0UyMS9DRTQ4RTdDOEYx OUUxMUVDQTlFRTlCM0RDNEY5QUUwMi9XZklocWRjQlJ5ZEpBa2Eyam9MQ2wyZkhE VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dmSWhxZGNCUnlkSkFrYTJqb0xDbDJmSERUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0UyMS9DRTQ4RTdDOEYxOUUxMUVDQTlFRTlCM0RDNEY5QUUwMi9XZklocWRjQlJ5 ZEpBa2Eyam9MQ2wyZkhEVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPqtqE9sEwMLqXDkDF/5x7NVrSasd+eClVlamKBYwxwdhc6kFpU55b hRjZ+o16DUrlZ7jbQYEgnuCfUIG5UmJqst8ELOr9djZuo0WyPLkvs6nniLaci7ot FjUgpl2m2rdA5zAC9xLySfpWwJw6AAMWp7zSAwNk9mLtD06fY+lVMhS6s3oSydfv 8pQXSc6QFSNuZRjkjHSaMl2M9H5dNAcdrZa3LHLqspdL8ElInmS+6HwXtzQqTQ7b nNz7UXmQQmHQ7ZyWL8Cgln+iDMB07KyyTpZpU+V0X5iiRqhfALdjGFjXvCgbiyiE thOiwedopkreyn+4pEpZH2BVsyMo7Lwn -----END CERTIFICATE-----Generated at Sun Apr 6 17:58:34 2025 by rpki-client