$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: Q4nejpBLrWmaDMLp7K2M0GR6dgW7HgAjn/6xmDoReD8= Subject key identifier: 60:78:9C:BC:7C:17:1A:00:B9:22:68:ED:B7:3E:E0:6E:CF:3C:78:86 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: 78 Signing time: Sat 29 Mar 2025 06:02:38 +0000 Manifest this update: Sat 29 Mar 2025 06:02:37 +0000 Manifest next update: Sat 05 Apr 2025 06:02:37 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: mt/BsxTuSndnfJUWgUE/WXL+kWMFqxzqDhUO4G7judI=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9 Validity Not Before: Mar 29 06:02:37 2025 GMT Not After : Apr 5 06:02:37 2025 GMT Subject: CN=67e78cfe-f211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:be:f4:f4:12:17:cf:d4:93:52:78:df:20: dd:4f:d4:73:8a:54:1c:48:ad:ab:d1:07:17:44:73: 29:c9:b2:cd:fc:0d:7b:5b:d1:07:49:fd:57:3e:83: 81:a3:7a:16:3b:76:0d:07:1d:a6:f0:d9:8c:9c:69: b8:e5:53:64:2f:01:75:41:e3:6c:9a:95:91:c3:e0: bf:c3:8e:62:24:42:06:18:b8:e8:b6:83:2c:df:90: e6:bc:68:58:ec:eb:92:b3:98:c2:39:6e:f3:f2:f0: 0b:2a:bc:1b:bb:c6:7f:21:f5:9b:8c:a6:2f:f7:47: fb:d5:01:96:93:92:5a:6c:0b:6c:0c:0c:bb:29:80: 17:4b:96:8b:97:2d:38:e1:2d:2c:ad:14:1f:cc:ed: 62:45:ec:dd:fe:8b:c3:41:2d:77:cf:a8:46:06:ab: 15:2d:f5:d9:4a:10:fb:35:52:5d:b0:7d:6e:cb:dc: 36:c0:cc:dd:6e:35:d2:32:ef:68:95:51:f5:fe:16: 94:d2:01:46:2b:ef:9c:7e:15:c2:f4:95:0d:9e:c9: 37:70:b1:87:8f:59:5c:6c:00:6b:b9:62:cb:2e:ec: 82:ba:3d:eb:87:a7:82:a5:22:23:f8:14:4a:92:db: 7d:66:c7:e5:7d:df:fa:29:c3:e8:ab:e1:1e:13:c3: 96:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:78:9C:BC:7C:17:1A:00:B9:22:68:ED:B7:3E:E0:6E:CF:3C:78:86 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2a:b2:34:d4:fa:40:7a:28:fa:0b:fd:29:62:40:3c:d3:c0: f0:ae:53:2d:db:22:d6:49:a0:d6:c8:af:5c:11:0e:84:bc:ee: a4:f0:71:20:4c:95:51:78:32:69:a7:9a:70:b2:0e:7e:55:96: 5e:9a:ed:1f:bd:16:1b:4b:da:6a:47:7d:46:8a:29:aa:d6:9f: 23:d8:9e:ea:0f:5a:67:2f:31:4a:77:50:1c:05:58:2b:19:ee: 24:41:7f:82:dc:14:5a:5b:3e:b9:f3:96:15:ff:e4:89:2c:6e: e2:c5:84:f5:e6:01:81:95:50:3a:b2:80:3d:7d:d8:45:34:0e: 36:eb:84:b0:1d:0e:13:b3:79:40:8b:49:47:ca:82:27:ef:56: 8c:9d:c1:30:51:ec:ea:58:b9:be:c5:dd:6a:eb:4e:ba:65:94: 9b:df:6c:fc:17:26:b1:22:cc:e3:dc:0a:54:9e:a3:a1:7b:63: 92:87:6c:67:40:3d:9f:a6:bf:73:5a:a0:3b:96:c1:3e:57:44: 7e:33:ae:81:d4:8f:63:51:41:76:9c:94:3a:5e:e4:d0:58:85: 95:d6:0f:c6:0a:62:ac:30:5e:70:4d:d4:69:ac:31:b8:35:95: 0a:65:81:6c:39:09:35:16:69:84:23:71:32:80:46:ec:52:0b: 32:b1:93:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0RBOTExMC8GA1UEBRMoRUY1MzkxRjJBMjJERDY1RjQ4NDMxQTMyMjZERENDNjVC NzY1OTZBOTAeFw0yNTAzMjkwNjAyMzdaFw0yNTA0MDUwNjAyMzdaMBgxFjAUBgNV BAMTDTY3ZTc4Y2ZlLWYyMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr+L709BIXz9STUnjfIN1P1HOKVBxIravRBxdEcynJss38DXtb0QdJ/Vc+g4Gj ehY7dg0HHabw2YycabjlU2QvAXVB42yalZHD4L/DjmIkQgYYuOi2gyzfkOa8aFjs 65KzmMI5bvPy8AsqvBu7xn8h9ZuMpi/3R/vVAZaTklpsC2wMDLspgBdLlouXLTjh LSytFB/M7WJF7N3+i8NBLXfPqEYGqxUt9dlKEPs1Ul2wfW7L3DbAzN1uNdIy72iV UfX+FpTSAUYr75x+FcL0lQ2eyTdwsYePWVxsAGu5Yssu7IK6PeuHp4KlIiP4FEqS 231mx+V93/opw+ir4R4Tw5bFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYHicvHwX GgC5Imjttz7gbs88eIYwHwYDVR0jBBgwFoAU71OR8qIt1l9IQxoyJt3MZbdllqkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3REE5LzQyM0UxQUQ0NUEx ODExRUZCRDQ3NzMzOEM0RjlBRTAyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzFPUjhxSXQxbDlJUXhveUp0M01aYmRsbHFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 REE5LzQyM0UxQUQ0NUExODExRUZCRDQ3NzMzOEM0RjlBRTAyLzcxT1I4cUl0MWw5 SVF4b3lKdDNNWmJkbGxxay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFsqsjTU+kB6KPoL/SliQDzTwPCuUy3bItZJoNbIr1wRDoS87qTwcSBM lVF4MmmnmnCyDn5Vll6a7R+9FhtL2mpHfUaKKarWnyPYnuoPWmcvMUp3UBwFWCsZ 7iRBf4LcFFpbPrnzlhX/5IksbuLFhPXmAYGVUDqygD192EU0DjbrhLAdDhOzeUCL SUfKgifvVoydwTBR7OpYub7F3WrrTrpllJvfbPwXJrEizOPcClSeo6F7Y5KHbGdA PZ+mv3NaoDuWwT5XRH4zroHUj2NRQXaclDpe5NBYhZXWD8YKYqwwXnBN1GmsMbg1 lQplgWw5CTUWaYQjcTKARuxSCzKxkx0= -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:09 2025 by rpki-client