$ rpki-client -vvf rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.mft File: mOVO1XJQxhJ0fjyiloU-r5GQWfU.mft (raw, json) Hash identifier: JRODXa2MDKHTbytOP1KjWXFY54M3yq9i3ldXEvwiH4g= Subject key identifier: 8A:A2:65:64:9B:ED:FA:36:CE:3F:2C:96:88:48:85:A0:08:23:13:2F Authority key identifier: 98:E5:4E:D5:72:50:C6:12:74:7E:3C:A2:96:85:3E:AF:91:90:59:F5 Certificate issuer: /CN=A9191989/serialNumber=98E54ED57250C612747E3CA296853EAF919059F5 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOVO1XJQxhJ0fjyiloU-r5GQWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.mft Manifest number: 01B7 Signing time: Sat 29 Mar 2025 02:49:25 +0000 Manifest this update: Sat 29 Mar 2025 02:49:25 +0000 Manifest next update: Sat 05 Apr 2025 02:49:25 +0000 Files and hashes: 1: mOVO1XJQxhJ0fjyiloU-r5GQWfU.crl (hash: q8ywMNrNhsyn0uTLw95V+tlGo8H/KdwJWZGXD4e+EE4=) 2: 40EF3C8690CE11ED98F4C344C4F9AE02.roa (hash: P9D/nziK9AMdOvj2LYszQtonPVIk8D2X2+l0ieGppXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.crl rsync://rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOVO1XJQxhJ0fjyiloU-r5GQWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191989 Validity Not Before: Mar 29 02:49:25 2025 GMT Not After : Apr 5 02:49:25 2025 GMT Subject: CN=67e75fb5-8e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:7d:6f:ee:28:b6:14:e7:55:02:f4:76:ed: 26:03:9f:d0:01:99:52:86:8f:15:f3:a7:8e:ed:4a: 93:77:ba:86:7e:36:82:ad:a5:cc:e3:58:8e:62:5b: 6f:28:0c:2b:87:06:64:8c:40:43:83:a8:18:5f:4c: 52:59:36:a0:5b:2e:f5:2a:fd:95:1f:2b:29:80:f3: cb:ce:d1:e0:d8:66:60:c5:af:38:fa:30:29:33:50: 43:55:89:c2:e7:57:bd:c4:76:e7:08:1c:6e:ae:55: d7:6c:3c:a6:18:07:cb:a1:d1:c4:4e:e2:1e:a5:72: 20:02:3f:8f:c6:77:4d:3c:42:a2:48:76:28:ad:3a: ae:c0:a7:1e:26:11:f5:dd:09:d1:67:f3:e9:05:5b: ff:3c:67:02:aa:a9:04:e5:f5:82:37:d8:68:6e:f3: 1b:ce:a2:62:b2:77:2c:eb:70:62:e0:bc:72:d6:3a: f4:52:80:e6:c3:3e:d0:0e:b5:f0:3a:0d:06:42:7a: 5e:fc:36:35:be:61:7c:8e:1a:d8:dd:a7:49:1e:4c: 88:c1:dc:4f:59:3f:ed:ec:98:52:7b:b4:98:8a:b0: 07:92:c5:fd:93:ed:13:3f:1a:6b:6d:89:14:69:73: 16:09:d2:96:1f:dd:aa:ef:34:bc:42:a1:3e:11:cd: d3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A2:65:64:9B:ED:FA:36:CE:3F:2C:96:88:48:85:A0:08:23:13:2F X509v3 Authority Key Identifier: keyid:98:E5:4E:D5:72:50:C6:12:74:7E:3C:A2:96:85:3E:AF:91:90:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOVO1XJQxhJ0fjyiloU-r5GQWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191989/587414D2863B11EDB57E7C35C4F9AE02/mOVO1XJQxhJ0fjyiloU-r5GQWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:db:27:66:3e:fa:07:bd:51:68:14:1a:e8:c2:4f:ed:c9:40: 