$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: GJFRaHniudjO7ThZ9etaC+WFbS4Iekwqim5jAWAgNSg= Subject key identifier: C2:9D:FB:33:7E:6E:F1:EB:A1:47:33:CE:8A:A5:84:13:45:7A:A4:78 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1005 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 0FF5 Signing time: Tue 08 Apr 2025 14:24:25 +0000 Manifest this update: Tue 08 Apr 2025 14:24:25 +0000 Manifest next update: Tue 15 Apr 2025 14:24:25 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: 8y5con1z9hJ3d94/V++a/toaqxyO+zUbXg/+1oChmGo=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 14:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4101 (0x1005) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3 Validity Not Before: Apr 8 14:24:25 2025 GMT Not After : Apr 15 14:24:25 2025 GMT Subject: CN=67f53199-da12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a9:c5:8a:40:e8:0a:c1:a2:f2:55:58:69:8f: 88:29:f8:11:5e:92:8f:86:43:8b:6a:45:da:17:83: 02:e9:5a:e3:6e:25:c9:ad:4d:10:94:79:7d:d5:d2: fe:c3:5e:c5:37:ae:2e:03:a8:65:25:6d:e9:72:0c: 6f:ce:7b:f3:cd:0c:79:b8:40:b6:b6:3f:91:31:40: 17:68:e5:18:fb:fc:23:87:69:40:41:25:b9:c2:d2: b9:2c:dd:09:41:cd:ee:81:62:54:95:bb:74:df:1c: 0d:44:0f:5a:96:9f:8e:2c:ff:e6:97:76:4d:9d:a6: a8:38:06:03:03:cf:d9:c8:cc:d1:21:be:fc:e4:ba: f2:30:3c:e9:5f:f2:0a:93:56:db:2a:cf:e5:cf:d7: d2:8d:dc:2c:aa:54:fc:a0:0e:ff:21:29:33:e2:9a: ca:2e:a9:bb:dd:bb:b3:c2:16:94:28:98:a2:b9:f2: 7a:0c:6d:76:d4:a9:1f:de:b5:ed:1d:43:0e:e6:2e: 72:64:ec:b0:cd:74:9f:03:4c:c7:4c:1c:06:0f:28: 9c:c3:6e:02:bb:d9:8d:b2:1e:ca:ea:26:b5:88:e5: c7:91:3f:1e:c7:7f:7d:37:da:71:12:8a:8c:1b:8d: db:f3:f7:f8:35:8b:75:2e:1e:40:f1:d1:63:36:40: 90:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:9D:FB:33:7E:6E:F1:EB:A1:47:33:CE:8A:A5:84:13:45:7A:A4:78 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:09:c9:25:11:8a:65:9b:8e:35:f1:e6:57:56:6c:11:97:20: d6:fc:a7:d3:d5:d3:a8:3b:d6:33:a6:82:b4:2f:4e:04:31:c2: db:c9:92:aa:c2:00:73:40:67:b6:72:46:8f:96:8c:7c:35:8c: fc:87:1a:9c:0b:d9:62:54:aa:e8:8c:63:a9:ff:20:95:31:e2: a4:b7:dc:b5:79:19:81:24:98:aa:da:d3:d0:bd:6e:7d:d0:7a: 68:5a:0b:56:61:f8:c8:c9:2e:c8:07:45:c4:5d:cd:a5:27:20: 1e:0e:82:0e:fa:f8:03:25:8b:b6:8c:28:25:0b:c1:84:61:7c: 05:30:32:f4:d3:44:40:64:e7:74:29:3f:85:31:8e:9d:a0:97: 88:d5:08:67:c9:60:b4:25:49:6d:61:66:0c:6c:64:74:1f:12: 75:14:81:7e:b7:f9:c9:f1:d9:ad:67:6c:39:44:87:08:db:d7: 7f:de:f4:9e:fa:a3:17:cb:38:49:94:02:e4:1d:6c:54:8e:67: cd:9b:71:d8:c4:81:6f:15:bf:ad:6f:cd:04:dd:c6:17:b5:d0: ec:c8:27:de:a0:0e:7c:62:3a:8e:83:30:fa:89:d7:88:c7:21: 56:a1:02:e6:54:cc:c4:14:ba:a5:aa:4b:79:f4:88:9e:00:ab: 9b:b7:96:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwNDA4MTQyNDI1WhcNMjUwNDE1MTQyNDI1WjAYMRYwFAYD VQQDEw02N2Y1MzE5OS1kYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KnFikDoCsGi8lVYaY+IKfgRXpKPhkOLakXaF4MC6VrjbiXJrU0QlHl91dL+ w17FN64uA6hlJW3pcgxvznvzzQx5uEC2tj+RMUAXaOUY+/wjh2lAQSW5wtK5LN0J Qc3ugWJUlbt03xwNRA9alp+OLP/ml3ZNnaaoOAYDA8/ZyMzRIb785LryMDzpX/IK k1bbKs/lz9fSjdwsqlT8oA7/ISkz4prKLqm73buzwhaUKJiiufJ6DG121Kkf3rXt HUMO5i5yZOywzXSfA0zHTBwGDyicw24Cu9mNsh7K6ia1iOXHkT8ex399N9pxEoqM G43b8/f4NYt1Lh5A8dFjNkCQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKd+zN+ bvHroUczzoqlhBNFeqR4MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOCcklEYplm4418eZXVmwRlyDW/KfT1dOoO9YzpoK0L04EMcLbyZKq wgBzQGe2ckaPlox8NYz8hxqcC9liVKrojGOp/yCVMeKkt9y1eRmBJJiq2tPQvW59 0HpoWgtWYfjIyS7IB0XEXc2lJyAeDoIO+vgDJYu2jCglC8GEYXwFMDL000RAZOd0 KT+FMY6doJeI1QhnyWC0JUltYWYMbGR0HxJ1FIF+t/nJ8dmtZ2w5RIcI29d/3vSe +qMXyzhJlALkHWxUjmfNm3HYxIFvFb+tb80E3cYXtdDsyCfeoA58YjqOgzD6ideI xyFWoQLmVMzEFLqlqkt59IieAKubt5Zn -----END CERTIFICATE-----Generated at Wed Apr 9 10:58:52 2025 by rpki-client