$ rpki-client -vvf rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft File: p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft (raw, json) Hash identifier: +z8LNHwqcQy9/WVMUcZ1b7CsfAKli6gGhgKBxw11zHs= Subject key identifier: 15:7E:04:13:A8:6B:29:DA:FE:27:71:48:DD:44:C2:E4:31:38:EB:D7 Authority key identifier: A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 Certificate issuer: /CN=A912CED3/serialNumber=A741EB410D4B8E46FF48AB70A1DA006A3DCF41A3 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft Manifest number: A2 Signing time: Sat 29 Mar 2025 05:38:18 +0000 Manifest this update: Sat 29 Mar 2025 05:38:17 +0000 Manifest next update: Sat 05 Apr 2025 05:38:17 +0000 Files and hashes: 1: p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl (hash: lmVnC/MM0ZVHSsaUwaZ0RS2lvolb9ReAmjFZDrMZVS0=) 2: A5DE28B4216E11EF88CCA84FC4F9AE02.roa (hash: TnSpnLe7j6/9wTqsNRxeaAfjz8zUewbXt/4PsMyvpP4=) 3: A6550254216E11EF88CCA84FC4F9AE02.roa (hash: hgy+s41tW18ZsoIITX25VfjzDwvg0uuSJ0bvy5UWIIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CED3 Validity Not Before: Mar 29 05:38:17 2025 GMT Not After : Apr 5 05:38:17 2025 GMT Subject: CN=67e7874a-ef8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f4:d3:ba:34:21:3b:da:a0:84:5b:bf:0d:f3: ff:be:74:0a:61:a0:0a:df:d7:96:10:5a:3a:49:0c: 19:28:e5:6c:b1:de:de:f4:ce:d9:5e:1f:15:91:ee: 70:58:38:30:f5:b0:42:70:df:25:b4:31:d8:ae:4a: bc:58:52:8b:f6:a2:3e:a2:74:b4:ab:c9:e4:9d:13: c3:5b:5f:05:c6:8a:95:11:49:61:52:3c:01:c2:4a: 43:cb:27:cd:86:99:8b:32:3a:3d:b2:1b:ee:27:28: 20:2b:db:64:66:98:1b:75:39:11:6e:eb:5d:9e:1f: 0d:d3:21:04:3f:fd:b2:81:a4:17:bc:6d:73:c9:bb: b6:34:ee:0f:9d:61:14:39:79:90:a1:d0:f1:01:44: 9f:ca:52:fe:1f:1e:17:75:e4:82:dc:71:56:2e:01: 00:5c:7f:49:2b:82:b3:75:9b:31:db:9c:1c:48:29: 28:2f:4e:7c:cf:23:9e:c7:82:a7:b6:1a:f5:9c:41: a9:0e:52:34:04:5d:ab:01:3e:13:ee:21:b1:ab:07: e7:ca:7e:ca:77:8f:ce:a2:5f:a3:7d:45:c6:49:0a: 3b:7d:20:93:0e:a9:02:87:0a:90:2c:57:16:5f:eb: 5f:35:16:8d:68:5f:a9:b6:44:65:42:18:2b:21:30: 48:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:7E:04:13:A8:6B:29:DA:FE:27:71:48:DD:44:C2:E4:31:38:EB:D7 X509v3 Authority Key Identifier: keyid:A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:a7:7c:ed:dc:ea:3d:62:bf:b9:66:ae:42:07:f8:1d:80:39: bf:ba:d4:81:d6:0c:6f:24:df:70:55:01:51:11:30:3d:13:b6: 13:d7:f8:34:88:99:dd:f6:e1:18:3f:73:4d:32:d6:e6:bc:80: 1e:06:ba:a4:53:87:ae:97:ea:48:51:88:84:f0:6c:62:5f:58: 61:93:81:fd:19:6d:75:1e:3f:b2:11:3e:68:f9:33:ad:49:f8: 9f:ba:3b:b1:dd:70:77:ad:cb:51:ae:17:3f:a3:45:8a:a7:65: 7e:a9:51:e4:78:cd:9f:01:15:62:06:ec:a0:dd:d4:13:5c:ee: b4:59:c5:9c:9d:33:db:f9:17:95:67:f6:68:39:e2:1d:e5:0b: 91:01:96:91:7e:56:a7:e1:b5:19:bb:42:34:5f:f9:1b:57:04: bc:16:28:61:cc:29:5b:0a:3d:1b:26:68:bf:64:a9:89:3f:c1: 70:ec:57:cb:cc:7a:9e:df:cc:7a:e5:f5:96:b8:2d:eb:e6:34: bd:e1:61:11:fd:9c:5a:87:97:0e:10:86:f7:35:32:28:d4:4a: d1:e5:15:23:eb:c7:65:e5:9c:f4:df:b2:2a:0e:43:b6:a0:4d: 27:1b:b2:c4:0f:dc:38:c5:eb:c5:53:44:58:f0:65:fd:87:ed: 12:44:d1:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNFRDMxMTAvBgNVBAUTKEE3NDFFQjQxMEQ0QjhFNDZGRjQ4QUI3MEExREEwMDZB M0RDRjQxQTMwHhcNMjUwMzI5MDUzODE3WhcNMjUwNDA1MDUzODE3WjAYMRYwFAYD VQQDEw02N2U3ODc0YS1lZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfTTujQhO9qghFu/DfP/vnQKYaAK39eWEFo6SQwZKOVssd7e9M7ZXh8Vke5w WDgw9bBCcN8ltDHYrkq8WFKL9qI+onS0q8nknRPDW18FxoqVEUlhUjwBwkpDyyfN hpmLMjo9shvuJyggK9tkZpgbdTkRbutdnh8N0yEEP/2ygaQXvG1zybu2NO4PnWEU OXmQodDxAUSfylL+Hx4XdeSC3HFWLgEAXH9JK4KzdZsx25wcSCkoL058zyOex4Kn thr1nEGpDlI0BF2rAT4T7iGxqwfnyn7Kd4/Ool+jfUXGSQo7fSCTDqkChwqQLFcW X+tfNRaNaF+ptkRlQhgrITBIsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBV+BBOo ayna/idxSN1EwuQxOOvXMB8GA1UdIwQYMBaAFKdB60ENS45G/0ircKHaAGo9z0Gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0VEMy8zQzE2MUZBNjIx NkMxMUVGODBCMTUzMkJDNEY5QUUwMi9wMEhyUVExTGprYl9TS3R3b2RvQWFqM1BR YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AwSHJRUTFMamtiX1NLdHdvZG9BYWozUFFhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0VEMy8zQzE2MUZBNjIxNkMxMUVGODBCMTUzMkJDNEY5QUUwMi9wMEhyUVExTGpr Yl9TS3R3b2RvQWFqM1BRYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXp3zt3Oo9Yr+5Zq5CB/gdgDm/utSB1gxvJN9wVQFRETA9E7YT1/g0 iJnd9uEYP3NNMtbmvIAeBrqkU4eul+pIUYiE8GxiX1hhk4H9GW11Hj+yET5o+TOt Sfifujux3XB3rctRrhc/o0WKp2V+qVHkeM2fARViBuyg3dQTXO60WcWcnTPb+ReV Z/ZoOeId5QuRAZaRflan4bUZu0I0X/kbVwS8FihhzClbCj0bJmi/ZKmJP8Fw7FfL zHqe38x65fWWuC3r5jS94WER/Zxah5cOEIb3NTIo1ErR5RUj68dl5Zz037IqDkO2 oE0nG7LED9w4xevFU0RY8GX9h+0SRNEk -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:43 2025 by rpki-client