$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: 5bFv4BKmBUQc6F+whucbmiW2reqVjZwKZjvTc+S6Db0= Subject key identifier: 07:0E:96:AA:47:C1:FF:AD:77:78:7E:99:78:46:D1:BB:3B:6F:14:F5 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13A7 Signing time: Sun 20 Apr 2025 15:24:43 +0000 Manifest this update: Sun 20 Apr 2025 15:24:43 +0000 Manifest next update: Sun 27 Apr 2025 15:24:43 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: KYHMppiYxEC9KEbOI8yYxyFwCBpg4nABD0qQxjEqs/c=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 15:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5060 (0x13c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Apr 20 15:24:43 2025 GMT Not After : Apr 27 15:24:43 2025 GMT Subject: CN=680511bb-22ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f1:85:61:a3:95:83:1b:77:f0:ec:4d:c8:26: 19:71:57:79:cf:79:98:49:6e:b3:f7:63:c2:f5:87: c3:79:bb:6d:fd:f5:98:71:10:4f:e3:5d:18:2d:44: 35:73:e3:00:4d:5c:2c:1d:c6:83:79:80:bf:36:12: b1:ed:b2:8c:6d:23:80:cf:14:5a:8c:57:04:3a:9c: cd:0b:46:22:65:b2:e3:36:60:26:41:e0:86:89:22: af:c5:b3:82:83:66:c8:9f:ff:9e:4f:89:ef:d9:ea: e0:ad:f5:a0:13:b9:4a:ef:99:eb:24:f6:35:3f:85: 33:23:12:a1:91:b7:80:ad:a6:24:06:ff:fc:75:36: 3f:76:b6:f3:73:e1:5b:b9:1c:6d:35:01:98:30:6d: d5:40:6f:d7:49:b2:ea:6c:1b:8b:c2:4f:f4:f5:ba: 16:6b:d9:08:05:77:07:32:b8:f2:c6:64:e7:3a:09: b7:fd:69:02:c1:a3:6b:40:ac:14:df:a1:ae:17:f5: e3:b9:12:88:19:a8:da:a3:f0:d2:79:56:9c:94:5a: dc:b5:ce:2a:9a:a2:55:4a:f1:aa:3d:e8:6d:93:f1: e3:a4:28:28:8c:8d:43:08:5f:17:54:21:77:56:73: ed:7d:cb:73:13:cd:63:9b:16:55:4b:98:ba:69:f3: c8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0E:96:AA:47:C1:FF:AD:77:78:7E:99:78:46:D1:BB:3B:6F:14:F5 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8c:ca:0f:5f:2c:ee:ce:15:ec:f9:1d:1c:c5:57:50:1c:da: fd:0e:85:05:8a:55:61:cb:77:d0:a3:13:a4:9a:4a:d8:84:f7: 35:11:55:2b:df:cc:0c:4c:ad:7a:53:be:a2:f1:42:b2:cf:55: fc:54:b9:b3:13:dd:ed:ab:c2:9e:fa:39:ad:f0:56:92:ea:4c: 99:56:da:15:92:4f:f3:9a:a1:fa:1d:48:4a:0e:ec:68:72:b3: 83:64:85:d6:13:36:53:e9:08:5e:52:04:58:14:aa:cf:c2:2c: 1c:08:bc:26:06:53:0f:ff:4d:4a:1e:fb:aa:3f:53:01:be:9d: 3c:c8:8a:ca:aa:09:cf:6c:29:46:23:e3:14:35:31:a4:29:5d: 4e:12:56:ce:6c:2b:52:c6:44:24:8e:7e:39:9d:cc:72:3d:da: d9:9e:cb:9b:a8:0d:04:ff:2f:b3:47:f3:2b:78:97:c7:23:a1: be:a5:43:4a:82:db:94:90:2a:e4:64:a6:0e:af:53:b6:f2:9b: e8:27:16:02:5c:c2:bb:f4:df:50:74:5f:9c:ed:dd:03:7e:35: 42:97:e6:d3:36:b8:a2:c5:e5:bb:a4:ff:39:9e:3a:f4:69:03: d0:88:61:1b:12:3c:34:ad:08:69:20:ab:c5:ef:75:c1:32:93: d3:04:c1:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNDIwMTUyNDQzWhcNMjUwNDI3MTUyNDQzWjAYMRYwFAYD VQQDEw02ODA1MTFiYi0yMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPGFYaOVgxt38OxNyCYZcVd5z3mYSW6z92PC9YfDebtt/fWYcRBP410YLUQ1 c+MATVwsHcaDeYC/NhKx7bKMbSOAzxRajFcEOpzNC0YiZbLjNmAmQeCGiSKvxbOC g2bIn/+eT4nv2ergrfWgE7lK75nrJPY1P4UzIxKhkbeAraYkBv/8dTY/drbzc+Fb uRxtNQGYMG3VQG/XSbLqbBuLwk/09boWa9kIBXcHMrjyxmTnOgm3/WkCwaNrQKwU 36GuF/XjuRKIGajao/DSeVaclFrctc4qmqJVSvGqPehtk/HjpCgojI1DCF8XVCF3 VnPtfctzE81jmxZVS5i6afPIRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcOlqpH wf+td3h+mXhG0bs7bxT1MB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDjMoPXyzuzhXs+R0cxVdQHNr9DoUFilVhy3fQoxOkmkrYhPc1EVUr 38wMTK16U76i8UKyz1X8VLmzE93tq8Ke+jmt8FaS6kyZVtoVkk/zmqH6HUhKDuxo crODZIXWEzZT6QheUgRYFKrPwiwcCLwmBlMP/01KHvuqP1MBvp08yIrKqgnPbClG I+MUNTGkKV1OElbObCtSxkQkjn45ncxyPdrZnsubqA0E/y+zR/MreJfHI6G+pUNK gtuUkCrkZKYOr1O28pvoJxYCXMK79N9QdF+c7d0DfjVCl+bTNriixeW7pP85njr0 aQPQiGEbEjw0rQhpIKvF73XBMpPTBMGq -----END CERTIFICATE-----Generated at Tue Apr 22 04:30:34 2025 by rpki-client