$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft File: _ksuVPGAyAmvHsmemnx-JzLZ3aY.mft (raw, json) Hash identifier: +tt7OlDBYe+oLFj0vhnNn3RpYlr4TcIaNEPI0fc7HYo= Subject key identifier: A6:5C:10:15:FE:8F:C0:01:81:7D:15:33:DA:C1:9A:2D:7D:6D:AE:DE Authority key identifier: FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 Certificate issuer: /CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Certificate serial: 0FBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft Manifest number: 0FAC Signing time: Fri 04 Apr 2025 17:38:02 +0000 Manifest this update: Fri 04 Apr 2025 17:38:01 +0000 Manifest next update: Fri 11 Apr 2025 17:38:01 +0000 Files and hashes: 1: _ksuVPGAyAmvHsmemnx-JzLZ3aY.crl (hash: dnA9EYLBKlAXLS103v2BI+oNt7Rl2i0xL3CWR1PT7hA=) 2: 8F75257455E911E9AE112D6CC4F9AE02.roa (hash: ADwuiMuCXWdbcH0qjtPSZ/UoUy9O3h+eNA26nMvAOHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4026 (0xfba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE96 Validity Not Before: Apr 4 17:38:01 2025 GMT Not After : Apr 11 17:38:01 2025 GMT Subject: CN=67f018fa-c71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:56:6a:6d:e1:8d:bd:ff:5b:f0:2f:57:d0:5d: 0b:d2:8b:65:be:3e:6f:5e:27:30:f4:fd:4c:28:4c: e6:c6:2f:76:27:91:ee:23:57:14:ab:2d:e0:5f:f6: a5:85:f1:91:a9:eb:94:52:ca:c9:44:71:4b:60:d2: 2d:ab:fc:02:51:df:c3:3e:f8:4e:7f:47:3a:58:17: 27:03:00:5c:e3:30:97:1e:79:c5:f3:ad:03:81:9d: 79:42:0a:06:33:71:9a:52:4f:01:26:97:37:93:0c: a0:cc:20:20:0d:c1:95:55:42:68:3c:3a:b3:aa:99: 15:0e:64:70:11:d5:44:8c:5a:51:41:f6:48:8b:05: e6:87:8d:f1:cc:ca:da:69:de:d4:b3:55:89:01:96: 4a:61:5e:c9:fc:25:77:45:eb:32:a2:cb:0f:b5:46: 2e:cb:30:7e:35:8d:8b:8f:cc:ea:f9:07:9a:6f:75: aa:0b:14:0f:bc:b3:3a:b9:fe:41:ae:f1:c8:61:78: 1b:d9:29:9e:0e:f9:7e:0f:3d:49:8d:77:3e:7b:c1: ef:4c:c3:5b:40:01:4f:dd:de:19:10:0c:a4:03:3b: 22:4b:7d:55:33:9f:a4:43:89:0e:7a:36:ef:6f:5a: 09:a0:64:3e:8d:ec:ea:dd:38:d7:ce:6f:90:16:4e: dd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5C:10:15:FE:8F:C0:01:81:7D:15:33:DA:C1:9A:2D:7D:6D:AE:DE X509v3 Authority Key Identifier: keyid:FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:83:77:c1:c7:7e:b3:84:f6:bb:0b:ef:50:4d:07:13:5a:95: e7:3b:77:e2:da:11:d6:66:ae:5a:9c:1c:7c:a5:8e:4d:ee:e4: 98:34:98:65:2b:36:3d:a4:8c:28:47:15:e5:78:38:ad:e2:8e: be:98:cb:e3:68:b6:d3:c9:f7:72:12:cd:27:7a:a2:15:19:02: 0c:fa:97:1c:8e:33:2a:e0:fa:f5:1d:f9:44:ff:4a:4c:7a:10: b5:2f:00:74:cd:79:87:b2:95:cd:e2:5c:74:20:d7:c5:a6:94: 8d:d6:8e:5f:d5:c0:5c:ce:08:a3:b7:3e:48:bb:04:15:42:3e: c0:a9:7e:1f:da:68:39:7a:32:c0:6e:60:0c:7d:80:87:a6:93: 0e:40:d1:53:e7:5d:f5:10:65:bc:2a:b5:09:e4:9c:82:3b:0d: 32:6f:f7:91:c9:07:6e:1e:21:ef:b6:96:72:b1:51:0d:fc:3b: 54:9f:32:58:fb:8a:d2:8b:46:37:94:67:84:38:10:2c:2c:5e: ab:2d:86:95:f3:21:45:09:98:05:d8:3a:41:11:5d:ea:9a:ee: 93:ff:1b:de:91:7c:68:3e:0f:65:99:39:09:fb:ad:d3:f3:23: 61:d0:2c:40:99:ee:00:e5:d4:20:e6:5c:54:99:db:91:7a:54: d3:41:05:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJFOTYxMTAvBgNVBAUTKEZFNEIyRTU0RjE4MEM4MDlBRjFFQzk5RTlBN0M3RTI3 MzJEOUREQTYwHhcNMjUwNDA0MTczODAxWhcNMjUwNDExMTczODAxWjAYMRYwFAYD VQQDEw02N2YwMThmYS1jNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FZqbeGNvf9b8C9X0F0L0otlvj5vXicw9P1MKEzmxi92J5HuI1cUqy3gX/al hfGRqeuUUsrJRHFLYNItq/wCUd/DPvhOf0c6WBcnAwBc4zCXHnnF860DgZ15QgoG M3GaUk8BJpc3kwygzCAgDcGVVUJoPDqzqpkVDmRwEdVEjFpRQfZIiwXmh43xzMra ad7Us1WJAZZKYV7J/CV3ResyossPtUYuyzB+NY2Lj8zq+Qeab3WqCxQPvLM6uf5B rvHIYXgb2SmeDvl+Dz1JjXc+e8HvTMNbQAFP3d4ZEAykAzsiS31VM5+kQ4kOejbv b1oJoGQ+jezq3TjXzm+QFk7dXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZcEBX+ j8ABgX0VM9rBmi19ba7eMB8GA1UdIwQYMBaAFP5LLlTxgMgJrx7Jnpp8ficy2d2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkU5Ni9FREE2NUFDNDU1 RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlBbXZIc21lbW54LUp6TFoz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rc3VWUEdBeUFtdkhzbWVtbngtSnpMWjNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU5Ni9FREE2NUFDNDU1RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlB bXZIc21lbW54LUp6TFozYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeg3fBx36zhPa7C+9QTQcTWpXnO3fi2hHWZq5anBx8pY5N7uSYNJhl KzY9pIwoRxXleDit4o6+mMvjaLbTyfdyEs0neqIVGQIM+pccjjMq4Pr1HflE/0pM ehC1LwB0zXmHspXN4lx0INfFppSN1o5f1cBczgijtz5IuwQVQj7AqX4f2mg5ejLA bmAMfYCHppMOQNFT5131EGW8KrUJ5JyCOw0yb/eRyQduHiHvtpZysVEN/DtUnzJY +4rSi0Y3lGeEOBAsLF6rLYaV8yFFCZgF2DpBEV3qmu6T/xvekXxoPg9lmTkJ+63T 8yNh0CxAme4A5dQg5lxUmduRelTTQQXv -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:28 2025 by rpki-client