$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: nRwORrXGxxWeZ/naFzv7fT4d7KZgOD+H87vQEBQ3408= Subject key identifier: 35:E5:7A:C2:1F:02:23:9B:9C:D5:5E:4F:F3:63:E9:41:00:A7:80:B3 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: 01A2 Signing time: Sat 05 Apr 2025 02:46:16 +0000 Manifest this update: Sat 05 Apr 2025 02:46:15 +0000 Manifest next update: Sat 12 Apr 2025 02:46:15 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: a7NMXdYyO+LniQxTS3nSgTjT78U9scus47EJlUeR90s=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: OVe6KSw+7kYYiHPF4YI7Y6sSZ8QGj8mE1P0YOqWt/tI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4 Validity Not Before: Apr 5 02:46:15 2025 GMT Not After : Apr 12 02:46:15 2025 GMT Subject: CN=67f09977-c41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f4:81:6e:27:1b:d9:9a:3e:ce:8e:9f:93:6f: 24:fa:5f:6d:71:96:22:1b:d5:b8:b7:eb:7c:ef:86: f6:21:cb:81:5a:af:5c:cc:fa:26:f1:aa:89:bf:01: 09:5a:0f:9e:b7:67:1f:95:5d:e1:ed:61:99:87:aa: 89:9f:88:2d:0f:6c:1c:98:25:c8:dc:03:55:d0:f9: 58:f8:0a:04:db:7c:51:b1:f1:57:da:c9:2a:e6:bd: 07:42:22:5f:52:5b:54:97:04:07:ea:30:29:f8:2d: ae:e7:af:91:bf:87:6b:65:31:c6:58:b2:e0:c7:81: 83:85:1d:25:f9:d6:40:18:03:6f:b9:58:0c:9c:43: f3:e0:d8:b4:12:ad:50:f8:d6:0c:47:11:0b:66:34: bf:ea:bb:81:e4:e8:e8:6a:eb:f4:b5:37:14:3e:c7: d7:d6:10:1e:76:24:2e:87:7b:77:4f:91:57:c8:52: 6b:c4:cd:3e:ce:21:2d:a5:05:ff:73:4c:40:9b:66: 01:c9:e3:d2:20:88:3b:7f:b2:29:dd:c6:79:c9:e2: 64:63:24:64:bb:bc:90:4f:2b:c9:f7:0e:59:ee:0e: 9f:96:13:5d:03:a0:33:14:fd:2b:65:2b:c4:40:74: a1:f6:4f:00:fa:03:d6:9b:b5:b5:19:a8:73:8e:96: ed:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E5:7A:C2:1F:02:23:9B:9C:D5:5E:4F:F3:63:E9:41:00:A7:80:B3 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5e:5d:55:8f:3f:ad:7f:b4:a7:9c:66:27:a7:57:6e:2f:89: 6c:52:a3:35:ce:6a:0e:3c:d9:8f:21:e2:aa:c6:35:f6:ab:c8: cd:1a:5d:b9:41:03:9b:71:8f:e7:96:3a:79:bf:13:73:6a:18: f5:fb:4e:8b:9e:f1:ef:c1:ae:2f:27:9c:42:b4:d7:f5:51:2a: 8b:c7:e4:b2:b6:53:50:39:6a:f7:83:6d:f1:e4:db:99:2f:80: d3:c0:07:46:fe:0d:d5:9d:19:60:1a:3b:ab:63:48:6e:75:3b: 05:9d:08:78:f9:cb:c6:7a:41:2a:64:16:0d:c2:89:08:0a:46: f8:44:e5:5e:8c:af:2a:2e:45:b2:6d:4d:ad:ca:a5:06:4e:e6: a2:cb:e2:09:71:9f:ea:1a:ad:87:86:a5:da:71:70:e4:b0:98: f2:88:e1:75:10:35:b7:4a:8c:c6:36:6b:ee:ba:d8:ce:d8:ad: 6b:42:7c:d8:b8:e5:45:7c:35:25:8e:82:72:24:31:b6:8a:48: 88:59:23:03:5c:96:02:2c:08:f2:b4:b5:9a:7b:43:aa:cc:bd: 43:97:44:fa:af:d3:24:f2:ff:c6:01:21:95:9d:d4:ad:d0:38: dd:ce:e7:a7:e2:6b:8d:9a:05:13:2e:da:0c:16:f6:67:bc:43: b8:63:f9:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjUwNDA1MDI0NjE1WhcNMjUwNDEyMDI0NjE1WjAYMRYwFAYD VQQDEw02N2YwOTk3Ny1jNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fSBbicb2Zo+zo6fk28k+l9tcZYiG9W4t+t874b2IcuBWq9czPom8aqJvwEJ Wg+et2cflV3h7WGZh6qJn4gtD2wcmCXI3ANV0PlY+AoE23xRsfFX2skq5r0HQiJf UltUlwQH6jAp+C2u56+Rv4drZTHGWLLgx4GDhR0l+dZAGANvuVgMnEPz4Ni0Eq1Q +NYMRxELZjS/6ruB5Ojoauv0tTcUPsfX1hAediQuh3t3T5FXyFJrxM0+ziEtpQX/ c0xAm2YByePSIIg7f7Ip3cZ5yeJkYyRku7yQTyvJ9w5Z7g6flhNdA6AzFP0rZSvE QHSh9k8A+gPWm7W1GahzjpbtuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXlesIf AiObnNVeT/Nj6UEAp4CzMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxXl1Vjz+tf7SnnGYnp1duL4lsUqM1zmoOPNmPIeKqxjX2q8jNGl25 QQObcY/nljp5vxNzahj1+06LnvHvwa4vJ5xCtNf1USqLx+SytlNQOWr3g23x5NuZ L4DTwAdG/g3VnRlgGjurY0hudTsFnQh4+cvGekEqZBYNwokICkb4ROVejK8qLkWy bU2tyqUGTuaiy+IJcZ/qGq2HhqXacXDksJjyiOF1EDW3SozGNmvuutjO2K1rQnzY uOVFfDUljoJyJDG2ikiIWSMDXJYCLAjytLWae0OqzL1Dl0T6r9Mk8v/GASGVndSt 0Djdzuen4muNmgUTLtoMFvZnvEO4Y/ka -----END CERTIFICATE-----Generated at Sat Apr 5 16:56:08 2025 by rpki-client