$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: GYF8uT/5wPkAcOlTzZ6CGjnY4rd/f+GaobF/mpeXZA8= Subject key identifier: F2:68:5B:8E:27:AD:66:AB:6D:E3:52:FA:04:1A:D6:F3:30:EF:B0:EF Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 61 Signing time: Sat 05 Apr 2025 06:20:29 +0000 Manifest this update: Sat 05 Apr 2025 06:20:29 +0000 Manifest next update: Sat 12 Apr 2025 06:20:29 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: gwAJIl8vReQ7jNGSj/+EFVc+yYjVVo8DQm9njFxADrI=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED Validity Not Before: Apr 5 06:20:29 2025 GMT Not After : Apr 12 06:20:29 2025 GMT Subject: CN=67f0cbad-7327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3c:f1:cf:7d:7e:51:7f:10:29:ce:e6:69:d1: fb:5c:e7:f5:36:7a:bb:87:89:d2:ab:36:da:9e:6b: 47:aa:24:f3:af:c4:9b:c5:b5:9e:54:b2:46:64:60: cb:9e:27:b3:3a:10:2a:f1:a6:fc:d0:d4:b3:b2:7a: 81:71:4e:37:ef:46:6f:c1:a8:dc:95:b1:73:25:d5: f9:0c:5a:f8:7d:0b:8e:be:1e:ec:a2:46:83:71:8d: eb:94:c4:7d:77:53:d0:a0:7d:16:84:90:a7:0a:95: ae:60:00:ec:7e:e6:b8:ce:1e:7b:7e:b2:49:2b:b9: 3d:13:db:ea:6d:77:53:fc:2f:af:77:cf:c1:ca:c0: 53:89:2c:62:d6:37:21:17:45:a8:f8:57:d5:e8:0a: bb:3b:10:3b:07:60:a9:f9:13:f9:18:98:24:38:0b: 7f:2e:76:90:7d:56:b9:05:c1:ef:ab:3a:7c:24:1b: 8c:c8:cf:0d:72:c5:fb:87:65:80:a3:05:6d:a2:12: 8c:bb:f1:7f:4b:89:80:62:50:8c:14:81:20:cb:41: 9f:9a:68:d9:6d:96:93:da:57:28:c2:54:7c:46:4b: 00:d0:41:34:b3:36:22:ec:a5:ae:79:6f:22:eb:27: 03:3a:92:17:2c:63:db:49:7b:7e:6e:02:2c:b6:fd: e5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:68:5B:8E:27:AD:66:AB:6D:E3:52:FA:04:1A:D6:F3:30:EF:B0:EF X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8a:fa:4e:41:70:6f:86:0a:e4:4d:d0:23:32:34:a4:0a:d2: 10:74:05:fb:9b:af:37:31:8f:84:55:e2:46:1e:3d:e8:a0:88: 1c:15:af:7b:31:07:1f:cf:02:30:15:71:74:07:a0:af:86:bd: 83:5d:38:99:b4:4c:51:5a:7e:17:e1:4a:b5:a8:f2:b8:71:27: e5:c5:31:2c:6d:68:24:39:c9:30:6f:5e:bd:9b:ff:94:94:d4: 65:bd:1f:79:be:59:4b:a8:f5:a0:3f:11:28:fc:04:09:8d:6f: 4f:93:65:fb:72:7e:f7:49:95:bf:1a:33:50:e0:6e:63:a1:b5: ed:b4:c2:87:a9:a6:c5:3c:b5:fb:5d:b4:99:73:b0:e6:79:65: ec:76:4a:5c:7e:07:0c:34:29:58:e5:7a:4b:f4:6e:c8:91:8b: ac:19:5a:1d:ca:19:af:f8:a7:6c:db:ec:ad:49:ba:df:25:0f: 11:de:5a:01:9e:76:fe:06:10:c2:a2:62:73:8e:b8:8e:48:70: 84:81:89:a9:30:bf:44:2b:a7:ea:42:19:a4:27:ac:80:c6:93: 21:66:08:ac:34:e0:4a:7e:39:c9:7f:8a:c4:1b:64:42:a9:b1: 03:49:12:18:03:ce:58:16:f7:02:0c:bd:f3:50:6d:a3:92:57: 33:e4:15:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNTA0MDUwNjIwMjlaFw0yNTA0MTIwNjIwMjlaMBgxFjAUBgNV BAMTDTY3ZjBjYmFkLTczMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNPPHPfX5RfxApzuZp0ftc5/U2eruHidKrNtqea0eqJPOvxJvFtZ5UskZkYMue J7M6ECrxpvzQ1LOyeoFxTjfvRm/BqNyVsXMl1fkMWvh9C46+HuyiRoNxjeuUxH13 U9CgfRaEkKcKla5gAOx+5rjOHnt+skkruT0T2+ptd1P8L693z8HKwFOJLGLWNyEX Raj4V9XoCrs7EDsHYKn5E/kYmCQ4C38udpB9VrkFwe+rOnwkG4zIzw1yxfuHZYCj BW2iEoy78X9LiYBiUIwUgSDLQZ+aaNltlpPaVyjCVHxGSwDQQTSzNiLspa55byLr JwM6khcsY9tJe35uAiy2/eXdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8mhbjiet Zqtt41L6BBrW8zDvsO8wHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABeK+k5BcG+GCuRN0CMyNKQK0hB0Bfubrzcxj4RV4kYePeigiBwVr3sx Bx/PAjAVcXQHoK+GvYNdOJm0TFFafhfhSrWo8rhxJ+XFMSxtaCQ5yTBvXr2b/5SU 1GW9H3m+WUuo9aA/ESj8BAmNb0+TZftyfvdJlb8aM1DgbmOhte20woeppsU8tftd tJlzsOZ5Zex2Slx+Bww0KVjlekv0bsiRi6wZWh3KGa/4p2zb7K1Jut8lDxHeWgGe dv4GEMKiYnOOuI5IcISBiakwv0Qrp+pCGaQnrIDGkyFmCKw04Ep+Ocl/isQbZEKp sQNJEhgDzlgW9wIMvfNQbaOSVzPkFbg= -----END CERTIFICATE-----Generated at Sun Apr 6 21:57:13 2025 by rpki-client