$ rpki-client -vvf rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft File: eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft (raw, json) Hash identifier: PlrapctYWp5QXvY7tNfWgdzWyGSRxjHIoCpQvsKEn3o= Subject key identifier: 35:49:D4:EC:75:77:04:52:B7:B3:55:B5:FD:F8:28:B5:B7:07:27:7F Authority key identifier: 78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 Certificate issuer: /CN=A914CFBF/serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft Manifest number: 18 Signing time: Sat 29 Mar 2025 07:18:11 +0000 Manifest this update: Sat 29 Mar 2025 07:18:10 +0000 Manifest next update: Sat 05 Apr 2025 07:18:10 +0000 Files and hashes: 1: eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl (hash: r88Gsf0yC+5jWuBoFJT3L3b13pP30dCmvunC/WySZOA=) 2: 7FDB55F4ED1211EFAD21985DC4F9AE02.roa (hash: SxbvQb0AhwJxdqmMLleQ5Oebk4aeq+L/Y76ffLrCJ+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CFBF Validity Not Before: Mar 29 07:18:10 2025 GMT Not After : Apr 5 07:18:10 2025 GMT Subject: CN=67e79eb3-2712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:f0:0c:64:14:3e:9e:09:46:ba:b3:d9:9e: be:4a:94:96:13:05:46:79:c2:00:41:d0:8d:97:14: 19:6f:51:53:22:0a:7a:dc:a0:56:4d:7f:a3:80:74: 45:a0:71:95:c0:3b:c3:57:6e:bd:14:b6:4f:c1:cb: 55:50:9d:37:ff:55:35:c1:06:23:21:2e:dc:28:27: a3:e2:7b:d7:81:2b:f6:77:c9:26:7e:66:67:30:57: 59:6f:d1:f9:00:1c:2d:61:f5:76:d0:7e:a9:ae:d2: 1d:f0:3b:b6:4c:af:1f:62:48:fa:dd:ea:08:9f:a5: 1e:87:c9:0d:70:c1:36:6e:96:ad:6a:4c:d8:dc:f5: a0:ec:48:30:2c:eb:45:05:09:0e:eb:2f:eb:48:ac: 36:ae:26:a7:31:a8:6b:f3:f3:7b:09:96:db:32:de: 56:63:23:56:dd:96:64:80:41:d8:87:cd:41:5b:15: 13:f2:f7:0f:37:90:95:30:f1:17:78:3c:c6:87:ea: cd:34:b2:fe:45:15:db:f5:03:62:11:9a:25:37:5f: 86:59:fa:97:df:99:94:99:d8:10:7d:24:b9:17:f5: 81:83:dc:c9:df:9b:f5:19:b1:77:e0:80:38:94:4b: 4b:e8:83:38:41:85:f0:13:1e:5d:ab:6c:fc:66:59: 61:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:49:D4:EC:75:77:04:52:B7:B3:55:B5:FD:F8:28:B5:B7:07:27:7F X509v3 Authority Key Identifier: keyid:78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:88:17:a3:80:e5:11:9b:14:61:fd:51:e4:c9:e2:65:d8:cc: 73:8c:84:6a:d8:78:8a:05:2b:a5:4c:6b:69:0d:8f:c6:09:25: 20:08:c9:34:2b:3c:8b:eb:db:56:67:d3:2d:67:4f:84:b6:39: c8:a2:30:2a:17:c5:ca:be:20:08:79:ae:57:ad:e8:5c:a0:6c: cb:e5:e8:46:24:e0:da:c6:4b:b1:e1:fc:ba:5e:00:b2:c3:ca: 63:b8:76:b3:4c:ea:8e:b0:36:cf:43:fc:04:a7:cb:c5:cb:6c: ab:dd:bc:50:81:bd:ed:ef:c8:b5:ab:f7:2d:7f:f0:4e:d2:40: 9e:98:79:70:c1:56:96:af:ce:4f:24:f5:18:31:0d:5a:7d:b3: b6:e8:01:ea:12:f7:d3:fb:6b:69:e5:65:bc:66:d3:f3:c9:e4: fa:06:1e:e6:dc:2d:25:2d:b8:26:9c:0f:5a:52:5e:a3:6d:f0: fc:cc:a4:05:00:b7:0d:3f:6b:5e:6c:8f:7f:b7:66:9b:31:7c: fa:70:ed:91:27:42:bc:ec:10:b7:1f:7b:b2:5f:c7:b0:a9:43: 77:24:33:ff:58:3c:23:b0:14:d6:1a:18:f7:de:5f:ed:85:bd: 9d:e4:13:98:2e:bb:45:62:5f:24:fd:1d:22:ee:e6:40:0b:05: 79:be:57:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0ZCRjExMC8GA1UEBRMoNzhFQzBGMEU0OTRGMjI4RUFBNDM4M0Q2QzYwREVCMUMz NjJBNTA1MTAeFw0yNTAzMjkwNzE4MTBaFw0yNTA0MDUwNzE4MTBaMBgxFjAUBgNV BAMTDTY3ZTc5ZWIzLTI3MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC///AMZBQ+nglGurPZnr5KlJYTBUZ5wgBB0I2XFBlvUVMiCnrcoFZNf6OAdEWg cZXAO8NXbr0Utk/By1VQnTf/VTXBBiMhLtwoJ6Pie9eBK/Z3ySZ+ZmcwV1lv0fkA HC1h9XbQfqmu0h3wO7ZMrx9iSPrd6gifpR6HyQ1wwTZulq1qTNjc9aDsSDAs60UF CQ7rL+tIrDauJqcxqGvz83sJltsy3lZjI1bdlmSAQdiHzUFbFRPy9w83kJUw8Rd4 PMaH6s00sv5FFdv1A2IRmiU3X4ZZ+pffmZSZ2BB9JLkX9YGD3Mnfm/UZsXfggDiU S0vogzhBhfATHl2rbPxmWWHpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNUnU7HV3 BFK3s1W1/fgotbcHJ38wHwYDVR0jBBgwFoAUeOwPDklPIo6qQ4PWxg3rHDYqUFEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDRkJGLzMyNzYxMDM4RUQx MjExRUY5QjJENDk1Q0M0RjlBRTAyL2VPd1BEa2xQSW82cVE0UFd4ZzNySERZcVVG RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZU93UERrbFBJbzZxUTRQV3hnM3JIRFlxVUZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRD RkJGLzMyNzYxMDM4RUQxMjExRUY5QjJENDk1Q0M0RjlBRTAyL2VPd1BEa2xQSW82 cVE0UFd4ZzNySERZcVVGRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHyIF6OA5RGbFGH9UeTJ4mXYzHOMhGrYeIoFK6VMa2kNj8YJJSAIyTQr PIvr21Zn0y1nT4S2OciiMCoXxcq+IAh5rlet6FygbMvl6EYk4NrGS7Hh/LpeALLD ymO4drNM6o6wNs9D/ASny8XLbKvdvFCBve3vyLWr9y1/8E7SQJ6YeXDBVpavzk8k 9RgxDVp9s7boAeoS99P7a2nlZbxm0/PJ5PoGHubcLSUtuCacD1pSXqNt8PzMpAUA tw0/a15sj3+3ZpsxfPpw7ZEnQrzsELcfe7Jfx7CpQ3ckM/9YPCOwFNYaGPfeX+2F vZ3kE5guu0ViXyT9HSLu5kALBXm+V5E= -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:34 2025 by rpki-client