$ rpki-client -vvf rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.mft File: rN673IrqemETaTGDOGOx454Bfic.mft (raw, json) Hash identifier: M6bOtR+8g2v/2nZ0dGLHDUR0KY2lwWVuuKh2iuH8h1A= Subject key identifier: 13:6A:5C:31:61:CA:54:8E:5C:8B:22:0D:A0:23:9E:1D:70:EF:82:F1 Authority key identifier: AC:DE:BB:DC:8A:EA:7A:61:13:69:31:83:38:63:B1:E3:9E:01:7E:27 Certificate issuer: /CN=A911FD55/serialNumber=ACDEBBDC8AEA7A61136931833863B1E39E017E27 Certificate serial: 0B09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.mft Manifest number: 0AFC Signing time: Sat 31 May 2025 19:26:23 +0000 Manifest this update: Sat 31 May 2025 19:26:22 +0000 Manifest next update: Sat 07 Jun 2025 19:26:22 +0000 Files and hashes: 1: rN673IrqemETaTGDOGOx454Bfic.crl (hash: T0pIWwCgkOaufPcAC0L1S4+yU3wd+NzWgxba0Hwqzms=) 2: C8A09F34F11C11EA83A6D247C4F9AE02.roa (hash: zKy/yyxo1KuNb1lr1bEjLMk/9ZIle0kY/A3BTe9o8dE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.crl rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FD55, serialNumber=ACDEBBDC8AEA7A61136931833863B1E39E017E27 Validity Not Before: May 31 19:26:22 2025 GMT Not After : Jun 7 19:26:22 2025 GMT Subject: CN=683b57df-4b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bc:53:f6:e6:4f:e3:ca:d2:b8:0c:d4:b0:74: b5:74:f7:88:64:c2:20:2b:25:65:57:bc:d8:29:0c: e8:1d:25:4f:71:a2:a7:d5:f3:32:9c:c7:64:0d:6b: d4:bb:54:6c:b8:db:38:4a:4d:81:3b:18:df:f9:87: b7:d0:d7:80:7d:b2:8b:35:93:5a:f9:d2:87:68:78: a3:f3:e2:c3:84:2e:19:0c:4c:1f:73:6d:f3:3b:9c: 1f:20:90:39:b6:c1:37:0c:f9:d5:93:c2:c4:ad:cc: 46:32:c3:7b:1a:41:5e:b9:d8:e6:fc:aa:69:93:ba: 3c:07:4d:35:be:46:58:40:99:b8:a4:c5:51:d3:b0: 71:a5:39:bc:06:e4:03:29:ae:3b:95:53:35:a5:63: 4e:f1:53:ca:83:c0:7b:e8:11:a9:e4:6a:60:ee:fb: d5:c2:b6:2b:de:46:82:14:32:c6:1b:23:bc:f4:59: db:5b:a6:a9:fe:33:f5:4b:4b:e0:51:33:b3:4f:3b: 28:16:b0:e7:bf:fd:dd:2c:b5:3b:b5:0e:ba:0a:aa: 81:37:44:22:95:c1:05:f4:58:04:53:3a:ae:32:56: 2d:a7:7f:e6:70:e9:d0:f1:35:72:9d:cf:02:1a:ea: 85:8a:5b:19:5a:ea:35:3f:5a:bc:d6:aa:17:a4:cd: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6A:5C:31:61:CA:54:8E:5C:8B:22:0D:A0:23:9E:1D:70:EF:82:F1 X509v3 Authority Key Identifier: keyid:AC:DE:BB:DC:8A:EA:7A:61:13:69:31:83:38:63:B1:E3:9E:01:7E:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rN673IrqemETaTGDOGOx454Bfic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FD55/E78FD2AA473211EA810B5042C4F9AE02/rN673IrqemETaTGDOGOx454Bfic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:08:e9:59:c8:80:92:17:2b:23:7e:2a:07:a0:c1:a1:d5:e5: 