$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft File: l0tKVlSG4EjQwXaY1yJ2cM88mac.mft (raw, json) Hash identifier: j8+Bp+VNkuOb+hzMIAKfxRB8Qq3IgwflOgaqfd0YlwY= Subject key identifier: 01:50:B4:47:01:71:09:13:85:FD:48:51:65:BF:C8:DF:01:30:84:1C Authority key identifier: 97:4B:4A:56:54:86:E0:48:D0:C1:76:98:D7:22:76:70:CF:3C:99:A7 Certificate issuer: /CN=A916069A/serialNumber=974B4A565486E048D0C17698D7227670CF3C99A7 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0tKVlSG4EjQwXaY1yJ2cM88mac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft Manifest number: 55 Signing time: Thu 17 Apr 2025 05:59:53 +0000 Manifest this update: Thu 17 Apr 2025 05:59:53 +0000 Manifest next update: Thu 24 Apr 2025 05:59:53 +0000 Files and hashes: 1: l0tKVlSG4EjQwXaY1yJ2cM88mac.crl (hash: ZAP1trTvo5RSQb9H7/NzwhAMsdEPyrFXv1KOTOE1I6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.crl rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0tKVlSG4EjQwXaY1yJ2cM88mac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=974B4A565486E048D0C17698D7227670CF3C99A7 Validity Not Before: Apr 17 05:59:53 2025 GMT Not After : Apr 24 05:59:53 2025 GMT Subject: CN=680098d9-5c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7b:27:8a:3c:29:12:1c:33:10:45:b6:27:66: 74:b2:81:8b:f7:28:41:a3:0c:df:c0:c3:a8:89:e6: c9:b1:84:11:5a:37:bb:d7:28:94:d5:25:f8:5a:7e: fc:7f:45:5e:52:76:f2:d2:3f:ab:a0:84:be:14:d0: fe:5c:b2:ee:15:51:e0:ab:68:37:52:79:b9:d1:cd: 9c:11:b2:62:33:3b:89:56:3d:a8:1a:13:60:d4:fd: 34:bf:4e:73:17:83:c1:db:d0:d6:7f:97:d9:e9:96: 1c:24:97:ec:46:4d:ab:b3:15:c9:c2:40:cb:22:be: 67:eb:64:13:94:f8:b9:c3:46:b6:e6:32:69:2c:b8: a2:8b:83:d6:d5:d6:cf:84:04:a4:8d:46:65:63:b5: cd:34:b8:a8:b2:9d:67:f9:84:93:f1:52:69:42:67: cb:f3:23:26:01:5a:0b:82:86:f3:36:65:ba:26:fd: 7d:c4:14:fe:11:91:82:06:1d:ad:d4:00:5d:67:a0: 5f:e3:07:62:98:ce:6f:a1:31:4e:8c:cc:46:61:6e: 80:4a:e2:a3:cc:08:08:f3:e5:34:29:4f:63:dd:be: 83:4c:8d:a5:59:c0:88:85:03:f2:73:3b:49:a3:1c: 3c:8b:9f:87:bc:bf:24:62:ab:cc:e5:bd:c6:be:73: 0d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:50:B4:47:01:71:09:13:85:FD:48:51:65:BF:C8:DF:01:30:84:1C X509v3 Authority Key Identifier: keyid:97:4B:4A:56:54:86:E0:48:D0:C1:76:98:D7:22:76:70:CF:3C:99:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0tKVlSG4EjQwXaY1yJ2cM88mac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/36D5D62C9BF011EF81C90267C4F9AE02/l0tKVlSG4EjQwXaY1yJ2cM88mac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b9:94:dc:a0:f2:6c:d9:f9:ba:fd:09:d9:ae:ca:80:71:e7: 