$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: 7RoKmHppv5bshnDqdLLGtgIAcU+jGzKBI2GLqsvW45I= Subject key identifier: 81:AD:20:B6:12:D2:E4:6A:6B:28:69:C3:50:3E:67:1F:50:DA:55:AE Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0B0F Signing time: Thu 10 Apr 2025 19:12:36 +0000 Manifest this update: Thu 10 Apr 2025 19:12:36 +0000 Manifest next update: Thu 17 Apr 2025 19:12:36 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: plpcKdYzGx/uJTL8ol7ADImvUakhviQYPtqhwAapF4g=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 19:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Apr 10 19:12:36 2025 GMT Not After : Apr 17 19:12:36 2025 GMT Subject: CN=67f81824-81c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3c:68:00:4e:1a:a2:4c:36:5a:93:ac:26:a5: 18:73:fe:e2:ab:ef:f7:b8:ed:15:6f:bf:62:71:ec: 0a:90:3e:4e:80:a8:4c:f6:9b:d9:e4:59:1a:3e:a9: ad:3c:a6:50:91:d5:84:9c:b4:8f:03:c8:1a:5e:fc: 37:78:37:ca:65:25:e2:e7:92:60:bf:0d:7f:60:9c: 8a:cb:c3:dd:9a:67:56:9c:86:67:b0:b0:59:fc:fc: 8b:e6:29:e3:42:50:26:58:20:85:7b:74:34:3d:5d: af:32:13:d7:53:01:35:bb:61:6c:aa:e0:31:82:04: 2a:25:b6:61:16:db:8e:6b:28:56:73:0b:c9:90:5a: 21:e4:68:84:e6:84:6e:d7:6b:92:e6:7f:17:34:51: 92:47:32:c5:da:1f:dd:b3:52:fb:89:43:29:d4:83: d3:2f:c9:6f:fc:7e:b8:e5:d7:24:5a:31:51:49:01: f1:90:a3:9b:d9:2c:c7:1d:c9:62:7f:46:b9:a9:e4: 5f:e5:1d:7f:c3:35:10:3c:fd:af:b2:e5:d2:05:fc: 28:fc:9b:1a:c1:1f:44:c9:8d:ff:8b:da:d8:75:53: 4c:16:cd:c7:51:23:3f:64:b6:4e:84:f4:80:d2:7a: 0f:0e:61:a2:ed:08:f7:42:92:47:71:2f:b0:38:0e: a0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AD:20:B6:12:D2:E4:6A:6B:28:69:C3:50:3E:67:1F:50:DA:55:AE X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c7:95:cf:47:41:f6:9b:12:d0:d9:d0:f8:81:44:fb:c3:1e: 55:06:1b:a7:17:f3:69:69:15:05:ee:be:3b:d2:e0:e1:7a:6d: 06:96:a7:de:70:44:40:37:99:07:4f:cd:0f:c5:12:3f:67:8e: 80:2d:dd:d3:39:39:05:1b:80:bb:ac:29:38:80:18:2c:11:50: e2:db:6e:ac:0a:92:d8:2f:be:06:82:a3:16:ee:f4:76:bd:49: ec:b0:69:c3:32:f0:cd:cf:f3:90:ef:44:62:ab:44:f1:b8:95: 67:38:3a:3a:a7:92:cc:c6:17:34:56:b9:c2:9c:a7:78:76:7d: ca:a0:a4:4f:0d:25:bc:ec:0e:00:e1:e0:6d:e1:bb:2b:6e:58: 22:67:c3:15:de:46:19:e2:98:c6:b3:bc:b5:e9:11:c3:88:a3: 4b:bb:66:9a:dd:18:1d:6b:06:e7:3b:b9:a5:26:00:85:a5:db: db:34:bc:75:2e:ac:98:58:d3:14:7b:24:6b:63:1a:2d:70:e8: 8e:33:25:56:d8:7e:43:50:f5:e5:00:7b:33:8f:17:83:68:c9: ff:7a:64:65:07:86:da:ab:b0:09:2c:18:2b:99:65:2e:ca:2c: a7:99:e4:9e:13:99:54:73:53:a9:6b:db:35:b6:7f:9e:14:2a: 79:21:6d:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUwNDEwMTkxMjM2WhcNMjUwNDE3MTkxMjM2WjAYMRYwFAYD VQQDEw02N2Y4MTgyNC04MWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzxoAE4aokw2WpOsJqUYc/7iq+/3uO0Vb79icewKkD5OgKhM9pvZ5FkaPqmt PKZQkdWEnLSPA8gaXvw3eDfKZSXi55Jgvw1/YJyKy8PdmmdWnIZnsLBZ/PyL5inj QlAmWCCFe3Q0PV2vMhPXUwE1u2FsquAxggQqJbZhFtuOayhWcwvJkFoh5GiE5oRu 12uS5n8XNFGSRzLF2h/ds1L7iUMp1IPTL8lv/H645dckWjFRSQHxkKOb2SzHHcli f0a5qeRf5R1/wzUQPP2vsuXSBfwo/JsawR9EyY3/i9rYdVNMFs3HUSM/ZLZOhPSA 0noPDmGi7Qj3QpJHcS+wOA6gpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGtILYS 0uRqayhpw1A+Zx9Q2lWuMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByx5XPR0H2mxLQ2dD4gUT7wx5VBhunF/NpaRUF7r470uDhem0Glqfe cERAN5kHT80PxRI/Z46ALd3TOTkFG4C7rCk4gBgsEVDi226sCpLYL74GgqMW7vR2 vUnssGnDMvDNz/OQ70Riq0TxuJVnODo6p5LMxhc0VrnCnKd4dn3KoKRPDSW87A4A 4eBt4bsrblgiZ8MV3kYZ4pjGs7y16RHDiKNLu2aa3RgdawbnO7mlJgCFpdvbNLx1 LqyYWNMUeyRrYxotcOiOMyVW2H5DUPXlAHszjxeDaMn/emRlB4baq7AJLBgrmWUu yiynmeSeE5lUc1Opa9s1tn+eFCp5IW1z -----END CERTIFICATE-----Generated at Sat Apr 12 16:31:40 2025 by rpki-client