95:c0:bc:df:6d:40:fb:50:14:d1:a2:3e:a4:27:14:cb:e7:68: 99:29:a6:fb:81:4d:59:2b:bb:4c:bf:d7:98:96:71:aa:fb:90: ad:cd:9b:50:8e:9a:fb:2c:76:09:7b:b4:88:6c:16:ca:3f:62: c6:13:f5:a6:74:9b:a7:7e:25:67:85:03:18:97:e7:e5:b9:7d: 77:e3:73:06:10:1c:af:c2:53:58:24:97:8f:12:5a:30:b5:4a: d9:43:48:b9:de:61:7e:ae:bc:21:81:c3:43:f3:f9:c0:1a:4f: 5f:b0:67:1d:87:8d:e5:4b:6f:c4:2d:7e:7a:94:fb:bc:0d:b8: ea:ab:af:50:65:ef:0f:5a:52:d2:19:3c:a5:e1:be:f3:ba:8e: 41:71:ad:fa:18:86:84:82:e2:5b:64:63:27:ce:cb:6f:bd:b4: c7:e3:83:32:57:ac:73:96:01:a2:22:42:30:9b:4f:24:b7:a9: 03:80:e7:00:4d:e6:6e:63:bb:27:92:ee:a9:f1:ad:23:6d:b6: 9b:9f:5b:84:be:70:01:c4:d0:54:af:0c:be:37:a8:3f:6a:24: ea:a5:6b:bf:ba:32:5d:1b:52:22:a0:a9:90:7b:21:11:f6:52: 5d:67:a3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5ODkxMTAvBgNVBAUTKDk4RTU0RUQ1NzI1MEM2MTI3NDdFM0NBMjk2ODUzRUFG OTE5MDU5RjUwHhcNMjUwMzI5MDI0OTI1WhcNMjUwNDA1MDI0OTI1WjAYMRYwFAYD VQQDEw02N2U3NWZiNS04ZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWJ9b+4othTnVQL0du0mA5/QAZlSho8V86eO7UqTd7qGfjaCraXM41iOYltv KAwrhwZkjEBDg6gYX0xSWTagWy71Kv2VHyspgPPLztHg2GZgxa84+jApM1BDVYnC 51e9xHbnCBxurlXXbDymGAfLodHETuIepXIgAj+PxndNPEKiSHYorTquwKceJhH1 3QnRZ/PpBVv/PGcCqqkE5fWCN9hobvMbzqJisncs63Bi4Lxy1jr0UoDmwz7QDrXw Og0GQnpe/DY1vmF8jhrY3adJHkyIwdxPWT/t7JhSe7SYirAHksX9k+0TPxprbYkU aXMWCdKWH92q7zS8QqE+Ec3TowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqiZWSb 7fo2zj8slohIhaAIIxMvMB8GA1UdIwQYMBaAFJjlTtVyUMYSdH48opaFPq+RkFn1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTk4OS81ODc0MTREMjg2 M0IxMUVEQjU3RTdDMzVDNEY5QUUwMi9tT1ZPMVhKUXhoSjBmanlpbG9VLXI1R1FX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21PVk8xWEpReGhKMGZqeWlsb1UtcjVHUVdmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTk4OS81ODc0MTREMjg2M0IxMUVEQjU3RTdDMzVDNEY5QUUwMi9tT1ZPMVhKUXho SjBmanlpbG9VLXI1R1FXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe2ydmPvoHvVFoFBrowk/tyUCVwLzfbUD7UBTRoj6kJxTL52iZKab7 gU1ZK7tMv9eYlnGq+5CtzZtQjpr7LHYJe7SIbBbKP2LGE/WmdJunfiVnhQMYl+fl uX1343MGEByvwlNYJJePElowtUrZQ0i53mF+rrwhgcND8/nAGk9fsGcdh43lS2/E LX56lPu8Dbjqq69QZe8PWlLSGTyl4b7zuo5Bca36GIaEguJbZGMnzstvvbTH44My V6xzlgGiIkIwm08kt6kDgOcATeZuY7snku6p8a0jbbabn1uEvnABxNBUrwy+N6g/ aiTqpWu/ujJdG1IioKmQeyER9lJdZ6P7 -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:28 2025 by rpki-client