$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: bypwklO1+P585x5AJgaqm+Jq119dJ+4e9sxjDorph4M= Subject key identifier: 7C:02:59:E4:58:E8:B8:BE:64:76:8B:ED:6A:65:64:16:38:BE:04:3F Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 0264 Signing time: Thu 03 Apr 2025 01:44:13 +0000 Manifest this update: Thu 03 Apr 2025 01:44:13 +0000 Manifest next update: Thu 10 Apr 2025 01:44:13 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: 5ZhPB/a91upxiQC9TctbCHnhx6V6kiJgSZVQ8ZQAP/8=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: aPI8mVL7Dstx7y3IRo2S4CN1FA4wN8FwOnV7yts7LdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586 Validity Not Before: Apr 3 01:44:13 2025 GMT Not After : Apr 10 01:44:13 2025 GMT Subject: CN=67ede7ed-7471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1d:d0:33:6a:dd:6b:18:50:3b:a8:84:10:f3: d8:49:2e:12:c8:ae:81:66:24:bd:c1:bb:da:71:cf: d0:37:a3:b8:77:a7:e5:ef:94:5e:03:82:9f:07:11: 5c:3b:79:a6:cf:c3:6d:b3:f9:8c:20:02:9b:8e:f1: e0:05:07:bf:26:7b:4f:8f:80:60:c9:0e:d3:40:6a: e8:d8:c0:65:fb:8e:a4:ce:b4:f0:6c:5a:07:75:ed: 97:bf:b0:be:c2:37:9d:41:df:97:5e:11:de:48:5e: 75:51:2c:c6:83:c6:fa:64:1a:29:62:c0:7f:fa:0a: 54:f8:3b:9a:88:a5:49:bc:65:6d:75:f6:82:06:3f: 35:6f:9f:47:9b:ca:b0:89:be:80:46:34:63:0a:3d: 33:3b:42:42:ac:8d:40:18:f2:ef:41:74:3a:4f:b2: 03:48:88:90:a8:b8:a1:47:f1:8b:6c:2e:58:f9:a2: 4b:cd:91:dd:ba:a4:22:c7:8c:01:2b:9c:68:b0:e6: c2:26:48:8b:4e:b5:08:be:3c:b9:2e:f6:6a:83:b9: ff:d5:69:c9:e2:30:68:cb:85:a4:01:59:69:d0:ad: 5c:23:ed:2e:a0:b0:09:cd:37:ab:ae:4a:9d:2b:51: 58:f1:cc:70:11:a2:14:f0:7a:b5:53:92:19:bf:3b: 88:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:02:59:E4:58:E8:B8:BE:64:76:8B:ED:6A:65:64:16:38:BE:04:3F X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:19:89:a0:2b:59:b4:2b:8e:15:38:88:c2:7f:60:63:08:2b: fa:f8:07:40:84:39:33:5e:aa:85:9f:75:b0:28:90:e5:ec:38: 53:66:d4:64:8e:58:8c:4c:dd:8a:87:a4:5c:1f:81:6e:e2:91: 17:24:7b:e0:56:b3:39:c9:8b:01:c0:a1:ac:d4:08:7b:c9:87: 31:fc:b4:f7:24:a4:5d:3d:7f:20:d2:f7:f7:44:e3:7d:89:66: 39:7f:f8:ac:72:71:28:ae:ec:34:c2:2c:3a:0f:77:3c:86:23: 9f:6a:60:29:da:de:68:06:c1:7a:d1:30:60:ef:c8:aa:2c:7b: eb:6e:20:e0:29:dc:41:9c:46:3d:d0:25:fc:bd:50:e7:9a:8c: 52:b1:b8:0e:2d:93:e4:24:38:24:c0:bc:77:6e:ac:2a:ae:4a: f2:b1:b4:4e:59:7d:54:0d:16:91:35:3f:d2:ae:3d:b8:bf:9f: 3b:de:c7:f2:79:5d:30:12:b5:de:86:2a:e3:8b:b6:2f:7a:2a: 9c:1b:3a:82:54:39:92:6a:bb:c2:54:f3:f9:0a:b3:74:6b:47: c9:7d:dc:02:35:60:c3:99:78:ee:9a:f9:92:52:35:71:86:b4: 0f:09:d4:d4:8f:50:8d:59:24:ae:12:1a:b3:48:74:43:94:4d: f8:70:69:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjUwNDAzMDE0NDEzWhcNMjUwNDEwMDE0NDEzWjAYMRYwFAYD VQQDEw02N2VkZTdlZC03NDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7R3QM2rdaxhQO6iEEPPYSS4SyK6BZiS9wbvacc/QN6O4d6fl75ReA4KfBxFc O3mmz8Nts/mMIAKbjvHgBQe/JntPj4BgyQ7TQGro2MBl+46kzrTwbFoHde2Xv7C+ wjedQd+XXhHeSF51USzGg8b6ZBopYsB/+gpU+DuaiKVJvGVtdfaCBj81b59Hm8qw ib6ARjRjCj0zO0JCrI1AGPLvQXQ6T7IDSIiQqLihR/GLbC5Y+aJLzZHduqQix4wB K5xosObCJkiLTrUIvjy5LvZqg7n/1WnJ4jBoy4WkAVlp0K1cI+0uoLAJzTerrkqd K1FY8cxwEaIU8Hq1U5IZvzuIQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwCWeRY 6Li+ZHaL7WplZBY4vgQ/MB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnGYmgK1m0K44VOIjCf2BjCCv6+AdAhDkzXqqFn3WwKJDl7DhTZtRk jliMTN2Kh6RcH4Fu4pEXJHvgVrM5yYsBwKGs1Ah7yYcx/LT3JKRdPX8g0vf3RON9 iWY5f/iscnEoruw0wiw6D3c8hiOfamAp2t5oBsF60TBg78iqLHvrbiDgKdxBnEY9 0CX8vVDnmoxSsbgOLZPkJDgkwLx3bqwqrkrysbROWX1UDRaRNT/Srj24v5873sfy eV0wErXehirji7YveiqcGzqCVDmSarvCVPP5CrN0a0fJfdwCNWDDmXjumvmSUjVx hrQPCdTUj1CNWSSuEhqzSHRDlE34cGlz -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:51 2025 by rpki-client