$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: JQ3mJlrt/XAvroX+oi1mkU4EzsbKAY7Sg3d3UGNv2Is= Subject key identifier: F1:02:29:08:76:B3:7E:9A:52:F3:E9:36:ED:F8:8F:08:A3:42:D1:6D Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: 69 Signing time: Sat 05 Apr 2025 06:15:14 +0000 Manifest this update: Sat 05 Apr 2025 06:15:14 +0000 Manifest next update: Sat 12 Apr 2025 06:15:14 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: 3HFgIbVWgVMC+9IidhPWs2dtcArYzJPuxEANtjexowI=) 2: B0D54166830311EFBF66FC21C4F9AE02.roa (hash: tZx4V13WdS1YqkwOo/f+c5fdIh0lni7XzhM0Rn3v6tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1 Validity Not Before: Apr 5 06:15:14 2025 GMT Not After : Apr 12 06:15:14 2025 GMT Subject: CN=67f0ca72-9649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:e4:57:f0:ff:93:93:11:76:2d:ff:0d:60: 77:3c:7f:2f:03:d6:30:27:d7:5f:fe:76:86:a5:05: 02:c7:07:8a:4b:20:bd:ad:6b:49:81:e8:28:19:f3: 70:50:00:f6:ff:3c:96:a9:a8:92:84:81:14:44:c7: 57:2f:ca:78:0a:e9:f0:a1:6e:e0:bb:2f:5f:c3:db: 5e:d8:63:d6:09:ec:e2:fc:80:9e:b9:72:a3:f1:88: b8:d6:73:32:f3:f5:9a:47:fc:a8:fb:5a:29:1c:88: 7d:a4:d9:3e:64:7e:98:3c:7e:a2:fc:53:41:1b:1a: cf:e3:4e:8a:1b:79:21:b3:61:33:f4:cf:f1:17:e1: 28:24:7c:d3:6c:94:c4:99:34:35:11:7e:9e:09:5d: 73:93:bb:27:24:53:66:37:87:ea:dd:01:10:93:45: 71:80:72:c4:59:b6:66:0b:06:69:0e:1f:6a:53:1a: b1:09:d9:18:93:1f:7e:ce:3b:87:52:62:2d:b5:08: 0d:36:01:6a:b1:cb:f1:76:96:d7:6a:62:3d:27:7c: 26:40:58:73:98:6e:9d:d5:62:d4:74:0f:eb:26:8d: 31:42:47:b5:0f:e6:f8:97:b3:d1:7d:9c:4e:38:dc: 4f:05:04:75:77:ec:2c:c4:39:cc:fc:1a:3f:df:24: c3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:02:29:08:76:B3:7E:9A:52:F3:E9:36:ED:F8:8F:08:A3:42:D1:6D X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ce:47:f5:96:01:6c:b9:dd:7e:d7:da:4b:ba:9e:df:9b:6b: be:8c:70:ba:f2:fe:2f:ba:e4:4d:cd:87:78:f9:c5:41:b1:f3: 15:dd:a7:7e:60:73:4c:2d:fd:a7:e2:f4:2c:e0:32:89:b4:6d: 61:67:ab:e0:0c:78:7e:f1:f2:51:c6:c6:b6:e1:bc:df:3b:c4: 28:08:1f:ea:d8:1c:38:1b:89:f4:2f:b2:3b:d8:46:8b:bc:4a: 7d:98:5d:89:b1:cc:29:6d:ea:ab:1e:10:50:f0:d9:e1:13:c1: 5d:20:41:6f:d8:5b:a2:5d:50:56:25:37:95:b3:bf:51:3b:60: 4b:3d:2b:92:b1:49:c5:eb:e5:60:32:65:8b:93:38:6f:ff:01: f7:39:62:3c:b5:1d:65:0c:8b:55:95:51:9e:f1:f1:98:81:aa: ba:be:4b:b6:95:aa:45:d4:0c:53:af:71:28:3a:fc:fa:56:9e: b6:35:1f:70:5c:2e:8e:86:45:39:d6:86:33:11:d9:14:c0:c6: 4f:4f:d6:a4:78:48:be:2e:be:34:71:eb:32:3b:9b:50:3a:2b: 19:b0:3f:71:a2:95:01:2c:d5:73:84:00:a8:98:2f:bd:65:0c: 41:f4:39:09:f2:7e:cc:e8:4f:ae:da:59:37:a5:7c:20:6d:83: 08:47:1c:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RDZDMTExMC8GA1UEBRMoMjZEODY0NUVFOEVFM0E1RDFFQjFEMkRGOTc5Qjg1NDlC ODc2MUUyQTAeFw0yNTA0MDUwNjE1MTRaFw0yNTA0MTIwNjE1MTRaMBgxFjAUBgNV BAMTDTY3ZjBjYTcyLTk2NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPMeRX8P+TkxF2Lf8NYHc8fy8D1jAn11/+doalBQLHB4pLIL2ta0mB6CgZ83BQ APb/PJapqJKEgRREx1cvyngK6fChbuC7L1/D217YY9YJ7OL8gJ65cqPxiLjWczLz 9ZpH/Kj7WikciH2k2T5kfpg8fqL8U0EbGs/jToobeSGzYTP0z/EX4SgkfNNslMSZ NDURfp4JXXOTuyckU2Y3h+rdARCTRXGAcsRZtmYLBmkOH2pTGrEJ2RiTH37OO4dS Yi21CA02AWqxy/F2ltdqYj0nfCZAWHOYbp3VYtR0D+smjTFCR7UP5viXs9F9nE44 3E8FBHV37CzEOcz8Gj/fJMM9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8QIpCHaz fppS8+k27fiPCKNC0W0wHwYDVR0jBBgwFoAUJthkXujuOl0esdLfl5uFSbh2Hiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZENkMxL0RCNzA0NEUyN0Ey NjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSnRoa1h1anVPbDBlc2RMZmw1dUZTYmgySGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE NkMxL0RCNzA0NEUyN0EyNjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2ww ZXNkTGZsNXVGU2JoMkhpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrOR/WWAWy53X7X2ku6nt+ba76McLry/i+65E3Nh3j5xUGx8xXdp35g c0wt/afi9CzgMom0bWFnq+AMeH7x8lHGxrbhvN87xCgIH+rYHDgbifQvsjvYRou8 Sn2YXYmxzClt6qseEFDw2eETwV0gQW/YW6JdUFYlN5Wzv1E7YEs9K5KxScXr5WAy ZYuTOG//Afc5Yjy1HWUMi1WVUZ7x8ZiBqrq+S7aVqkXUDFOvcSg6/PpWnrY1H3Bc Lo6GRTnWhjMR2RTAxk9P1qR4SL4uvjRx6zI7m1A6KxmwP3GilQEs1XOEAKiYL71l DEH0OQnyfszoT67aWTelfCBtgwhHHD0= -----END CERTIFICATE-----Generated at Sun Apr 6 02:23:27 2025 by rpki-client