$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft File: CptpgbEtWk0t827p0oCmWVwyUTY.mft (raw, json) Hash identifier: DkFu2GNTny/zJPFgM68VdpWu2cw5y+chRSLGVTUS5z8= Subject key identifier: 10:92:10:29:FB:30:0F:F4:BC:15:2A:CC:56:D1:DC:83:A3:A6:82:D9 Authority key identifier: 0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 Certificate issuer: /CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Certificate serial: 0AC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft Manifest number: 0AB5 Signing time: Fri 04 Apr 2025 19:38:25 +0000 Manifest this update: Fri 04 Apr 2025 19:38:25 +0000 Manifest next update: Fri 11 Apr 2025 19:38:25 +0000 Files and hashes: 1: CptpgbEtWk0t827p0oCmWVwyUTY.crl (hash: hjLDBtYmfL2Ys+CNJIvuzpY90iuzTUzdmNysv7i/Br0=) 2: 2FC13F564ED511EA945E3314C4F9AE02.roa (hash: TXPw1rBEL7FEvLcSdgq3HIrDA+j+HPbArLAJjSl35pE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC82 Validity Not Before: Apr 4 19:38:25 2025 GMT Not After : Apr 11 19:38:25 2025 GMT Subject: CN=67f03531-c44f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:97:0a:b6:9a:8a:df:74:64:23:72:8a:72:ed: 2b:b8:1a:c2:7c:ff:d1:e0:80:77:9e:ed:2e:bf:ac: d9:dd:25:2d:0f:d9:a7:a3:ef:a6:65:4c:9d:14:f4: 67:fa:13:45:55:9a:5b:49:d1:42:4f:2a:0e:f1:2b: 80:64:f0:5f:9b:aa:f2:ea:9b:c4:da:04:b6:72:4a: c4:00:7f:30:f6:3b:8b:bb:4f:d4:d0:83:0b:ab:8b: 67:48:45:3a:07:1d:2b:e4:17:4e:62:ce:32:c7:d7: ad:76:06:bf:90:84:cb:3d:7e:f6:b5:14:f0:87:61: f1:15:ee:ab:3c:06:31:41:c9:49:82:f2:67:73:4a: 92:7e:5c:76:ba:44:f0:59:9a:b9:8d:87:31:f3:c8: 43:11:98:2c:1e:17:61:dc:7b:54:cd:09:5e:99:22: de:9f:94:ee:f3:dd:21:bb:63:23:2d:27:cd:1e:ad: 67:43:7a:f5:fe:86:88:1d:00:22:35:16:aa:0d:d5: 8b:3a:36:f6:13:c8:13:b1:33:e8:04:b3:fa:53:d2: c8:26:fc:db:a7:6c:aa:ee:10:0d:70:a1:62:04:ff: ba:66:65:e0:eb:f5:c7:15:c6:af:8e:b3:9a:22:ff: ff:56:6d:27:bb:44:ac:ce:a0:0f:26:af:f1:0b:3d: ab:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:92:10:29:FB:30:0F:F4:BC:15:2A:CC:56:D1:DC:83:A3:A6:82:D9 X509v3 Authority Key Identifier: keyid:0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e6:a9:0c:32:63:03:bb:ed:55:ba:17:44:6c:c5:63:1e:5e: 38:8e:53:f1:99:88:92:1e:02:da:54:83:0f:a0:4b:0b:5d:57: 42:06:1a:c3:46:9e:eb:51:4d:c6:55:1b:ca:97:aa:87:96:d5: 54:ad:1c:b7:27:7c:a4:b3:65:65:7b:d8:f8:98:38:ee:18:77: 67:22:c7:24:f0:46:d3:11:2f:66:fd:47:ef:1e:14:a5:4a:35: b2:16:9f:79:22:fd:00:8e:53:a0:d1:e5:3b:ef:2d:08:d2:20: 2c:38:50:97:42:3d:a4:29:15:06:09:5a:c7:32:01:89:a6:8b: cb:ea:64:d3:a5:d9:b8:aa:d8:c0:d7:7d:c4:97:db:79:5b:5a: 8c:ce:7e:62:ad:5c:87:ed:29:c6:e6:ce:57:0a:2d:c2:74:b8: 91:b0:e3:82:69:9d:41:3e:83:87:dd:47:6c:ba:16:fb:a4:1c: ce:51:8c:e9:ad:06:64:a4:40:c9:3c:3b:85:1d:4c:38:e9:57: 72:70:d2:e4:35:fe:24:e2:c3:c5:20:db:eb:14:34:96:29:ad: 5e:a9:41:16:84:54:44:9c:08:a8:59:d3:88:c8:dd:53:40:e4: bb:3a:98:59:90:8b:b6:3d:b7:46:a1:fe:e0:77:56:86:55:4d: fd:6e:2d:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDODIxMTAvBgNVBAUTKDBBOUI2OTgxQjEyRDVBNEQyREYzNkVFOUQyODBBNjU5 NUMzMjUxMzYwHhcNMjUwNDA0MTkzODI1WhcNMjUwNDExMTkzODI1WjAYMRYwFAYD VQQDEw02N2YwMzUzMS1jNDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJcKtpqK33RkI3KKcu0ruBrCfP/R4IB3nu0uv6zZ3SUtD9mno++mZUydFPRn +hNFVZpbSdFCTyoO8SuAZPBfm6ry6pvE2gS2ckrEAH8w9juLu0/U0IMLq4tnSEU6 Bx0r5BdOYs4yx9etdga/kITLPX72tRTwh2HxFe6rPAYxQclJgvJnc0qSflx2ukTw WZq5jYcx88hDEZgsHhdh3HtUzQlemSLen5Tu890hu2MjLSfNHq1nQ3r1/oaIHQAi NRaqDdWLOjb2E8gTsTPoBLP6U9LIJvzbp2yq7hANcKFiBP+6ZmXg6/XHFcavjrOa Iv//Vm0nu0SszqAPJq/xCz2rEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCSECn7 MA/0vBUqzFbR3IOjpoLZMB8GA1UdIwQYMBaAFAqbaYGxLVpNLfNu6dKApllcMlE2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM4Mi9DQkQ4OTNBMDRF RDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdrMHQ4MjdwMG9DbVdWd3lV VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwdHBnYkV0V2swdDgyN3Awb0NtV1Z3eVVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUM4Mi9DQkQ4OTNBMDRFRDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdr MHQ4MjdwMG9DbVdWd3lVVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF5qkMMmMDu+1VuhdEbMVjHl44jlPxmYiSHgLaVIMPoEsLXVdCBhrD Rp7rUU3GVRvKl6qHltVUrRy3J3yks2Vle9j4mDjuGHdnIsck8EbTES9m/UfvHhSl SjWyFp95Iv0AjlOg0eU77y0I0iAsOFCXQj2kKRUGCVrHMgGJpovL6mTTpdm4qtjA 133El9t5W1qMzn5irVyH7SnG5s5XCi3CdLiRsOOCaZ1BPoOH3Udsuhb7pBzOUYzp rQZkpEDJPDuFHUw46VdycNLkNf4k4sPFINvrFDSWKa1eqUEWhFREnAioWdOIyN1T QOS7OphZkIu2PbdGof7gd1aGVU39bi12 -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:28 2025 by rpki-client