$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft File: aTtxpbXaYFTff5wNN5z1IMHI8pE.mft (raw, json) Hash identifier: qN9MhGBylQwiqPoXpAYF9d5otT+mz/qUoTkiHXSfBf0= Subject key identifier: 09:56:23:A5:8E:3D:8C:F2:9F:63:48:84:33:00:7F:B7:44:69:14:BD Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft Manifest number: 07C2 Signing time: Tue 22 Apr 2025 21:04:18 +0000 Manifest this update: Tue 22 Apr 2025 21:04:17 +0000 Manifest next update: Tue 29 Apr 2025 21:04:17 +0000 Files and hashes: 1: aTtxpbXaYFTff5wNN5z1IMHI8pE.crl (hash: sRlZZuuFd71AihW/P14J6x6PrPElgHug723fN+yZG2U=) 2: D7A207C2F33611EAA449F44CC4F9AE02.roa (hash: mHz2DdFQ0RZ5vfKso12AKZq1LAYQSiKV2aIOicI25cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 20:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52, serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Apr 22 21:04:17 2025 GMT Not After : Apr 29 21:04:17 2025 GMT Subject: CN=68080452-d2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d1:12:39:c0:86:b2:83:8e:40:30:b7:c3:64: 72:3b:9e:6d:f9:15:19:2a:bf:da:59:d7:43:f0:5c: 1c:77:25:7a:7d:16:c4:93:a4:3c:3c:d4:7b:04:e9: b8:98:4d:0c:9e:5c:3e:94:37:46:34:48:29:b4:b5: 6b:45:2e:5a:a5:e7:62:a1:1e:ac:61:fc:70:53:ca: e3:4b:91:bb:0b:2a:81:48:e1:37:ce:3f:50:68:66: 52:fa:8c:e1:ad:70:30:63:af:26:01:77:da:d3:fd: bf:10:5a:d4:f3:92:c9:25:cf:11:17:85:56:47:42: f1:a5:0e:da:df:96:68:fa:94:c2:a5:8a:d1:75:b6: a5:a9:ef:2a:0f:c0:7f:c6:e8:23:f2:08:8b:c7:78: 1f:77:70:7c:3d:94:ca:b7:44:68:5f:24:fc:62:53: 69:98:f8:7e:6b:66:a7:cc:a0:09:50:63:05:7e:69: f9:cd:ca:c2:b0:5d:30:23:b0:40:24:fa:b0:be:4b: 00:d9:bc:cf:46:d0:d5:4d:a9:96:d9:53:51:cf:c2: d0:18:8c:74:08:4e:57:4b:83:8a:2f:69:90:e3:43: ba:99:49:ec:24:54:53:ba:d3:5e:82:73:0b:52:b9: 06:29:ed:31:1a:58:b9:79:e3:19:c1:ed:8c:fd:dc: 0a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:56:23:A5:8E:3D:8C:F2:9F:63:48:84:33:00:7F:B7:44:69:14:BD X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:7b:ae:d5:24:03:3f:9d:99:c9:a5:07:f5:38:66:06:9b:ee: ba:73:6f:a1:a5:79:51:b4:1f:9e:37:c8:2c:07:9d:24:ff:ba: 94:bb:83:84:14:26:b9:46:d7:44:a1:e0:25:cd:6e:13:00:43: e6:50:61:3d:ba:f9:a3:0a:d6:8b:48:99:db:b4:b9:bf:9c:2f: 58:b8:78:20:6c:81:b0:bc:71:b2:3a:db:92:83:c4:7d:fc:1f: f7:9d:1f:fe:9a:e2:01:f3:98:ef:d3:a7:b3:94:d2:e9:2d:27: 15:6c:06:ed:d4:ab:87:70:26:d6:b4:33:58:41:8d:41:61:2d: 59:66:0c:b2:54:9b:8e:99:70:f2:5b:bd:8f:85:00:35:8a:c3: 9d:38:b2:12:18:c2:85:90:04:10:f3:b0:95:8b:9e:02:4e:a2: 08:16:f2:3f:4e:11:9c:19:d3:09:72:4b:c0:92:6e:39:b7:31: c4:8c:e3:b9:a7:f6:94:8b:55:9e:84:92:94:ab:8a:5a:d9:e1: 31:1e:86:85:57:0d:8a:75:bc:20:42:26:f3:a3:22:79:25:98: c5:1c:66:c1:d2:ed:f3:90:5a:99:51:c7:4c:45:b8:f1:6f:83: 50:1f:e5:e5:70:13:16:21:b2:66:c2:94:4d:0d:ce:07:e7:c0: 44:a9:6b:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjUwNDIyMjEwNDE3WhcNMjUwNDI5MjEwNDE3WjAYMRYwFAYD VQQDEw02ODA4MDQ1Mi1kMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tESOcCGsoOOQDC3w2RyO55t+RUZKr/aWddD8FwcdyV6fRbEk6Q8PNR7BOm4 mE0Mnlw+lDdGNEgptLVrRS5apedioR6sYfxwU8rjS5G7CyqBSOE3zj9QaGZS+ozh rXAwY68mAXfa0/2/EFrU85LJJc8RF4VWR0LxpQ7a35Zo+pTCpYrRdbalqe8qD8B/ xugj8giLx3gfd3B8PZTKt0RoXyT8YlNpmPh+a2anzKAJUGMFfmn5zcrCsF0wI7BA JPqwvksA2bzPRtDVTamW2VNRz8LQGIx0CE5XS4OKL2mQ40O6mUnsJFRTutNegnML UrkGKe0xGli5eeMZwe2M/dwKZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlWI6WO PYzyn2NIhDMAf7dEaRS9MB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REI1Mi80NUY1NTZCRUYyODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlG VGZmNXdOTjV6MUlNSEk4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2e67VJAM/nZnJpQf1OGYGm+66c2+hpXlRtB+eN8gsB50k/7qUu4OE FCa5RtdEoeAlzW4TAEPmUGE9uvmjCtaLSJnbtLm/nC9YuHggbIGwvHGyOtuSg8R9 /B/3nR/+muIB85jv06ezlNLpLScVbAbt1KuHcCbWtDNYQY1BYS1ZZgyyVJuOmXDy W72PhQA1isOdOLISGMKFkAQQ87CVi54CTqIIFvI/ThGcGdMJckvAkm45tzHEjOO5 p/aUi1WehJKUq4pa2eExHoaFVw2KdbwgQibzoyJ5JZjFHGbB0u3zkFqZUcdMRbjx b4NQH+XlcBMWIbJmwpRNDc4H58BEqWuL -----END CERTIFICATE-----Generated at Tue Apr 22 23:52:41 2025 by rpki-client