75:92:6d:4c:4c:70:52:ac:1b:00:2c:8c:01:04:64:7c:b9:72: 41:2c:da:dc:1d:f3:ed:bd:ac:e7:59:5e:58:15:d3:c6:89:b5: ae:ba:63:74:78:7e:0c:b8:01:3b:a2:3e:c6:bd:1e:5a:0b:7f: 49:67:87:a0:d8:1c:e7:d1:67:68:f1:fc:b8:43:c4:53:6e:9b: c0:ef:b7:1d:da:db:e9:06:91:79:29:de:1e:d5:a6:74:1b:0c: be:1d:a3:87:66:e3:92:a1:d8:1f:ca:3c:93:6d:dd:04:71:b9: a2:42:2d:bc:e3:45:80:44:3a:02:6b:5e:e5:bb:7e:00:cc:5f: 75:fd:2f:33:43:26:f2:99:93:d7:96:b9:22:19:47:e4:52:2f: 71:e5:f1:48:6e:5b:43:82:1b:d7:95:68:70:36:ae:b8:21:75: ea:d7:0e:e0:9e:2d:31:6e:26:ca:f8:b0:fa:96:0c:e7:60:2c: af:9b:0c:5b:35:ba:cc:f4:e7:a6:a4:9b:30:64:62:da:f3:77: f4:00:d7:b0:8f:0a:3c:55:55:88:41:d3:ac:05:dc:a4:8e:64: 01:8a:e4:f9:af:69:32:a5:72:7e:77:6a:20:c8:49:36:26:d2: ef:0e:79:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZENTUxMTAvBgNVBAUTKEFDREVCQkRDOEFFQTdBNjExMzY5MzE4MzM4NjNCMUUz OUUwMTdFMjcwHhcNMjUwNTMxMTkyNjIyWhcNMjUwNjA3MTkyNjIyWjAYMRYwFAYD VQQDEw02ODNiNTdkZi00YjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLxT9uZP48rSuAzUsHS1dPeIZMIgKyVlV7zYKQzoHSVPcaKn1fMynMdkDWvU u1RsuNs4Sk2BOxjf+Ye30NeAfbKLNZNa+dKHaHij8+LDhC4ZDEwfc23zO5wfIJA5 tsE3DPnVk8LErcxGMsN7GkFeudjm/Kppk7o8B001vkZYQJm4pMVR07BxpTm8BuQD Ka47lVM1pWNO8VPKg8B76BGp5Gpg7vvVwrYr3kaCFDLGGyO89FnbW6ap/jP1S0vg UTOzTzsoFrDnv/3dLLU7tQ66CqqBN0QilcEF9FgEUzquMlYtp3/mcOnQ8TVync8C GuqFilsZWuo1P1q81qoXpM0JQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNqXDFh ylSOXIsiDaAjnh1w74LxMB8GA1UdIwQYMBaAFKzeu9yK6nphE2kxgzhjseOeAX4n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkQ1NS9FNzhGRDJBQTQ3 MzIxMUVBODEwQjUwNDJDNEY5QUUwMi9yTjY3M0lycWVtRVRhVEdET0dPeDQ1NEJm aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JONjczSXJxZW1FVGFUR0RPR094NDU0QmZpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkQ1NS9FNzhGRDJBQTQ3MzIxMUVBODEwQjUwNDJDNEY5QUUwMi9yTjY3M0lycWVt RVRhVEdET0dPeDQ1NEJmaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5COlZyICSFysjfioHoMGh1eV1km1MTHBSrBsALIwBBGR8uXJBLNrc HfPtvaznWV5YFdPGibWuumN0eH4MuAE7oj7GvR5aC39JZ4eg2Bzn0Wdo8fy4Q8RT bpvA77cd2tvpBpF5Kd4e1aZ0Gwy+HaOHZuOSodgfyjyTbd0EcbmiQi2840WARDoC a17lu34AzF91/S8zQybymZPXlrkiGUfkUi9x5fFIbltDghvXlWhwNq64IXXq1w7g ni0xbibK+LD6lgznYCyvmwxbNbrM9OempJswZGLa83f0ANewjwo8VVWIQdOsBdyk jmQBiuT5r2kypXJ+d2ogyEk2JtLvDnkh -----END CERTIFICATE-----Generated at Mon Jun 2 06:32:09 2025 by rpki-client