$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: 6uE1XN45bcCUd+O0ZryUNfixPQ3mtV7cwBWDGT1ZYu0= Subject key identifier: CB:50:D9:21:5A:00:43:B8:A9:46:1B:C2:32:50:40:F0:09:EC:C8:23 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 018A Signing time: Tue 15 Apr 2025 02:36:25 +0000 Manifest this update: Tue 15 Apr 2025 02:36:25 +0000 Manifest next update: Tue 22 Apr 2025 02:36:25 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: wRc2oX03vbW9gF4hvoaKGOq9phE4/Lhu7awq4Q/jTTg=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: YSCK3SyvL0QhIHXS6YXGQBk1/DrCgOSt2WKrCd8HBC8=) 3: 4156CE4E8B8811EF99CAC23CC4F9AE02.roa (hash: aC5CXVsf3TUJUqObfYO8YqGBcyfi/oOuuM/n6aK5tiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 02:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Apr 15 02:36:25 2025 GMT Not After : Apr 22 02:36:25 2025 GMT Subject: CN=67fdc629-203c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:7f:27:da:7b:f2:94:55:4b:b6:57:1c:da: 0d:29:da:45:b7:0d:d6:fa:6d:62:86:49:a5:51:f7: fc:aa:09:1d:cb:63:c7:d3:d1:cb:ff:74:28:7a:d6: df:a5:61:51:0f:50:c9:3e:4f:21:89:57:4f:2d:46: 65:6f:8d:70:8f:3c:56:a5:e6:c1:5a:1d:a4:1f:c1: e6:8b:c5:1d:91:c5:b7:d9:23:d7:eb:03:52:4e:b4: aa:fd:29:c8:de:34:bb:f5:f4:2f:23:a5:bd:f9:23: 42:8e:d0:43:74:fc:2c:9b:ec:0d:c4:fe:cd:8c:3d: f4:bc:96:0a:46:34:5e:a1:34:04:35:80:30:4c:af: b1:fc:7c:f6:a7:69:9a:87:b7:0c:99:dc:86:51:87: 50:76:7f:01:fd:5c:d3:35:0d:b8:8b:4c:19:71:9f: e4:68:f9:e6:a5:c9:b8:6c:d5:e7:8d:08:99:a6:8d: d2:a7:e1:20:75:2d:0f:1d:6c:f5:35:d3:19:55:9f: 52:e2:01:a7:4b:44:51:b7:14:49:a7:7d:78:33:5e: 85:ef:55:6a:cf:7f:44:82:ee:12:f6:b7:b6:fb:cb: 6d:0a:c7:61:6f:8a:f2:fe:cd:54:e8:d3:a0:69:e2: cd:74:69:1b:1e:fb:27:86:ae:37:84:4c:fb:35:64: f0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:50:D9:21:5A:00:43:B8:A9:46:1B:C2:32:50:40:F0:09:EC:C8:23 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:50:c0:a3:86:5d:7d:9e:0d:45:1e:54:93:ad:c8:89:ee:31: 50:91:e5:50:14:67:65:22:72:ad:f7:c2:8a:2b:46:d3:81:18: 08:13:ca:75:87:c6:be:37:68:87:46:63:11:f9:96:8a:22:f8: 8c:07:0e:45:49:cb:60:2e:5f:b2:b6:44:35:c5:c7:98:5d:2b: 4b:91:43:49:5c:38:2f:83:58:f1:68:5c:72:78:e8:79:db:b0: 62:1b:10:f5:41:36:46:02:6f:99:8a:53:bc:18:ad:5b:3d:8b: 69:30:46:09:d4:c1:42:92:61:90:64:cd:ab:dd:11:ef:d2:d3: 3d:2e:6e:bd:c2:39:24:0e:1e:5c:3b:50:4e:42:fc:13:37:e5: bd:2b:0c:76:e0:fd:58:67:95:e1:ed:2c:36:95:f9:0c:54:28: 33:c0:e2:91:b8:15:3c:5e:15:66:e7:46:48:88:8c:75:46:f7: d8:7f:9c:d5:1a:d1:8c:47:f2:1c:c8:0c:44:39:e6:8e:3c:4b: 43:b6:a4:cb:0d:59:34:df:2d:89:51:d6:45:fb:db:b3:df:a8: 62:58:c8:6b:25:1f:bc:94:19:e8:e9:85:da:4e:87:bd:c9:ba: d1:cb:aa:5e:f5:fe:83:9b:aa:7b:2a:32:2c:48:2f:89:e7:2e: 25:a3:97:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwNDE1MDIzNjI1WhcNMjUwNDIyMDIzNjI1WjAYMRYwFAYD VQQDEw02N2ZkYzYyOS0yMDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdx/J9p78pRVS7ZXHNoNKdpFtw3W+m1ihkmlUff8qgkdy2PH09HL/3Qoetbf pWFRD1DJPk8hiVdPLUZlb41wjzxWpebBWh2kH8Hmi8UdkcW32SPX6wNSTrSq/SnI 3jS79fQvI6W9+SNCjtBDdPwsm+wNxP7NjD30vJYKRjReoTQENYAwTK+x/Hz2p2ma h7cMmdyGUYdQdn8B/VzTNQ24i0wZcZ/kaPnmpcm4bNXnjQiZpo3Sp+EgdS0PHWz1 NdMZVZ9S4gGnS0RRtxRJp314M16F71Vqz39Egu4S9re2+8ttCsdhb4ry/s1U6NOg aeLNdGkbHvsnhq43hEz7NWTwxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtQ2SFa AEO4qUYbwjJQQPAJ7MgjMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0UMCjhl19ng1FHlSTrciJ7jFQkeVQFGdlInKt98KKK0bTgRgIE8p1 h8a+N2iHRmMR+ZaKIviMBw5FSctgLl+ytkQ1xceYXStLkUNJXDgvg1jxaFxyeOh5 27BiGxD1QTZGAm+ZilO8GK1bPYtpMEYJ1MFCkmGQZM2r3RHv0tM9Lm69wjkkDh5c O1BOQvwTN+W9Kwx24P1YZ5Xh7Sw2lfkMVCgzwOKRuBU8XhVm50ZIiIx1RvfYf5zV GtGMR/IcyAxEOeaOPEtDtqTLDVk03y2JUdZF+9uz36hiWMhrJR+8lBno6YXaToe9 ybrRy6pe9f6Dm6p7KjIsSC+J5y4lo5dU -----END CERTIFICATE-----Generated at Thu Apr 17 02:14:06 2025 by rpki-client