68:3a:f6:38:28:96:a5:89:d6:83:6c:10:e0:41:d6:fc:51:5e: b8:7d:5d:4b:02:e1:97:a9:ca:f6:85:d0:df:2d:ee:68:73:ad: 63:21:7d:b4:ba:b9:5d:b8:4b:1f:f6:d7:1d:dc:21:47:c2:ec: d1:ac:6e:36:b6:37:6d:a3:e6:57:b0:39:0f:0f:d6:de:62:ca: f8:d8:56:4c:6f:33:f8:46:b8:66:02:35:3e:ef:b0:02:64:77: 97:e5:66:17:20:88:76:65:14:ca:c4:a4:d4:23:cb:14:00:6a: 6d:27:5c:9f:ee:1a:c7:a8:7f:79:b9:fb:56:bd:16:07:77:db: 86:18:9b:fd:0d:0b:7f:3e:8e:52:47:f6:36:14:de:8f:c6:82: 34:39:a8:f7:29:01:d2:d7:98:0a:33:d5:ba:f4:1d:4d:93:f0: b2:aa:d5:80:0e:be:b8:83:49:a8:74:16:52:e5:6a:48:3f:a2: 28:28:cd:95:0e:e6:bb:7c:cc:82:c5:a9:69:6f:d9:6d:91:fa: d1:f4:8b:4b:57:a3:28:35:90:b3:5f:60:21:88:6d:56:b1:70: b9:92:e1:56:a9:1c:4d:4d:15:16:cf:0b:1e:ce:15:50:79:05: 66:14:b5:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDY5QTExMC8GA1UEBRMoOTc0QjRBNTY1NDg2RTA0OEQwQzE3Njk4RDcyMjc2NzBD RjNDOTlBNzAeFw0yNTA0MTcwNTU5NTNaFw0yNTA0MjQwNTU5NTNaMBgxFjAUBgNV BAMTDTY4MDA5OGQ5LTVjOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdeyeKPCkSHDMQRbYnZnSygYv3KEGjDN/Aw6iJ5smxhBFaN7vXKJTVJfhafvx/ RV5SdvLSP6ughL4U0P5csu4VUeCraDdSebnRzZwRsmIzO4lWPagaE2DU/TS/TnMX g8Hb0NZ/l9nplhwkl+xGTauzFcnCQMsivmfrZBOU+LnDRrbmMmksuKKLg9bV1s+E BKSNRmVjtc00uKiynWf5hJPxUmlCZ8vzIyYBWguChvM2Zbom/X3EFP4RkYIGHa3U AF1noF/jB2KYzm+hMU6MzEZhboBK4qPMCAjz5TQpT2PdvoNMjaVZwIiFA/JzO0mj HDyLn4e8vyRiq8zlvca+cw1fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAVC0RwFx CROF/UhRZb/I3wEwhBwwHwYDVR0jBBgwFoAUl0tKVlSG4EjQwXaY1yJ2cM88macw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNjlBLzM2RDVENjJDOUJG MDExRUY4MUM5MDI2N0M0RjlBRTAyL2wwdEtWbFNHNEVqUXdYYVkxeUoyY004OG1h Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDB0S1ZsU0c0RWpRd1hhWTF5SjJjTTg4bWFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw NjlBLzM2RDVENjJDOUJGMDExRUY4MUM5MDI2N0M0RjlBRTAyL2wwdEtWbFNHNEVq UXdYYVkxeUoyY004OG1hYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHi5lNyg8mzZ+br9CdmuyoBx52g69jgolqWJ1oNsEOBB1vxRXrh9XUsC 4ZepyvaF0N8t7mhzrWMhfbS6uV24Sx/21x3cIUfC7NGsbja2N22j5lewOQ8P1t5i yvjYVkxvM/hGuGYCNT7vsAJkd5flZhcgiHZlFMrEpNQjyxQAam0nXJ/uGseof3m5 +1a9Fgd324YYm/0NC38+jlJH9jYU3o/GgjQ5qPcpAdLXmAoz1br0HU2T8LKq1YAO vriDSah0FlLlakg/oigozZUO5rt8zILFqWlv2W2R+tH0i0tXoyg1kLNfYCGIbVax cLmS4VapHE1NFRbPCx7OFVB5BWYUtZU= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:23 2025 by rpki-client