$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: G3cNH0rPCq+b0DB1rwnD6mqDewgA7Ui2sfJMUg6KWJw= Subject key identifier: D3:17:97:34:03:07:4F:6A:1B:C1:93:29:13:B1:15:A6:BD:A7:7F:4A Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: B0 Signing time: Wed 09 Apr 2025 04:54:43 +0000 Manifest this update: Wed 09 Apr 2025 04:54:43 +0000 Manifest next update: Wed 16 Apr 2025 04:54:43 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: jMD2cJv03dLwBr19kh2BaxMjuq9JNUWbI9aR8he34gw=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: XJ6Cl0k/r34t0UIzqumXdg3IJ/QU+9th/mHz4X1ySQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C Validity Not Before: Apr 9 04:54:43 2025 GMT Not After : Apr 16 04:54:43 2025 GMT Subject: CN=67f5fd93-63eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:df:a7:ee:16:7f:33:fc:f7:6a:50:19:c7:3f: 9a:9a:30:06:7f:c6:40:7f:3d:58:5a:da:d9:cf:0d: c9:ce:d5:4f:18:f5:37:6e:80:49:39:de:46:15:8d: b5:91:5c:1d:22:d6:c6:bb:c1:99:50:eb:75:89:f5: 56:35:57:69:a3:86:4a:fa:87:59:05:23:c0:39:e5: 48:ad:ef:e9:87:e2:0e:eb:ee:af:fb:1d:13:76:ca: 8e:ee:9c:cd:b8:d3:eb:5f:e2:16:b8:ad:84:67:50: bc:78:1c:7c:84:42:01:38:be:f6:72:11:12:cf:ae: fb:e1:81:13:dc:ec:fc:fc:e6:44:68:45:16:57:d3: b8:8e:ce:b7:2f:34:33:58:fe:b5:03:3e:71:9c:9a: 8c:9e:eb:99:88:b9:53:44:f7:e3:8f:eb:e9:75:c3: 2f:ca:72:58:ff:90:9a:0b:00:4e:36:df:d1:d8:17: 43:86:f7:5b:42:8e:d8:76:38:80:25:ce:dc:72:87: e1:05:ba:69:c1:b0:b9:f8:e9:97:fa:a3:03:b1:48: 36:7d:f2:79:ba:4a:5f:ca:a1:f5:fe:2f:a1:77:87: 45:19:ce:f6:24:d4:49:6d:12:02:59:39:c4:84:12: 57:d7:c6:09:6e:df:e3:4e:ba:9a:9b:f6:ac:7f:5c: cd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:17:97:34:03:07:4F:6A:1B:C1:93:29:13:B1:15:A6:BD:A7:7F:4A X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:17:d3:f9:3b:4e:a4:fb:43:bc:0b:e6:bd:49:28:4b:a2:6e: 90:71:8e:5b:d4:92:8d:87:f3:b7:b3:41:53:b4:78:ce:55:0f: d9:ae:90:37:57:f3:5d:9e:65:0a:4d:87:72:b0:52:09:33:89: 39:ac:5b:6f:b0:a5:a1:be:e1:9f:3d:e2:a0:7e:08:8d:0c:54: 95:c6:2f:3f:2d:36:d6:8e:dc:a1:60:d2:82:e5:42:aa:b6:77: 5c:51:e0:2a:34:eb:b9:b3:66:39:90:09:27:6e:80:f9:e1:1f: 4c:18:3b:56:0b:1d:9c:d0:51:9f:33:99:45:42:60:bd:2f:33: 13:06:b5:4a:c7:19:2e:1d:5b:64:b0:8f:40:01:d4:2a:1f:5f: c4:7f:a0:d7:09:db:64:49:b6:26:a0:2f:5e:e0:ca:d2:fd:25: 78:ad:48:eb:8a:04:a4:34:5d:5f:e7:2d:14:97:e1:7b:93:86: b1:ea:8a:14:52:11:0a:ac:77:a8:37:a5:31:b0:be:dd:cd:79: 25:5c:fd:72:a4:36:e2:62:96:c4:5c:c5:c1:4d:29:48:e8:29: 07:13:ea:e8:56:cd:e0:9d:33:e6:10:20:e7:73:8e:96:f7:3b: 0b:8d:a4:2b:8b:2e:1f:c9:a0:60:80:ba:12:00:cf:45:a8:61: f5:80:40:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjUwNDA5MDQ1NDQzWhcNMjUwNDE2MDQ1NDQzWjAYMRYwFAYD VQQDEw02N2Y1ZmQ5My02M2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N+n7hZ/M/z3alAZxz+amjAGf8ZAfz1YWtrZzw3JztVPGPU3boBJOd5GFY21 kVwdItbGu8GZUOt1ifVWNVdpo4ZK+odZBSPAOeVIre/ph+IO6+6v+x0TdsqO7pzN uNPrX+IWuK2EZ1C8eBx8hEIBOL72chESz6774YET3Oz8/OZEaEUWV9O4js63LzQz WP61Az5xnJqMnuuZiLlTRPfjj+vpdcMvynJY/5CaCwBONt/R2BdDhvdbQo7YdjiA Jc7ccofhBbppwbC5+OmX+qMDsUg2ffJ5ukpfyqH1/i+hd4dFGc72JNRJbRICWTnE hBJX18YJbt/jTrqam/asf1zNFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMXlzQD B09qG8GTKROxFaa9p39KMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRF9P5O06k+0O8C+a9SShLom6QcY5b1JKNh/O3s0FTtHjOVQ/ZrpA3 V/NdnmUKTYdysFIJM4k5rFtvsKWhvuGfPeKgfgiNDFSVxi8/LTbWjtyhYNKC5UKq tndcUeAqNOu5s2Y5kAknboD54R9MGDtWCx2c0FGfM5lFQmC9LzMTBrVKxxkuHVtk sI9AAdQqH1/Ef6DXCdtkSbYmoC9e4MrS/SV4rUjrigSkNF1f5y0Ul+F7k4ax6ooU UhEKrHeoN6UxsL7dzXklXP1ypDbiYpbEXMXBTSlI6CkHE+roVs3gnTPmECDnc46W 9zsLjaQriy4fyaBggLoSAM9FqGH1gECb -----END CERTIFICATE-----Generated at Thu Apr 10 17:01:18 2025 by rpki-client