$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft File: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft (raw, json) Hash identifier: Wt6WliOJo2R3XDuFphokXB9N71BFvkYEyeYKu6F7tIE= Subject key identifier: D3:20:27:09:AA:4B:74:C9:7D:BC:E8:C3:D7:69:B6:56:06:AD:5E:7C Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft Manifest number: 061A Signing time: Fri 04 Apr 2025 22:53:24 +0000 Manifest this update: Fri 04 Apr 2025 22:53:23 +0000 Manifest next update: Fri 11 Apr 2025 22:53:23 +0000 Files and hashes: 1: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl (hash: nwgqaYYur1qcnlvygmMvCAJ9u5N76LsIJs+9lvneUWU=) 2: D78A16ECCAC311EC910B8C20C4F9AE02.roa (hash: oJo0EldVtMJvTJnA4FpJe7JGIUD/xhTk+VY6Q3vUpoY=) 3: D6692528CAC311EC910B8C20C4F9AE02.roa (hash: ZgaT6NUPSJGrS2FDGhXNf1URQXdcMTQg5TCptCSVeas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897 Validity Not Before: Apr 4 22:53:23 2025 GMT Not After : Apr 11 22:53:23 2025 GMT Subject: CN=67f062e4-9ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a6:14:0b:61:ac:dd:04:5c:d3:cd:f3:1f:ba: 2b:a5:bf:35:6d:b9:d6:d7:78:ed:0b:d5:e3:b3:d2: 37:7d:ae:db:d5:22:6d:1a:e4:9a:51:01:4a:dc:4e: ea:86:1f:2c:11:17:29:8e:4c:21:80:3c:9b:24:3c: 20:2f:9d:bd:d4:f7:4d:de:e2:9c:68:ab:e7:cc:34: 60:5b:8e:75:1e:c5:0f:c6:4f:dc:5b:e4:37:27:c2: 80:f5:88:86:93:2e:06:c3:da:ad:f9:88:f2:b4:40: 1a:0c:10:fd:69:6a:4a:e6:3a:57:00:83:a9:2b:93: 2c:e8:3d:e3:74:c3:81:d7:7a:87:81:04:61:e7:78: 2b:f6:85:25:5a:54:6a:a8:72:ca:4f:b7:4a:06:5d: 0b:fe:95:b3:c6:c0:16:32:38:54:7a:d8:f9:5c:c2: a0:8b:66:b8:b8:e0:42:26:02:c8:4d:3c:3a:c5:fa: fa:cd:67:86:03:09:a9:69:b3:46:ab:ef:f8:d3:12: 59:f9:51:ff:df:35:5d:12:ae:9a:23:d6:04:3f:96: b4:07:ff:88:99:8e:3e:55:6e:ef:78:6c:a3:a6:f3: 96:78:2b:7e:47:ed:c7:99:93:5a:a7:98:a7:e1:f5: 50:e6:e4:13:94:06:8d:28:81:bb:6e:1a:36:cf:72: 40:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:20:27:09:AA:4B:74:C9:7D:BC:E8:C3:D7:69:B6:56:06:AD:5E:7C X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:26:32:cb:13:f0:5c:fe:8d:b4:b0:85:04:10:43:3f:80:a3: 71:b9:c7:fe:00:f4:b0:3e:3f:b1:ca:f8:8f:85:5b:b4:e9:12: 96:10:ea:e9:59:87:7f:59:2d:88:32:23:1b:d7:45:8d:c3:5c: 0a:59:93:0c:9e:a4:46:1e:69:4b:5f:84:e6:8c:bb:1b:ba:ba: 5a:ae:7b:02:f1:2b:b6:df:fe:90:de:58:f6:03:a9:0f:aa:36: 2a:49:f6:f6:ef:88:53:88:15:ec:26:81:0f:c8:3d:0d:54:2e: fa:64:05:b7:8f:6e:c1:4c:7c:0e:bb:29:dc:74:f2:aa:09:9e: 68:ba:f0:77:5b:fa:2c:a6:6d:48:46:dd:1b:a1:fe:18:8a:0a: b1:0b:8a:d9:94:e7:2b:58:4f:c1:ef:93:91:79:25:05:ec:ca: ce:0f:bb:e8:6c:28:8f:41:5d:88:7a:50:2e:e5:6a:ba:81:cd: ae:ca:2e:56:7e:21:e5:9c:95:43:b0:a1:7d:b5:1e:f9:4d:53: fb:fc:e5:5c:4a:1c:9a:82:15:c0:f8:f2:1e:4d:9d:97:bd:c5: 21:15:ed:cc:5a:98:fa:9f:17:a5:09:87:e8:e3:17:a4:78:b3: 98:d0:a7:f1:8e:4c:2d:e5:81:58:07:37:4c:77:4f:9c:70:3c: 63:e1:96:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjUwNDA0MjI1MzIzWhcNMjUwNDExMjI1MzIzWjAYMRYwFAYD VQQDEw02N2YwNjJlNC05ZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqYUC2Gs3QRc083zH7orpb81bbnW13jtC9Xjs9I3fa7b1SJtGuSaUQFK3E7q hh8sERcpjkwhgDybJDwgL5291PdN3uKcaKvnzDRgW451HsUPxk/cW+Q3J8KA9YiG ky4Gw9qt+YjytEAaDBD9aWpK5jpXAIOpK5Ms6D3jdMOB13qHgQRh53gr9oUlWlRq qHLKT7dKBl0L/pWzxsAWMjhUetj5XMKgi2a4uOBCJgLITTw6xfr6zWeGAwmpabNG q+/40xJZ+VH/3zVdEq6aI9YEP5a0B/+ImY4+VW7veGyjpvOWeCt+R+3HmZNap5in 4fVQ5uQTlAaNKIG7bho2z3JA8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMgJwmq S3TJfbzow9dptlYGrV58MB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTg5Ny9FMUQxMTc3MDk1QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4 VHhTUzBHTGJEWkdVNmZVSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxJjLLE/Bc/o20sIUEEEM/gKNxucf+APSwPj+xyviPhVu06RKWEOrp WYd/WS2IMiMb10WNw1wKWZMMnqRGHmlLX4TmjLsburparnsC8Su23/6Q3lj2A6kP qjYqSfb274hTiBXsJoEPyD0NVC76ZAW3j27BTHwOuyncdPKqCZ5ouvB3W/ospm1I Rt0bof4YigqxC4rZlOcrWE/B75OReSUF7MrOD7vobCiPQV2IelAu5Wq6gc2uyi5W fiHlnJVDsKF9tR75TVP7/OVcShyaghXA+PIeTZ2XvcUhFe3MWpj6nxelCYfo4xek eLOY0Kfxjkwt5YFYBzdMd0+ccDxj4ZaS -----END CERTIFICATE-----Generated at Sun Apr 6 02:57:52 2025 by rpki-client