$ rpki-client -vvf rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft File: iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft (raw, json) Hash identifier: y04naURVOlWk9Smc5Kvf3KlulIuZsrrKTcHp/FOYeYY= Subject key identifier: E4:FD:CD:87:63:37:EC:5E:02:42:DA:D3:1D:C0:A8:7D:EE:C7:E9:47 Authority key identifier: 88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 Certificate issuer: /CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft Manifest number: 0108 Signing time: Thu 17 Apr 2025 03:54:36 +0000 Manifest this update: Thu 17 Apr 2025 03:54:35 +0000 Manifest next update: Thu 24 Apr 2025 03:54:35 +0000 Files and hashes: 1: iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl (hash: ym0Ovg1EIgxU+OvE5e8ohFwhrZ5rvbFDYNXEnerFx3s=) 2: 51D4585A89B211EE9ADA615EC4F9AE02.roa (hash: 2pLBfFEzGVtLv2cMeVGOzUnHFe1Jg/DT2E9SEr2vDd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 03:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919821D, serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Validity Not Before: Apr 17 03:54:35 2025 GMT Not After : Apr 24 03:54:35 2025 GMT Subject: CN=68007b7b-52e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:95:cf:c9:71:e8:c2:4f:32:e8:fb:cb:f5: c3:23:ca:8f:55:38:55:cf:15:86:94:e3:28:ec:ce: 16:b0:6b:d7:f6:40:4d:26:42:86:c5:26:8c:92:75: 66:b2:c5:e0:f2:50:5a:69:33:18:cb:c6:f8:4c:9a: 22:2b:ff:b6:e0:e0:54:36:37:84:7b:0b:10:21:d6: 99:52:00:79:b2:f5:df:85:c8:e2:97:16:5b:14:0b: 6d:8e:1b:2b:47:9f:64:c1:2d:3b:32:27:0c:c9:d8: 00:24:d1:9e:68:99:47:9f:74:c8:13:85:80:ff:91: aa:74:75:fd:5e:0b:56:79:56:ef:23:af:4e:ca:c1: 1d:79:33:2b:81:55:4a:e2:ac:37:27:0b:29:9d:f2: 69:32:0d:af:a2:2b:83:6d:95:df:86:19:50:50:46: 61:4c:87:08:0d:98:a2:88:68:6b:08:de:a9:33:d7: 9f:73:65:78:33:cd:66:63:b9:60:93:ea:2d:d8:9e: 11:f6:ca:ad:33:25:8f:48:6e:5d:38:1b:03:e6:92: 5e:7f:07:96:86:b6:6f:d1:0d:7c:ae:61:6f:2b:68: f3:ad:a2:63:5c:ec:c7:8a:f0:88:5c:f3:7a:35:ce: 8b:3c:8a:63:54:86:c8:9b:db:70:1d:dc:e4:b7:5d: 36:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:FD:CD:87:63:37:EC:5E:02:42:DA:D3:1D:C0:A8:7D:EE:C7:E9:47 X509v3 Authority Key Identifier: keyid:88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:10:ab:d5:34:ea:cc:20:63:6b:88:97:63:9a:1c:ac:d7:e6: 3a:be:de:a3:ac:e9:e6:82:30:52:f8:02:f4:c5:3e:b3:f5:e3: 62:bf:d8:09:67:00:02:92:f0:65:45:82:b2:7e:60:59:90:1a: 4f:3a:ba:30:14:5f:14:e1:ae:92:28:71:d7:3f:87:c9:8e:45: f5:cd:d5:21:f3:9d:12:03:6b:c6:c5:d9:72:4e:85:39:25:98: f7:99:df:0e:42:0d:d1:da:cb:4d:92:60:a3:73:60:14:44:5d: ca:02:b7:72:5b:12:16:ec:36:ed:19:45:45:1d:41:60:3b:c4: 44:ca:ce:b9:53:e0:aa:b3:27:26:99:60:2c:ec:1a:ad:ea:dc: 5d:90:58:bd:df:64:62:e0:bc:7b:14:f6:9e:a6:59:46:33:ec: dd:2a:0e:29:0a:d8:62:b3:08:ce:a5:c3:e8:4c:31:15:19:4b: f2:71:8f:bd:75:5f:36:07:2d:93:c0:77:69:e0:02:f6:84:07: dc:66:9b:65:6f:4d:74:22:21:22:f7:b9:f7:b2:23:86:89:48: be:73:ba:ab:85:ee:4d:2a:e0:8d:56:8b:d9:c4:12:cc:91:08: 20:fe:50:cc:d8:33:41:d0:9b:77:52:a3:7e:1c:9f:6c:7a:e7: c6:9e:1b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyMUQxMTAvBgNVBAUTKDg4QzE1NDREN0U2N0JDRDkxRDQ4REY1RDExRkNEMTAy MUY4NTM5OTMwHhcNMjUwNDE3MDM1NDM1WhcNMjUwNDI0MDM1NDM1WjAYMRYwFAYD VQQDEw02ODAwN2I3Yi01MmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7uVz8lx6MJPMuj7y/XDI8qPVThVzxWGlOMo7M4WsGvX9kBNJkKGxSaMknVm ssXg8lBaaTMYy8b4TJoiK/+24OBUNjeEewsQIdaZUgB5svXfhcjilxZbFAttjhsr R59kwS07MicMydgAJNGeaJlHn3TIE4WA/5GqdHX9XgtWeVbvI69OysEdeTMrgVVK 4qw3JwspnfJpMg2voiuDbZXfhhlQUEZhTIcIDZiiiGhrCN6pM9efc2V4M81mY7lg k+ot2J4R9sqtMyWPSG5dOBsD5pJefweWhrZv0Q18rmFvK2jzraJjXOzHivCIXPN6 Nc6LPIpjVIbIm9twHdzkt102gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOT9zYdj N+xeAkLa0x3AqH3ux+lHMB8GA1UdIwQYMBaAFIjBVE1+Z7zZHUjfXRH80QIfhTmT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODIxRC9CMkEwNzRFRTg5 QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZOa2RTTjlkRWZ6UkFoLUZP Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lNRlVUWDVudk5rZFNOOWRFZnpSQWgtRk9aTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODIxRC9CMkEwNzRFRTg5QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZO a2RTTjlkRWZ6UkFoLUZPWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNEKvVNOrMIGNriJdjmhys1+Y6vt6jrOnmgjBS+AL0xT6z9eNiv9gJ ZwACkvBlRYKyfmBZkBpPOrowFF8U4a6SKHHXP4fJjkX1zdUh850SA2vGxdlyToU5 JZj3md8OQg3R2stNkmCjc2AURF3KArdyWxIW7DbtGUVFHUFgO8REys65U+Cqsycm mWAs7Bqt6txdkFi932Ri4Lx7FPaepllGM+zdKg4pCthiswjOpcPoTDEVGUvycY+9 dV82By2TwHdp4AL2hAfcZptlb010IiEi97n3siOGiUi+c7qrhe5NKuCNVovZxBLM kQgg/lDM2DNB0Jt3UqN+HJ9seufGnhvA -----END CERTIFICATE-----Generated at Fri Apr 18 20:35:33 2025 by rpki-client