$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft File: luWqcIJLjRPdz-YfzJogytZeYME.mft (raw, json) Hash identifier: wgVKPfWEoS3V7ioPvTFhHHXNQa8tpaYswfxEzZ/CIvY= Subject key identifier: 92:DB:47:B0:F7:BD:27:65:98:7C:5E:51:AF:59:F1:3A:CE:BC:A5:A8 Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 064F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft Manifest number: 0648 Signing time: Wed 02 Apr 2025 22:31:45 +0000 Manifest this update: Wed 02 Apr 2025 22:31:45 +0000 Manifest next update: Wed 09 Apr 2025 22:31:45 +0000 Files and hashes: 1: luWqcIJLjRPdz-YfzJogytZeYME.crl (hash: TWGWqwOp8e4LCp7cHraHRpGM+HS4Hm3hBNHX655iVOM=) 2: 6656B366814C11EB913AEC78C4F9AE02.roa (hash: 1SLFE0qnXhzMWp508BSvW25KNRqWfMvK7tRODXuYoxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688 Validity Not Before: Apr 2 22:31:45 2025 GMT Not After : Apr 9 22:31:45 2025 GMT Subject: CN=67edbad1-7c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7c:c0:0a:c6:2a:f9:37:ee:60:ed:c0:d2:b3: 21:20:57:f3:4a:76:2c:ff:1f:53:d8:5d:ca:c6:36: 99:5b:85:5d:34:ee:77:64:52:7a:db:d2:e3:b1:f8: 72:a6:a4:19:04:38:bc:12:7a:42:4b:10:1c:46:0e: 3f:a9:30:23:6f:fb:ef:cf:e1:b4:b7:c7:ff:0a:a7: 25:a0:d1:5b:ab:a9:9b:19:1d:92:a5:03:1d:7d:c5: 8b:88:7f:ac:a5:3a:ef:d4:e3:37:cd:5d:98:05:1d: 34:32:57:92:cc:86:2a:8d:d5:43:c4:ea:90:a1:44: bc:de:26:35:48:86:21:fb:66:f5:e8:98:e6:55:89: 84:2d:5d:68:f5:c6:20:2d:49:f9:11:c2:47:f6:73: e7:58:89:ba:a5:db:f0:ed:94:f1:7b:a5:bb:30:83: 64:a7:47:fb:57:d8:f8:18:50:4a:6d:7b:9e:45:e7: cb:ca:60:36:39:dd:8c:cf:9d:f0:b6:51:fd:07:f8: b6:6f:d4:7c:df:c4:57:be:73:be:58:67:fb:2f:0f: 78:26:9a:d7:23:d2:22:a2:c4:bc:9c:94:2a:2a:58: 4c:84:71:07:d4:cc:8a:f9:52:08:35:20:4b:7a:1f: b5:56:d8:1f:6a:6d:8b:62:95:a5:92:44:37:53:f3: 93:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DB:47:B0:F7:BD:27:65:98:7C:5E:51:AF:59:F1:3A:CE:BC:A5:A8 X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b9:2d:f3:fc:c5:9c:53:ba:ba:ac:0f:67:22:21:77:3a:3a: c9:d8:1f:7f:03:d2:66:d2:a1:95:09:49:70:0d:6e:24:2d:41: c9:40:8b:ff:e7:62:6d:8c:9f:a3:f2:a0:c2:79:5c:0b:a9:ae: 45:6c:e0:41:91:2a:7c:f8:6e:8c:ea:d0:71:0e:06:17:a0:87: d3:cc:ff:6f:73:9f:54:f9:cb:02:f9:a1:9c:9c:bc:0f:26:24: f6:82:25:55:45:76:10:e0:95:16:2d:9a:ea:49:cc:a5:79:c5: f9:d1:5d:49:c8:6f:ee:b7:c1:99:ef:45:90:87:52:54:87:df: 4d:14:eb:3e:36:71:a7:54:05:d2:43:e9:2d:31:a7:c2:07:30: 76:d7:4d:5f:c7:f3:9b:12:c7:cf:56:e2:69:8a:67:70:57:c0: d5:31:dd:f3:1a:43:b8:a9:82:7c:a4:c3:8f:13:54:f1:5b:92: 35:0a:e4:b5:0b:78:89:f0:10:91:94:3e:6b:9c:e3:d8:9a:91: 3d:fa:f6:53:f2:c3:f5:cc:fe:6b:85:3b:e5:c0:d2:0c:68:37: 8f:b3:00:e3:01:b6:45:eb:4b:05:59:16:6d:86:ff:b3:27:30: 9d:03:39:f0:ac:c6:1b:5a:5d:85:a1:9b:0d:90:da:19:bf:1d: 30:6c:90:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNDAyMjIzMTQ1WhcNMjUwNDA5MjIzMTQ1WjAYMRYwFAYD VQQDEw02N2VkYmFkMS03YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonzACsYq+TfuYO3A0rMhIFfzSnYs/x9T2F3KxjaZW4VdNO53ZFJ629Ljsfhy pqQZBDi8EnpCSxAcRg4/qTAjb/vvz+G0t8f/CqcloNFbq6mbGR2SpQMdfcWLiH+s pTrv1OM3zV2YBR00MleSzIYqjdVDxOqQoUS83iY1SIYh+2b16JjmVYmELV1o9cYg LUn5EcJH9nPnWIm6pdvw7ZTxe6W7MINkp0f7V9j4GFBKbXueRefLymA2Od2Mz53w tlH9B/i2b9R838RXvnO+WGf7Lw94JprXI9IiosS8nJQqKlhMhHEH1MyK+VIINSBL eh+1Vtgfam2LYpWlkkQ3U/OTAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLbR7D3 vSdlmHxeUa9Z8TrOvKWoMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY4OC85RDU2MjlBMDgxNDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpS UGR6LVlmekpvZ3l0WmVZTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/uS3z/MWcU7q6rA9nIiF3OjrJ2B9/A9Jm0qGVCUlwDW4kLUHJQIv/ 52JtjJ+j8qDCeVwLqa5FbOBBkSp8+G6M6tBxDgYXoIfTzP9vc59U+csC+aGcnLwP JiT2giVVRXYQ4JUWLZrqScylecX50V1JyG/ut8GZ70WQh1JUh99NFOs+NnGnVAXS Q+ktMafCBzB2101fx/ObEsfPVuJpimdwV8DVMd3zGkO4qYJ8pMOPE1TxW5I1CuS1 C3iJ8BCRlD5rnOPYmpE9+vZT8sP1zP5rhTvlwNIMaDePswDjAbZF60sFWRZthv+z JzCdAznwrMYbWl2FoZsNkNoZvx0wbJBb -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:42 2025 by rpki-client