$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft File: 1qn8yzagJxy8XxErtyBaV7n0hPc.mft (raw, json) Hash identifier: 8/0tqTUXKLtwl0i6cYsDiWYxgCFSwa7nQQ5oX4Fwrbc= Subject key identifier: 01:D7:61:2C:FA:CE:23:A0:3D:01:7E:C0:8C:FB:4A:04:02:9A:4F:B4 Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Certificate serial: 03E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft Manifest number: 03D3 Signing time: Thu 03 Apr 2025 00:38:20 +0000 Manifest this update: Thu 03 Apr 2025 00:38:20 +0000 Manifest next update: Thu 10 Apr 2025 00:38:20 +0000 Files and hashes: 1: 1qn8yzagJxy8XxErtyBaV7n0hPc.crl (hash: 1LLiM/gctSuu11xEU8++YOnsDx73GHmhDZPXLAolhUY=) 2: A34E20703F3411EF9DF9274AC4F9AE02.roa (hash: mj7Quo5wKTbG3d5ij/IP0EyOkfhXPi1COcacV2q2awg=) 3: 819150603F3411EF85BAC749C4F9AE02.roa (hash: W4tDaOtoueXLJGV231Xq5px334ORbAFdGWpLgfvtl8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168126 Validity Not Before: Apr 3 00:38:20 2025 GMT Not After : Apr 10 00:38:20 2025 GMT Subject: CN=67edd87c-c67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:d0:dc:f1:31:d2:10:61:05:42:1c:bd:71: 21:8f:85:7a:37:4e:7e:50:e3:c1:c7:98:27:e7:57: 13:78:1a:9a:97:e5:b5:9b:30:2a:ea:72:bf:fb:ea: 89:a4:98:53:89:41:45:4c:a2:9e:15:90:c4:1b:06: 12:36:6e:54:74:ca:52:b5:7c:ef:7f:6d:13:5e:7f: 6b:94:43:44:d7:cf:d9:c7:39:3a:c0:93:85:04:00: 70:95:59:a1:44:37:33:0b:eb:02:93:fc:40:06:c8: 9b:1c:93:9a:22:af:9e:07:74:50:38:b5:b5:6a:77: bd:b3:08:f4:52:e4:01:a8:d7:7f:16:10:01:a2:05: ab:8c:d9:6b:89:86:21:b4:05:6b:a9:fc:e6:a1:4c: 30:df:50:e3:1e:5f:f4:7a:70:bc:91:02:df:a1:08: 6f:20:3f:c0:d9:20:8d:b7:35:71:b8:b4:9f:88:9d: c8:92:5f:f9:c6:d5:cc:f9:4e:cc:6c:2e:85:2f:2c: c7:1d:e4:cc:33:da:ba:d7:04:3b:49:1a:93:b9:f9: 94:0a:5b:74:cd:f7:5c:48:e7:3c:95:2a:37:8c:66: 02:89:53:2c:e7:b3:e9:99:1a:b7:42:62:e8:f4:aa: 15:c5:a3:69:a8:95:5b:a1:3e:c6:a2:60:7c:23:9c: 59:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D7:61:2C:FA:CE:23:A0:3D:01:7E:C0:8C:FB:4A:04:02:9A:4F:B4 X509v3 Authority Key Identifier: keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:5b:39:e9:14:79:ce:2e:40:69:b7:bf:c4:47:e9:ef:14:9a: 01:e8:9b:b0:10:90:a4:b1:9d:00:6a:bb:87:33:71:38:50:6e: b2:08:b6:51:47:78:19:c3:29:ec:3f:f2:3b:97:29:f7:6b:e3: 2d:50:56:da:67:65:2b:2f:4e:6e:9f:a7:4d:03:78:f9:05:4b: 60:e0:1a:a1:93:49:08:00:5b:f7:11:cd:f0:e5:dc:c3:be:a1: 73:15:b3:6f:da:de:b0:52:a1:c3:32:0d:d6:d3:4f:60:c1:ef: e9:24:f5:88:cb:a7:28:01:f6:15:81:3c:00:20:dd:7c:e2:c2: 1e:96:07:64:0a:b3:e2:2e:53:56:98:c0:c6:9c:06:c2:16:62: fc:7b:d2:76:ff:11:d9:b2:c4:62:a9:85:b2:c4:cc:d9:59:a4: c2:27:27:a6:c0:29:a2:21:2e:29:69:57:3c:4a:e7:d8:21:ba: 9f:aa:4d:d7:90:c8:08:e8:47:e0:85:8c:47:c2:97:87:f4:44: 28:c1:4d:81:86:22:f9:ac:e6:1d:5e:18:3e:01:2d:bc:a4:25: b1:6e:0b:e9:3b:ef:8c:46:73:48:09:a1:46:46:93:11:16:42: 30:94:96:bb:ef:9c:2b:04:05:91:a0:4e:96:b4:45:bc:a7:11: c4:26:97:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxMjYxMTAvBgNVBAUTKEQ2QTlGQ0NCMzZBMDI3MUNCQzVGMTEyQkI3MjA1QTU3 QjlGNDg0RjcwHhcNMjUwNDAzMDAzODIwWhcNMjUwNDEwMDAzODIwWjAYMRYwFAYD VQQDEw02N2VkZDg3Yy1jNjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SXQ3PEx0hBhBUIcvXEhj4V6N05+UOPBx5gn51cTeBqal+W1mzAq6nK/++qJ pJhTiUFFTKKeFZDEGwYSNm5UdMpStXzvf20TXn9rlENE18/Zxzk6wJOFBABwlVmh RDczC+sCk/xABsibHJOaIq+eB3RQOLW1ane9swj0UuQBqNd/FhABogWrjNlriYYh tAVrqfzmoUww31DjHl/0enC8kQLfoQhvID/A2SCNtzVxuLSfiJ3Ikl/5xtXM+U7M bC6FLyzHHeTMM9q61wQ7SRqTufmUClt0zfdcSOc8lSo3jGYCiVMs57PpmRq3QmLo 9KoVxaNpqJVboT7GomB8I5xZywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHXYSz6 ziOgPQF+wIz7SgQCmk+0MB8GA1UdIwQYMBaAFNap/Ms2oCccvF8RK7cgWle59IT3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODEyNi8xNTdGNjZFQTgw MDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4eThYeEVydHlCYVY3bjBo UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFxbjh5emFnSnh5OFh4RXJ0eUJhVjduMGhQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODEyNi8xNTdGNjZFQTgwMDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4 eThYeEVydHlCYVY3bjBoUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKWznpFHnOLkBpt7/ER+nvFJoB6JuwEJCksZ0AaruHM3E4UG6yCLZR R3gZwynsP/I7lyn3a+MtUFbaZ2UrL05un6dNA3j5BUtg4Bqhk0kIAFv3Ec3w5dzD vqFzFbNv2t6wUqHDMg3W009gwe/pJPWIy6coAfYVgTwAIN184sIelgdkCrPiLlNW mMDGnAbCFmL8e9J2/xHZssRiqYWyxMzZWaTCJyemwCmiIS4paVc8SufYIbqfqk3X kMgI6EfghYxHwpeH9EQowU2BhiL5rOYdXhg+AS28pCWxbgvpO++MRnNICaFGRpMR FkIwlJa775wrBAWRoE6WtEW8pxHEJpcJ -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:34 2025 by rpki-client