$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft File: wN6dhGshfHjdZIVanteaw9JxEI4.mft (raw, json) Hash identifier: 8g4LI9DSGKX12WWSfuy1YP1thT5DQUm1M2MjdydMGgs= Subject key identifier: B3:8C:CA:C3:37:72:22:CD:9B:96:55:1D:46:0B:0E:3B:A2:1D:40:4E Authority key identifier: C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E Certificate issuer: /CN=A916EDC4/serialNumber=C0DE9D846B217C78DD64855A9ED79AC3D271108E Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft Manifest number: 0240 Signing time: Wed 09 Apr 2025 01:33:57 +0000 Manifest this update: Wed 09 Apr 2025 01:33:57 +0000 Manifest next update: Wed 16 Apr 2025 01:33:57 +0000 Files and hashes: 1: wN6dhGshfHjdZIVanteaw9JxEI4.crl (hash: czOpF9WOWBeKLNnEbMwxN7DxZE20lvrI52q32L14YLg=) 2: F3862312575011EDA38B8A6DC4F9AE02.roa (hash: XVi0UgAslGszWLxV3R+z7xjOlX78p11eVVDevVvqWnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC4 Validity Not Before: Apr 9 01:33:57 2025 GMT Not After : Apr 16 01:33:57 2025 GMT Subject: CN=67f5ce85-a09a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d1:8d:ad:90:7e:39:ba:1d:39:91:a4:68:c9: 11:e5:aa:9a:b7:b5:26:bb:25:16:d0:f9:70:75:91: 27:df:c0:dd:5c:04:56:12:c7:2e:71:c9:c4:de:02: 0f:fb:a4:3e:13:1d:dc:7c:ee:71:44:75:25:7b:09: 72:1e:dd:1b:0d:61:6b:50:57:44:54:31:9a:1d:e4: d9:57:18:5c:d3:b6:8f:6b:fa:db:09:6a:e4:a1:82: fd:6b:c5:1b:d4:bf:04:a0:b8:cd:3f:79:49:95:8c: 20:ff:68:84:cc:c9:32:71:d2:3d:0c:2a:06:4e:8d: 38:26:72:12:4b:57:0a:13:ad:64:8b:00:18:fc:9b: 94:53:00:89:f8:c8:f6:ef:82:57:43:e9:e2:04:8a: 84:13:f0:fc:39:56:48:f4:c6:85:0e:4b:ab:44:b3: b1:57:a4:61:43:a2:b3:4f:69:88:da:10:0e:93:86: fe:8b:bf:19:0e:64:27:16:54:0e:34:40:1e:ef:46: 53:55:e7:98:3c:c2:91:97:15:d6:32:53:71:31:18: 5d:ca:2e:f5:47:a8:9f:06:8c:9f:18:3f:85:c4:be: c6:ee:c1:f2:bb:f0:07:87:44:e5:ec:c3:17:bb:50: f8:db:f7:63:cc:60:c3:6b:16:5b:7d:31:d1:04:fb: 29:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8C:CA:C3:37:72:22:CD:9B:96:55:1D:46:0B:0E:3B:A2:1D:40:4E X509v3 Authority Key Identifier: keyid:C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:0a:0a:77:49:8c:ac:ce:80:a4:3f:85:a5:3a:d5:e5:84:63: e4:42:f1:aa:5d:00:d1:ef:b5:e5:39:71:c7:28:03:17:63:eb: be:13:1b:b9:91:d8:6b:e9:cd:79:fb:1a:30:65:a2:b0:a7:73: ae:14:1b:17:fb:6c:c5:c3:d5:89:9f:f8:67:bd:a1:91:3b:61: 7c:c1:d5:28:8f:0e:e8:1b:26:f1:c0:c4:ec:ba:67:e9:0a:00: 1e:40:fa:77:ef:34:37:fc:ec:16:b0:49:b3:91:a9:56:e0:a2: cf:29:5e:71:f6:ad:d9:ab:cd:14:08:b1:64:0a:ef:94:58:37: cd:9c:21:9a:2a:7a:d4:9a:e1:c4:d9:17:cc:35:1d:e7:59:19: 0c:8a:33:af:5c:ee:13:74:e5:52:6c:c2:70:16:2c:4b:94:9f: 94:c6:ce:a0:33:23:c6:8c:e9:69:ac:62:0c:1b:65:4f:87:34: 52:98:e9:b6:74:6a:31:12:cc:f3:fa:6a:ce:46:d7:a8:4c:4a: d2:3b:f3:aa:a4:f4:22:b1:c6:58:fe:6a:7c:82:2e:fa:cc:f1: d8:30:86:25:3c:72:e0:59:d1:93:59:f7:64:bb:f4:84:c4:0d: 62:6c:ce:ad:6b:c6:86:8c:d4:c8:c5:2f:c3:41:9d:f7:31:ec: 76:97:a8:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzQxMTAvBgNVBAUTKEMwREU5RDg0NkIyMTdDNzhERDY0ODU1QTlFRDc5QUMz RDI3MTEwOEUwHhcNMjUwNDA5MDEzMzU3WhcNMjUwNDE2MDEzMzU3WjAYMRYwFAYD VQQDEw02N2Y1Y2U4NS1hMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59GNrZB+ObodOZGkaMkR5aqat7UmuyUW0PlwdZEn38DdXARWEscuccnE3gIP +6Q+Ex3cfO5xRHUlewlyHt0bDWFrUFdEVDGaHeTZVxhc07aPa/rbCWrkoYL9a8Ub 1L8EoLjNP3lJlYwg/2iEzMkycdI9DCoGTo04JnISS1cKE61kiwAY/JuUUwCJ+Mj2 74JXQ+niBIqEE/D8OVZI9MaFDkurRLOxV6RhQ6KzT2mI2hAOk4b+i78ZDmQnFlQO NEAe70ZTVeeYPMKRlxXWMlNxMRhdyi71R6ifBoyfGD+FxL7G7sHyu/AHh0Tl7MMX u1D42/djzGDDaxZbfTHRBPspcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOMysM3 ciLNm5ZVHUYLDjuiHUBOMB8GA1UdIwQYMBaAFMDenYRrIXx43WSFWp7XmsPScRCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDNC8wQjIyQTZGODFC QUIxMUVEOUMzNjJGNzhDNEY5QUUwMi93TjZkaEdzaGZIamRaSVZhbnRlYXc5SnhF STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dONmRoR3NoZkhqZFpJVmFudGVhdzlKeEVJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDNC8wQjIyQTZGODFCQUIxMUVEOUMzNjJGNzhDNEY5QUUwMi93TjZkaEdzaGZI amRaSVZhbnRlYXc5SnhFSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsCgp3SYyszoCkP4WlOtXlhGPkQvGqXQDR77XlOXHHKAMXY+u+Exu5 kdhr6c15+xowZaKwp3OuFBsX+2zFw9WJn/hnvaGRO2F8wdUojw7oGybxwMTsumfp CgAeQPp37zQ3/OwWsEmzkalW4KLPKV5x9q3Zq80UCLFkCu+UWDfNnCGaKnrUmuHE 2RfMNR3nWRkMijOvXO4TdOVSbMJwFixLlJ+Uxs6gMyPGjOlprGIMG2VPhzRSmOm2 dGoxEszz+mrORteoTErSO/OqpPQiscZY/mp8gi76zPHYMIYlPHLgWdGTWfdku/SE xA1ibM6ta8aGjNTIxS/DQZ33Mex2l6gN -----END CERTIFICATE-----Generated at Wed Apr 9 20:17:50 2025 by rpki-client