$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: +1XbyIHpPGKVdiIk+Q5VPY/qPDKSQ1yAFZ0exlxagPg= Subject key identifier: 3F:52:CF:C7:C4:85:02:08:B3:17:2F:E1:7B:C7:77:7D:86:92:0C:D6 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0861 Signing time: Wed 12 Mar 2025 20:28:40 +0000 Manifest this update: Wed 12 Mar 2025 20:28:39 +0000 Manifest next update: Wed 19 Mar 2025 20:28:39 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: 6NNuRh9t/IangvaUoKrGzNqsW8J+6sdPuTBn+BllBMo=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B Validity Not Before: Mar 12 20:28:39 2025 GMT Not After : Mar 19 20:28:39 2025 GMT Subject: CN=67d1ee77-9b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:48:aa:5d:1b:f4:b6:28:f4:f4:b4:83:54:09: 43:1e:0c:63:da:81:f8:ac:ea:d0:34:40:29:46:86: 80:d9:19:b0:52:61:7e:b9:32:80:a8:e1:d8:39:91: b2:97:f8:ef:19:9b:e3:fa:63:83:3d:c8:ba:d6:72: 82:f2:35:e6:ce:f1:df:83:7c:aa:5e:8a:48:52:96: 0a:13:67:36:7f:4b:5d:49:c9:57:ea:a0:c8:80:53: a0:ad:e4:90:69:78:27:85:40:ec:a3:79:11:f1:43: 7b:12:e8:2f:91:b8:44:02:0f:7f:69:29:f9:a5:0b: ac:20:2c:a6:63:95:1b:7f:d0:b6:a6:60:e7:ae:1e: 31:fa:f5:55:ad:7d:6f:a7:8b:70:e0:29:76:23:15: 49:bb:70:eb:f3:1d:91:c8:a3:32:99:d6:36:7f:62: 81:d1:7c:04:32:ff:46:66:29:fa:0c:09:09:9c:52: a3:52:98:67:e0:11:9d:1e:d2:fb:62:f4:e7:ab:c3: fe:b3:de:ba:ca:81:40:c6:1b:24:19:3d:b3:b4:0d: 12:1a:48:01:eb:ff:d9:bc:43:93:a5:29:c8:31:ca: d7:d8:b1:29:d7:b5:e7:0f:6e:c1:11:31:54:95:a5: ec:7e:d7:54:70:f8:56:63:5a:2a:7d:e2:37:22:a1: 1e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:52:CF:C7:C4:85:02:08:B3:17:2F:E1:7B:C7:77:7D:86:92:0C:D6 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d0:f0:e3:fe:f1:39:6b:25:9c:de:26:36:04:40:ab:90:d1: c5:6d:10:5b:c5:0a:5c:68:c3:1c:bd:6d:00:d3:d5:2e:1d:b1: 20:f1:30:7c:cd:fb:b1:e4:22:c2:be:4a:de:1c:95:c1:83:b9: c9:0b:16:68:0a:63:ba:37:19:1c:56:4f:2d:7a:e5:e0:da:20: ff:97:62:24:6e:7f:64:d7:19:55:6a:0b:db:07:8e:48:1d:86: 80:f1:2e:3c:8c:cb:66:77:84:2e:ea:82:2c:49:f4:0c:8e:68: 9a:eb:34:9a:4d:8e:25:61:d4:2c:ca:58:39:5f:ea:81:de:05: 63:2b:14:6b:3c:94:ff:7e:e9:a5:9e:d6:64:d9:dd:9f:7b:17: 17:bf:de:54:a6:7d:7e:65:85:4e:60:dc:f0:88:73:28:1c:c7: c0:74:08:e9:8c:87:fa:69:89:a9:50:fc:e6:3e:7f:0f:81:81: c7:44:31:c2:4c:49:d5:14:cf:6d:6b:72:5d:94:e1:03:22:b4: e4:9b:aa:86:35:a8:29:dd:be:f3:bc:50:67:e0:44:64:2f:1c: df:fa:9a:25:f3:1f:34:03:22:bb:58:4a:9e:67:cf:6b:2d:1a: 2e:37:70:7a:86:a4:83:31:0f:b7:f9:88:e4:6c:f5:b7:4e:e4: 49:74:ea:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwMzEyMjAyODM5WhcNMjUwMzE5MjAyODM5WjAYMRYwFAYD VQQDEw02N2QxZWU3Ny05YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEiqXRv0tij09LSDVAlDHgxj2oH4rOrQNEApRoaA2RmwUmF+uTKAqOHYOZGy l/jvGZvj+mODPci61nKC8jXmzvHfg3yqXopIUpYKE2c2f0tdSclX6qDIgFOgreSQ aXgnhUDso3kR8UN7EugvkbhEAg9/aSn5pQusICymY5Ubf9C2pmDnrh4x+vVVrX1v p4tw4Cl2IxVJu3Dr8x2RyKMymdY2f2KB0XwEMv9GZin6DAkJnFKjUphn4BGdHtL7 YvTnq8P+s966yoFAxhskGT2ztA0SGkgB6//ZvEOTpSnIMcrX2LEp17XnD27BETFU laXsftdUcPhWY1oqfeI3IqEevQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9Sz8fE hQIIsxcv4XvHd32GkgzWMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG0PDj/vE5ayWc3iY2BECrkNHFbRBbxQpcaMMcvW0A09UuHbEg8TB8 zfux5CLCvkreHJXBg7nJCxZoCmO6NxkcVk8teuXg2iD/l2Ikbn9k1xlVagvbB45I HYaA8S48jMtmd4Qu6oIsSfQMjmia6zSaTY4lYdQsylg5X+qB3gVjKxRrPJT/fuml ntZk2d2fexcXv95Upn1+ZYVOYNzwiHMoHMfAdAjpjIf6aYmpUPzmPn8PgYHHRDHC TEnVFM9ta3JdlOEDIrTkm6qGNagp3b7zvFBn4ERkLxzf+pol8x80AyK7WEqeZ89r LRouN3B6hqSDMQ+3+YjkbPW3TuRJdOqA -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:04 2025 by rpki-client