$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: o7bh2YcU9uZfzuhGO4tpLZQZMjGCkXFuQnUPsmkgXic= Subject key identifier: 9F:31:13:4F:97:BB:71:AA:B4:1E:8D:43:B1:DB:9E:C0:B2:BE:20:EC Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 0772 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 076D Signing time: Fri 04 Apr 2025 21:37:12 +0000 Manifest this update: Fri 04 Apr 2025 21:37:10 +0000 Manifest next update: Fri 11 Apr 2025 21:37:10 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: ++jjou4VPiypBkkJQqlIWSQGTW3kwpBbYB1/gzhna5I=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 0rr8K1LQ/thtLtkFZc4kC3SiEr3iL8XaKJgB3Bca1+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A Validity Not Before: Apr 4 21:37:10 2025 GMT Not After : Apr 11 21:37:10 2025 GMT Subject: CN=67f05107-5193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b6:4a:de:2a:bf:c9:47:7d:5c:94:ad:9a:49: 2c:b8:d9:5d:35:6d:79:72:0c:cb:23:3b:dd:c0:e8: aa:cf:9b:25:3c:a5:85:0c:23:b4:10:48:02:7e:b3: 85:47:65:8b:b0:69:73:65:19:a5:36:50:0c:cb:dd: 83:da:0d:b8:aa:26:fe:d1:29:86:54:28:1e:79:d8: a4:d2:d6:c1:4b:ca:a0:73:db:b5:ff:57:a9:b4:9e: c2:6a:9b:01:59:94:68:b1:04:6c:93:62:69:81:86: 51:65:e4:e4:36:71:dd:5c:f5:2d:7d:e5:03:b6:16: 5e:7d:dc:c3:05:29:05:0a:d4:d7:0b:1c:ab:1e:25: cd:07:ad:98:79:9f:b9:0e:9a:20:4b:2e:fa:99:64: 58:cb:c5:fe:37:ae:4a:5b:6b:78:16:dd:ea:f0:6f: d4:c3:0f:15:d6:f2:73:c1:7a:96:11:b6:ab:67:b3: 97:b1:0a:23:a3:cf:e6:57:0b:8a:47:15:dc:59:80: 83:68:57:4c:2d:b1:49:27:72:2d:3d:62:b0:02:47: e8:90:65:9f:5b:b9:aa:34:d9:f0:db:8e:6d:40:23: 37:77:dd:0b:75:8d:81:99:ef:f9:9c:e8:ef:72:0c: 07:b9:08:94:8e:c7:ed:f2:97:10:48:9d:e4:27:b4: 05:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:31:13:4F:97:BB:71:AA:B4:1E:8D:43:B1:DB:9E:C0:B2:BE:20:EC X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:63:d3:cf:3c:1d:0f:47:57:cf:0c:22:fd:87:f2:16:a7:b5: ca:7f:48:6e:ca:b7:74:39:76:9b:37:a6:9e:1f:1e:0f:9a:d2: dd:2d:66:6b:d6:95:58:8f:05:a2:f4:bf:ce:4a:8c:90:ad:d5: 33:99:a6:f0:15:b5:c9:38:4e:6c:18:f7:57:c9:14:1e:53:a1: ad:f5:04:d5:00:1c:96:dc:ac:41:52:c6:dd:b8:23:fa:f1:c0: 19:11:6a:77:ad:a8:fd:8e:8d:84:36:ea:e4:7f:bf:ad:e2:7f: 8b:bb:da:53:08:e4:ce:ef:cf:66:e2:19:3a:6a:4d:49:34:e4: 9e:15:b3:87:62:58:2a:7f:76:86:18:6b:34:57:8a:59:b3:05: 6f:40:14:37:3e:a7:13:6c:22:41:d3:85:60:df:66:21:c0:e2: 11:09:86:f1:50:93:16:9a:61:26:d6:3e:54:71:44:85:fc:62: 99:66:af:6a:04:b1:58:7f:d9:aa:00:24:87:e5:f4:81:0d:d2: f6:21:70:fe:ac:2e:53:a3:ff:ae:e1:e1:2c:3b:42:00:38:d6: 0a:f9:8e:a7:ef:f0:60:4e:e5:a3:17:25:12:c3:1c:47:ff:50: 21:13:7c:f8:b6:b0:2d:9a:af:9c:ea:1a:03:a5:47:b8:51:ef: df:e3:3f:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjUwNDA0MjEzNzEwWhcNMjUwNDExMjEzNzEwWjAYMRYwFAYD VQQDEw02N2YwNTEwNy01MTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7ZK3iq/yUd9XJStmkksuNldNW15cgzLIzvdwOiqz5slPKWFDCO0EEgCfrOF R2WLsGlzZRmlNlAMy92D2g24qib+0SmGVCgeedik0tbBS8qgc9u1/1eptJ7CapsB WZRosQRsk2JpgYZRZeTkNnHdXPUtfeUDthZefdzDBSkFCtTXCxyrHiXNB62YeZ+5 DpogSy76mWRYy8X+N65KW2t4Ft3q8G/Uww8V1vJzwXqWEbarZ7OXsQojo8/mVwuK RxXcWYCDaFdMLbFJJ3ItPWKwAkfokGWfW7mqNNnw245tQCM3d90LdY2Bme/5nOjv cgwHuQiUjsft8pcQSJ3kJ7QF6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8xE0+X u3GqtB6NQ7HbnsCyviDsMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkY9PPPB0PR1fPDCL9h/IWp7XKf0huyrd0OXabN6aeHx4PmtLdLWZr 1pVYjwWi9L/OSoyQrdUzmabwFbXJOE5sGPdXyRQeU6Gt9QTVAByW3KxBUsbduCP6 8cAZEWp3raj9jo2ENurkf7+t4n+Lu9pTCOTO789m4hk6ak1JNOSeFbOHYlgqf3aG GGs0V4pZswVvQBQ3PqcTbCJB04Vg32YhwOIRCYbxUJMWmmEm1j5UcUSF/GKZZq9q BLFYf9mqACSH5fSBDdL2IXD+rC5To/+u4eEsO0IAONYK+Y6n7/BgTuWjFyUSwxxH /1AhE3z4trAtmq+c6hoDpUe4Ue/f4z+S -----END CERTIFICATE-----Generated at Sun Apr 6 00:03:03 2025 by rpki-client