$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft File: -_gSoLmqiu1iGHbIkgH_8QQytpc.mft (raw, json) Hash identifier: VFiabHLUz8uUmaKrwJEPZLA35G9pBYwJ8JqwEaUaghM= Subject key identifier: 3C:66:B8:10:2F:C4:A2:F2:A3:80:88:74:0C:AD:EB:70:24:96:7A:00 Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft Manifest number: 0B Signing time: Mon 07 Apr 2025 07:02:10 +0000 Manifest this update: Mon 07 Apr 2025 07:02:10 +0000 Manifest next update: Mon 14 Apr 2025 07:02:10 +0000 Files and hashes: 1: -_gSoLmqiu1iGHbIkgH_8QQytpc.crl (hash: gqlgmHleN2G2dReFjP5qGt4t221cJLW56N7T+W9X+Ec=) 2: 5F2F693A061211F0BA5A2029C4F9AE02.roa (hash: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 07:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330 Validity Not Before: Apr 7 07:02:10 2025 GMT Not After : Apr 14 07:02:10 2025 GMT Subject: CN=67f37872-ecb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:cd:a5:63:8e:0c:0a:ff:9b:58:d5:a6:40: bd:63:14:d0:ea:36:ac:54:48:16:8f:06:43:03:ba: 1c:04:80:f6:c6:82:f1:00:96:75:2f:8f:5e:10:87: b2:83:f4:a1:80:35:c0:97:76:11:a7:94:dc:68:de: 7a:76:ea:35:dc:13:96:81:5a:20:cc:79:5a:c2:36: 42:4e:4e:46:7c:7e:d6:8b:b3:ac:2f:6e:d3:1b:ca: 4f:f8:4a:28:81:54:f7:f0:9b:b9:ee:d5:e5:4c:57: b6:8a:b2:d8:65:6b:25:98:2f:ce:b4:d6:89:8d:42: 11:ca:9c:7b:bc:a9:2e:eb:95:de:32:29:ef:99:56: 09:46:d4:54:3a:04:e4:9a:bf:88:d1:f6:6a:60:74: b9:29:24:29:5f:f2:e2:54:07:50:df:5d:28:14:f0: ca:33:fb:88:66:11:c8:82:08:65:8f:a8:14:84:ee: e8:49:78:0f:5a:e6:74:67:cd:f2:bb:9d:a8:ae:8a: 86:7a:fe:9a:f8:85:0b:64:3b:6e:36:84:96:38:04: d8:f4:2a:d6:fc:a4:62:56:6f:4c:51:90:0c:a1:1b: a0:d7:98:22:9e:c1:56:6c:cf:81:fe:bb:fd:2a:55: 17:82:90:da:8d:78:64:f5:54:e7:4b:18:59:a8:d3: 99:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:66:B8:10:2F:C4:A2:F2:A3:80:88:74:0C:AD:EB:70:24:96:7A:00 X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:c0:eb:3b:66:88:cd:dd:d1:47:4d:06:07:b8:37:09:7e:6a: e1:e7:52:7d:ca:1a:3b:16:33:fb:3c:d7:92:48:2c:b6:a8:a0: 91:8b:c6:0f:d1:95:c4:d3:58:31:01:87:7d:e5:e0:a6:4e:d8: 91:a4:7e:71:35:54:1f:3f:60:9a:f0:4e:dd:24:10:bb:2a:b1: 39:73:6c:b7:ff:f3:bc:91:c6:41:fe:c6:2c:bd:42:1a:55:11: f9:92:f8:59:ce:e9:40:ae:d5:a7:77:10:62:86:71:73:9c:98: 0b:89:e0:ff:83:bf:71:06:4e:47:88:cf:67:8b:9a:a4:18:6b: 85:c4:eb:65:7c:19:7b:4d:34:8d:54:d7:9b:3d:11:39:b8:35: d4:6e:00:bc:92:a5:33:6e:3c:d4:da:00:43:fb:39:2f:e9:ed: c1:fa:a6:93:2e:ed:d7:01:0f:cd:ec:61:cd:4b:ba:d9:6a:a5: 5a:86:e5:68:87:27:ad:d6:52:f5:37:cf:3d:4f:a1:01:9d:e8: a0:2b:9c:a5:37:53:b1:c2:f1:c0:3d:18:b5:ff:33:0d:40:24: c1:fa:f3:59:f1:fe:e1:62:d0:b7:65:62:b9:b8:02:f3:a0:ef: 44:f9:43:b4:21:65:12:23:03:d2:65:c3:30:b8:2a:31:89:39: 7a:b2:2f:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTA0MDcwNzAyMTBaFw0yNTA0MTQwNzAyMTBaMBgxFjAUBgNV BAMTDTY3ZjM3ODcyLWVjYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxzs2lY44MCv+bWNWmQL1jFNDqNqxUSBaPBkMDuhwEgPbGgvEAlnUvj14Qh7KD 9KGANcCXdhGnlNxo3np26jXcE5aBWiDMeVrCNkJOTkZ8ftaLs6wvbtMbyk/4SiiB VPfwm7nu1eVMV7aKsthlayWYL8601omNQhHKnHu8qS7rld4yKe+ZVglG1FQ6BOSa v4jR9mpgdLkpJClf8uJUB1DfXSgU8Moz+4hmEciCCGWPqBSE7uhJeA9a5nRnzfK7 naiuioZ6/pr4hQtkO242hJY4BNj0Ktb8pGJWb0xRkAyhG6DXmCKewVZsz4H+u/0q VReCkNqNeGT1VOdLGFmo05kbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPGa4EC/E ovKjgIh0DK3rcCSWegAwHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MzMwL0FBRTQ5QTM4MDYwRjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUx aUdIYklrZ0hfOFFReXRwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJTA6ztmiM3d0UdNBge4Nwl+auHnUn3KGjsWM/s815JILLaooJGLxg/R lcTTWDEBh33l4KZO2JGkfnE1VB8/YJrwTt0kELsqsTlzbLf/87yRxkH+xiy9QhpV EfmS+FnO6UCu1ad3EGKGcXOcmAuJ4P+Dv3EGTkeIz2eLmqQYa4XE62V8GXtNNI1U 15s9ETm4NdRuALySpTNuPNTaAEP7OS/p7cH6ppMu7dcBD83sYc1LutlqpVqG5WiH J63WUvU3zz1PoQGd6KArnKU3U7HC8cA9GLX/Mw1AJMH681nx/uFi0LdlYrm4AvOg 70T5Q7QhZRIjA9JlwzC4KjGJOXqyL1U= -----END CERTIFICATE-----Generated at Mon Apr 7 11:16:40 2025 by rpki-client