$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: hwg6SKbgY9GMTWHR4hRSClUzypuG1TIrFq2TPnrisRg= Subject key identifier: ED:62:4E:21:7C:9B:3B:24:B3:C0:EA:00:A3:76:6F:71:D8:EA:79:BD Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 3495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 3482 Signing time: Sat 12 Apr 2025 14:45:42 +0000 Manifest this update: Sat 12 Apr 2025 14:45:41 +0000 Manifest next update: Sat 19 Apr 2025 14:45:41 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: wA0NnXWi33qWrBN1nVIyo0TKzgGeSAhcwz9NrnRCdgc=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13461 (0x3495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Apr 12 14:45:41 2025 GMT Not After : Apr 19 14:45:41 2025 GMT Subject: CN=67fa7c96-efe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:ba:32:6b:11:88:0f:08:a8:47:c2:d8:71: c1:71:67:f9:19:10:5c:b6:86:5f:60:ad:6b:24:27: 17:65:20:b0:da:1d:21:ea:d8:e9:40:66:52:a0:1b: f1:8d:0a:e8:b6:7e:54:23:dd:e3:20:7b:32:ff:fb: b5:80:34:01:65:48:fe:be:ed:55:70:bf:d6:b7:54: 32:3b:2a:92:d0:50:36:5a:b9:6b:2b:2e:59:0e:38: da:0e:07:f9:61:66:5f:d6:54:89:66:b4:45:1b:fd: 1d:c6:c4:5c:3e:6e:5d:09:a4:02:ba:53:9b:94:5f: 4d:c0:bf:c0:a0:53:f0:ea:c1:a0:69:16:a3:8f:37: ff:ca:df:5a:dd:d7:c1:39:6e:50:30:58:51:c9:b6: 48:44:c8:f0:de:41:80:1a:2b:87:2a:f0:21:02:6b: 94:7f:79:e1:38:49:6f:33:48:97:f4:37:77:74:01: 86:6d:73:03:fe:76:f0:8f:4e:68:28:c1:56:90:cc: 9c:c4:f6:09:0a:43:4e:cb:d7:ac:44:eb:8a:e2:de: 0d:58:62:cf:7d:9d:96:90:c7:30:74:34:d9:f8:8d: 73:90:98:bf:30:67:ba:a9:29:5f:3c:5b:0d:a5:c7: a8:f3:af:34:88:4a:7c:13:89:37:42:0f:71:0a:37: 42:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:62:4E:21:7C:9B:3B:24:B3:C0:EA:00:A3:76:6F:71:D8:EA:79:BD X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:a6:77:ae:36:ed:d0:44:04:9a:d4:a7:99:df:d0:d7:2e:21: 8b:ac:c4:42:43:2f:69:08:db:ba:5d:5b:b8:c8:ac:b9:4f:76: 6e:db:2c:e6:1b:42:45:7e:28:a1:bc:c7:f4:69:a0:bd:b8:cf: ae:32:f8:4e:7b:09:65:1e:fe:ec:d2:2f:43:62:88:17:a7:71: 58:08:eb:93:c2:2f:6e:e4:d2:bd:b1:a7:f4:b5:53:b6:13:74: 55:a6:4d:d3:0c:3f:15:8c:80:dd:d6:27:21:80:2a:b6:46:3a: 91:e4:7e:d1:a8:31:04:9f:ef:f9:de:ff:40:3a:df:57:3e:f8: 05:0f:eb:4a:97:20:b0:88:fa:ba:f9:f4:a5:a2:22:42:d1:c1: 47:73:5e:2d:fb:a8:eb:9e:20:5b:8e:40:05:35:59:08:fd:6e: fc:a1:6d:78:60:32:d0:41:a1:f4:e8:58:22:63:24:6d:07:a6: d6:25:88:58:64:71:34:ae:5f:2b:11:94:4c:49:3d:e0:a6:91: 66:40:6d:dd:2d:05:a1:b5:d1:fb:74:3a:91:ca:bd:44:01:4f: 8b:cb:00:ea:59:5f:8a:0e:78:9f:de:f4:fe:31:d4:1b:26:08: dd:7d:ba:19:1f:66:0f:ae:7c:73:12:e2:5f:6e:52:60:55:0d: c3:a9:dd:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwNDEyMTQ0NTQxWhcNMjUwNDE5MTQ0NTQxWjAYMRYwFAYD VQQDEw02N2ZhN2M5Ni1lZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwra6MmsRiA8IqEfC2HHBcWf5GRBctoZfYK1rJCcXZSCw2h0h6tjpQGZSoBvx jQrotn5UI93jIHsy//u1gDQBZUj+vu1VcL/Wt1QyOyqS0FA2WrlrKy5ZDjjaDgf5 YWZf1lSJZrRFG/0dxsRcPm5dCaQCulOblF9NwL/AoFPw6sGgaRajjzf/yt9a3dfB OW5QMFhRybZIRMjw3kGAGiuHKvAhAmuUf3nhOElvM0iX9Dd3dAGGbXMD/nbwj05o KMFWkMycxPYJCkNOy9esROuK4t4NWGLPfZ2WkMcwdDTZ+I1zkJi/MGe6qSlfPFsN pceo8680iEp8E4k3Qg9xCjdCjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1iTiF8 mzsks8DqAKN2b3HY6nm9MB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0pneuNu3QRASa1KeZ39DXLiGLrMRCQy9pCNu6XVu4yKy5T3Zu2yzm G0JFfiihvMf0aaC9uM+uMvhOewllHv7s0i9DYogXp3FYCOuTwi9u5NK9saf0tVO2 E3RVpk3TDD8VjIDd1ichgCq2RjqR5H7RqDEEn+/53v9AOt9XPvgFD+tKlyCwiPq6 +fSloiJC0cFHc14t+6jrniBbjkAFNVkI/W78oW14YDLQQaH06FgiYyRtB6bWJYhY ZHE0rl8rEZRMST3gppFmQG3dLQWhtdH7dDqRyr1EAU+LywDqWV+KDnif3vT+MdQb JgjdfboZH2YPrnxzEuJfblJgVQ3Dqd3P -----END CERTIFICATE-----Generated at Sat Apr 12 17:38:30 2025 by rpki-client