$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: tSKgL1+ZXhdHcUEy6VDq3WCM/4HHPh7nwyVDVGZbvOM= Subject key identifier: 19:BE:4A:B3:72:21:98:8C:73:15:C0:E7:7D:08:F7:61:38:5D:12:64 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01B2 Signing time: Sat 29 Mar 2025 02:40:16 +0000 Manifest this update: Sat 29 Mar 2025 02:40:15 +0000 Manifest next update: Sat 05 Apr 2025 02:40:15 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: dGJZd5Oi3Q2sXWOJ1bIwSRq0gTdgG3/YmHYUNmmFeBQ=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF Validity Not Before: Mar 29 02:40:15 2025 GMT Not After : Apr 5 02:40:15 2025 GMT Subject: CN=67e75d90-0aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:92:6e:e9:76:d9:f3:57:a8:19:87:d6:a3:e3: 55:77:be:d3:1a:50:3a:8e:81:44:3c:0b:19:5d:eb: 0e:50:2d:17:64:f7:36:68:58:bd:2d:78:07:39:68: f3:a1:a4:22:c9:1a:86:d0:9c:d8:dd:5e:ae:d3:0f: 4c:81:61:0c:ad:93:ab:a1:58:04:13:b2:ca:1b:98: 47:1d:b3:b6:01:62:eb:7f:0e:df:3d:dc:ff:f7:46: 7d:c7:fb:10:57:75:d5:f8:9a:ad:ee:de:10:e7:1c: 36:5e:b3:16:6f:e3:af:7d:5d:e6:1c:50:05:1b:b8: 98:c9:96:79:91:f6:eb:d2:5f:05:20:6c:40:f5:d3: 99:e7:d3:bb:7b:87:9e:5c:85:b4:a5:ec:9e:c1:5d: 51:c1:9f:9d:3a:b0:1f:96:3b:41:43:a4:64:fe:32: b8:1c:a9:9a:eb:dc:78:91:68:bf:7a:67:ff:ec:f1: 89:44:73:0c:04:f6:7f:4d:44:29:86:5b:e5:ac:61: 2c:45:af:f3:f3:62:8b:9b:c9:2d:ab:f7:ce:dd:03: f5:f0:43:7a:a2:60:ff:48:98:00:61:2c:1d:2e:bc: b2:33:ad:90:47:9b:dd:95:3b:75:e6:95:3f:35:80: 10:81:bf:dd:a3:2b:de:cd:8d:9c:a9:73:db:52:5e: 6f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BE:4A:B3:72:21:98:8C:73:15:C0:E7:7D:08:F7:61:38:5D:12:64 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e4:36:da:3f:b4:df:b9:dc:b9:92:3e:ff:66:5e:ba:b3:f0: 0c:77:af:66:09:d4:0b:40:74:55:ed:2b:a4:f1:d4:36:84:72: 20:a0:34:cf:45:7e:fe:8b:2f:ea:d1:d0:46:f0:40:3c:9f:d2: 6c:cf:43:4d:4d:61:73:7e:cc:23:2d:49:13:33:8b:50:05:30: 8a:ce:bf:f8:04:7b:68:6a:2e:99:57:b5:cb:f1:1c:99:50:c0: f7:ab:fe:f8:fb:9a:cf:40:1f:0f:61:a8:da:61:b4:7b:c4:cd: 77:b2:e1:af:01:4c:ac:a2:aa:08:9d:81:78:c6:64:b2:cf:54: 9c:cb:a8:a5:24:cb:7a:37:39:65:39:49:b7:12:58:a3:df:cc: b4:01:1a:0e:eb:8b:0e:b3:e3:86:e4:e1:ee:a2:39:ef:b3:78: 0e:62:bd:6a:60:d6:36:ab:ad:d9:a3:e5:73:06:cb:c4:7d:f6: f3:03:6f:d5:bb:bc:f6:ae:98:56:4b:cd:ed:67:ea:b1:a9:3c: 96:96:c2:b6:6d:4e:bb:9a:46:f2:79:3a:7f:08:7c:fc:57:2e: f4:53:c5:76:9b:05:15:f9:a3:74:4a:15:88:1a:7e:88:ba:21: 79:6d:9e:c4:0b:4e:c8:17:27:38:94:71:3c:9b:4c:7c:08:ee: f8:94:71:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwMzI5MDI0MDE1WhcNMjUwNDA1MDI0MDE1WjAYMRYwFAYD VQQDEw02N2U3NWQ5MC0wYWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+5Ju6XbZ81eoGYfWo+NVd77TGlA6joFEPAsZXesOUC0XZPc2aFi9LXgHOWjz oaQiyRqG0JzY3V6u0w9MgWEMrZOroVgEE7LKG5hHHbO2AWLrfw7fPdz/90Z9x/sQ V3XV+Jqt7t4Q5xw2XrMWb+OvfV3mHFAFG7iYyZZ5kfbr0l8FIGxA9dOZ59O7e4ee XIW0peyewV1RwZ+dOrAfljtBQ6Rk/jK4HKma69x4kWi/emf/7PGJRHMMBPZ/TUQp hlvlrGEsRa/z82KLm8ktq/fO3QP18EN6omD/SJgAYSwdLryyM62QR5vdlTt15pU/ NYAQgb/doyvezY2cqXPbUl5vmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBm+SrNy IZiMcxXA530I92E4XRJkMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE5DbaP7Tfudy5kj7/Zl66s/AMd69mCdQLQHRV7Suk8dQ2hHIgoDTP RX7+iy/q0dBG8EA8n9Jsz0NNTWFzfswjLUkTM4tQBTCKzr/4BHtoai6ZV7XL8RyZ UMD3q/74+5rPQB8PYajaYbR7xM13suGvAUysoqoInYF4xmSyz1Scy6ilJMt6Nzll OUm3Elij38y0ARoO64sOs+OG5OHuojnvs3gOYr1qYNY2q63Zo+VzBsvEffbzA2/V u7z2rphWS83tZ+qxqTyWlsK2bU67mkbyeTp/CHz8Vy70U8V2mwUV+aN0ShWIGn6I uiF5bZ7EC07IFyc4lHE8m0x8CO74lHHI -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:19 2025 by rpki-client