$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft File: svBcLOw1UNLTyetRODn0egAqhy4.mft (raw, json) Hash identifier: Wte33uvxmlEKdLnDhY0rBIoZHsBIaZALCE0gQ+2JnnA= Subject key identifier: 81:D9:EA:AD:0B:31:B7:D1:35:B5:D3:F3:F9:E2:9A:09:E1:41:A9:52 Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft Manifest number: 0395 Signing time: Thu 03 Apr 2025 00:47:54 +0000 Manifest this update: Thu 03 Apr 2025 00:47:54 +0000 Manifest next update: Thu 10 Apr 2025 00:47:54 +0000 Files and hashes: 1: svBcLOw1UNLTyetRODn0egAqhy4.crl (hash: 9S6S7/OnKvjHznVdYxhcdlevZ3aLJyGhmu51zvvWsq0=) 2: D118AD20820911EDAC2FD360C4F9AE02.roa (hash: ICtN0AhdlHgfYIx82KgCcqvbtFC2Nt85yrH3EgkUFWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88 Validity Not Before: Apr 3 00:47:54 2025 GMT Not After : Apr 10 00:47:54 2025 GMT Subject: CN=67eddaba-c1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:98:1d:74:79:ad:53:46:af:7f:16:d5:4a:3f: 33:e1:8d:e9:12:46:8d:fc:ba:7e:b6:f7:2f:39:e1: 66:36:26:b9:a7:e3:e9:1b:54:94:9d:6e:1a:7d:39: 84:f5:3b:37:f4:47:66:51:f8:e8:9f:1c:2f:87:82: 7a:04:a4:9e:8c:a3:50:e0:98:54:5d:56:21:67:1f: 32:3b:82:a1:fc:ca:b6:fd:3d:4c:64:b4:66:f9:e7: 88:c7:b7:cf:90:2d:ef:a3:6a:fc:09:af:88:64:f0: 6f:42:ae:bf:73:fe:a2:c8:4c:e5:b3:2e:e7:93:24: 8b:00:cb:c8:2f:f4:f5:67:b5:d1:74:a1:fd:a1:fb: ba:bd:df:9f:35:74:03:29:e2:13:44:83:20:28:52: b2:e7:8d:86:50:0c:08:a7:ce:27:b2:0a:af:c2:a5: 37:53:59:58:09:d8:8a:ed:3a:39:d0:74:9a:fb:0f: 97:be:53:e3:c2:cb:46:c9:68:cc:1f:73:51:65:06: 0d:4a:5a:42:de:64:42:6a:57:98:8c:b9:98:02:aa: 94:b1:ed:da:32:91:9c:92:0e:02:e0:27:b5:ea:f4: 74:5f:6c:61:6d:2c:86:8b:44:e6:8d:d3:ae:79:ce: 4d:38:09:3f:fe:f5:d2:9a:76:04:b1:a2:8c:d9:49: 87:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D9:EA:AD:0B:31:B7:D1:35:B5:D3:F3:F9:E2:9A:09:E1:41:A9:52 X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6a:e9:2c:d3:22:10:fa:85:be:8c:c3:53:b4:4e:a8:02:4b: 91:c4:64:55:a6:a0:5d:09:1e:d1:d7:c6:4a:e8:b3:5c:8b:2f: 3f:ec:e2:92:11:ab:44:3f:cb:25:d2:61:f5:98:33:4e:ca:a0: d9:6f:4a:b4:c5:47:36:a2:20:fd:26:25:9d:45:84:71:40:f5: 03:9b:7c:58:80:e3:fe:37:f7:2a:e6:8a:7b:5d:39:a3:89:3a: ef:98:31:42:f4:e2:10:cd:4a:db:dc:49:92:74:5a:9f:0e:e6: 3b:d0:83:10:cf:34:9f:e9:86:88:20:93:af:ec:6c:f1:9d:09: 31:ba:c2:4d:98:a4:bf:6c:15:e9:21:b3:4c:a0:7d:c6:70:c9: 3e:69:17:14:5e:b2:6c:77:cb:c1:86:68:85:b7:8a:58:b2:6d: 5c:0a:c8:cb:b9:b3:2e:47:5c:e6:85:83:d7:14:13:ce:2c:78: 63:c0:82:24:ee:30:90:ad:73:c2:7a:30:5f:c3:2f:9a:7e:a3: 35:eb:e3:47:c4:03:b2:44:10:66:50:a0:5c:96:f3:9d:16:61: ab:a0:e1:f9:50:eb:9a:ba:3f:43:c9:56:d5:34:5a:06:69:06: f1:67:3c:0c:4e:26:ab:e4:26:90:a6:b8:59:44:0d:68:97:0d: 8a:d0:bb:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjUwNDAzMDA0NzU0WhcNMjUwNDEwMDA0NzU0WjAYMRYwFAYD VQQDEw02N2VkZGFiYS1jMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85gddHmtU0avfxbVSj8z4Y3pEkaN/Lp+tvcvOeFmNia5p+PpG1SUnW4afTmE 9Ts39EdmUfjonxwvh4J6BKSejKNQ4JhUXVYhZx8yO4Kh/Mq2/T1MZLRm+eeIx7fP kC3vo2r8Ca+IZPBvQq6/c/6iyEzlsy7nkySLAMvIL/T1Z7XRdKH9ofu6vd+fNXQD KeITRIMgKFKy542GUAwIp84nsgqvwqU3U1lYCdiK7To50HSa+w+XvlPjwstGyWjM H3NRZQYNSlpC3mRCaleYjLmYAqqUse3aMpGckg4C4Ce16vR0X2xhbSyGi0TmjdOu ec5NOAk//vXSmnYEsaKM2UmHIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHZ6q0L MbfRNbXT8/nimgnhQalSMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ4OC9GMUI3RUFCQTkzQUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVO TFR5ZXRST0RuMGVnQXFoeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByauks0yIQ+oW+jMNTtE6oAkuRxGRVpqBdCR7R18ZK6LNciy8/7OKS EatEP8sl0mH1mDNOyqDZb0q0xUc2oiD9JiWdRYRxQPUDm3xYgOP+N/cq5op7XTmj iTrvmDFC9OIQzUrb3EmSdFqfDuY70IMQzzSf6YaIIJOv7GzxnQkxusJNmKS/bBXp IbNMoH3GcMk+aRcUXrJsd8vBhmiFt4pYsm1cCsjLubMuR1zmhYPXFBPOLHhjwIIk 7jCQrXPCejBfwy+afqM16+NHxAOyRBBmUKBclvOdFmGroOH5UOuauj9DyVbVNFoG aQbxZzwMTiar5CaQprhZRA1olw2K0Lsi -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:12 2025 by rpki-client