$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: sHToe2w7J0Unjl6hBsr3AmK1RzklhpvVS0Q+3EJPrfM= Subject key identifier: AA:A6:E6:26:15:C2:5E:F9:FD:2E:6D:43:F8:4F:0C:5A:A8:75:93:A0 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0224 Signing time: Sat 05 Apr 2025 02:05:22 +0000 Manifest this update: Sat 05 Apr 2025 02:05:21 +0000 Manifest next update: Sat 12 Apr 2025 02:05:21 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: zg9D33gDSYSCajS7QfnWFuOaBTyxfXjQt5sCWtmGX8I=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488 Validity Not Before: Apr 5 02:05:21 2025 GMT Not After : Apr 12 02:05:21 2025 GMT Subject: CN=67f08fe1-2d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:bd:99:ac:a6:15:7a:6c:90:57:1a:27:20: db:10:c1:ff:b3:7b:ee:9a:34:f3:ef:5f:13:f6:e4: b9:ad:e6:50:d1:cd:f6:ce:bc:33:5f:46:49:ab:e2: 9e:70:6f:9a:16:b6:67:d5:6e:18:00:62:43:27:86: 1c:7a:15:49:d6:a7:d7:c9:2f:c9:b4:ca:29:4a:c3: 26:30:b3:1c:44:bb:0b:5c:aa:64:5e:c6:d0:57:1d: ab:9c:75:fa:36:7e:fa:d2:2f:ad:93:43:08:70:88: 62:7f:2d:87:cd:3f:92:0c:83:9c:a0:c6:26:0e:1c: 5e:f6:cb:02:4e:3e:cc:48:09:8d:dc:de:3e:af:62: 83:f1:94:2c:ca:34:28:93:1a:73:cd:0c:6d:9c:4e: 26:e5:5c:41:fb:08:09:74:25:96:74:b4:0f:f2:7e: ba:db:d6:25:ea:f4:08:d8:a0:a2:1b:82:ca:5f:08: ff:a0:fd:4e:7d:2c:57:59:8e:f0:f5:92:f3:27:c5: ad:9b:f6:e0:cf:e9:f3:d3:7a:7d:2b:9c:7a:cd:fc: 16:4c:e4:b8:87:81:7d:bf:ae:78:14:d9:6e:af:af: 29:57:24:49:7d:fa:92:e4:03:39:eb:2d:eb:58:9a: 9c:e6:eb:43:f3:eb:f1:e0:7c:c9:76:83:4e:d3:e7: c3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A6:E6:26:15:C2:5E:F9:FD:2E:6D:43:F8:4F:0C:5A:A8:75:93:A0 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0d:ca:e8:3b:cd:5a:7f:38:25:15:47:ed:7b:76:bc:fb:8c: 82:02:f9:2e:14:80:7c:87:de:0a:15:2a:05:22:c8:e9:15:97: ce:f1:73:32:04:fc:31:9f:9e:5c:b8:ed:4e:29:2d:5b:97:b7: c8:7b:52:1c:91:1e:3d:63:e5:80:98:28:32:33:43:40:e0:8d: 16:51:f1:b3:07:cc:fc:cc:d8:c3:94:cc:44:eb:c9:bc:8d:22: da:6c:89:1d:f6:a0:24:9b:f8:44:6f:a3:40:c6:77:47:fb:c1: 02:d4:49:fc:57:81:05:4f:92:1c:36:1c:34:09:2e:3a:31:5c: 33:ff:04:26:33:8b:93:41:da:14:42:78:55:42:38:15:91:7f: 7e:80:56:25:6d:7e:c9:30:13:ca:47:a4:f2:2d:1f:d2:0d:98: ba:cd:30:ee:ce:ca:c4:6e:f0:ad:c0:70:7f:ba:a3:96:ce:0c: cd:b6:ad:cc:bf:32:a6:79:34:17:a4:f4:87:82:ed:f5:c8:23: b7:4a:bd:1e:a0:e8:df:4b:c6:97:34:47:1c:a6:80:a5:87:08: 2b:b0:82:a7:45:d2:63:8d:c1:cc:e3:d1:bc:b5:3c:a1:e1:25: 3c:3c:82:4a:95:10:18:16:27:37:f5:d5:51:8e:b3:fd:1c:d4: 5b:4c:30:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwNDA1MDIwNTIxWhcNMjUwNDEyMDIwNTIxWjAYMRYwFAYD VQQDEw02N2YwOGZlMS0yZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2O9maymFXpskFcaJyDbEMH/s3vumjTz718T9uS5reZQ0c32zrwzX0ZJq+Ke cG+aFrZn1W4YAGJDJ4YcehVJ1qfXyS/JtMopSsMmMLMcRLsLXKpkXsbQVx2rnHX6 Nn760i+tk0MIcIhify2HzT+SDIOcoMYmDhxe9ssCTj7MSAmN3N4+r2KD8ZQsyjQo kxpzzQxtnE4m5VxB+wgJdCWWdLQP8n6629Yl6vQI2KCiG4LKXwj/oP1OfSxXWY7w 9ZLzJ8Wtm/bgz+nz03p9K5x6zfwWTOS4h4F9v654FNlur68pVyRJffqS5AM56y3r WJqc5utD8+vx4HzJdoNO0+fDcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqm5iYV wl75/S5tQ/hPDFqodZOgMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3DcroO81afzglFUfte3a8+4yCAvkuFIB8h94KFSoFIsjpFZfO8XMy BPwxn55cuO1OKS1bl7fIe1IckR49Y+WAmCgyM0NA4I0WUfGzB8z8zNjDlMxE68m8 jSLabIkd9qAkm/hEb6NAxndH+8EC1En8V4EFT5IcNhw0CS46MVwz/wQmM4uTQdoU QnhVQjgVkX9+gFYlbX7JMBPKR6TyLR/SDZi6zTDuzsrEbvCtwHB/uqOWzgzNtq3M vzKmeTQXpPSHgu31yCO3Sr0eoOjfS8aXNEccpoClhwgrsIKnRdJjjcHM49G8tTyh 4SU8PIJKlRAYFic39dVRjrP9HNRbTDCA -----END CERTIFICATE-----Generated at Sun Apr 6 06:48:35 2025 by rpki-client