$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: vWAUMTW5O7aD/BwdvMXW1VVq/5Xyq0cb4I4yeOWEapQ= Subject key identifier: 6D:73:45:49:5A:13:86:AE:66:76:7C:12:7D:39:4B:BD:57:43:8B:C5 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 13F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 13E0 Signing time: Wed 12 Mar 2025 16:54:30 +0000 Manifest this update: Wed 12 Mar 2025 16:54:30 +0000 Manifest next update: Wed 19 Mar 2025 16:54:30 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: 2seiK9ch1Hh/siGO8DnOvsrTIxfVWcMStjCaEIWq1yQ=) 2: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: 3UDqux2pyFF/Bk7qZfNBKUplKVtNPBgZPpnXk8snk4g=) 3: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: OwQjzjq4z1p3OKHRKYKyS/M55XVWZ+v6tClUy+yiWnc=) 4: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: PdnkTM08eG2sjPAy8+yW/MtnozIOdAkbD6OPtta7i0w=) 5: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: TNsMJFZbcdKegim5sz+iSFbDGvmlLTbjneRhrtC2NlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5107 (0x13f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A Validity Not Before: Mar 12 16:54:30 2025 GMT Not After : Mar 19 16:54:30 2025 GMT Subject: CN=67d1bc46-954a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ae:e3:d2:b6:36:88:1b:97:e7:9d:ef:cb:33: 37:3f:26:f8:bc:38:b4:ef:9e:6e:cd:8f:ef:03:ee: c4:e9:2a:95:09:1a:8c:0a:7a:55:3d:5e:46:a0:83: 0e:07:78:50:5d:30:9c:63:42:c6:95:15:d5:6a:ab: 88:cf:a6:1d:a2:bd:f6:3a:a4:9a:98:ed:1c:a9:8d: c7:31:0e:99:95:4a:49:44:f5:b5:c0:47:a7:87:82: 9d:6d:96:52:9f:9e:47:29:c3:6a:b2:c8:2a:95:19: f2:b7:29:e7:3b:61:43:c5:5b:4c:16:7f:0a:70:bc: ea:0a:5e:f2:73:e2:88:15:58:08:84:87:63:61:9e: 8f:47:c8:89:ec:57:cc:25:5f:8c:c7:81:a9:a0:26: 81:f6:d3:ec:5e:6e:59:f0:64:8b:1c:f7:ca:a3:ea: 72:45:96:6b:a5:af:bc:c2:3f:fc:0a:47:96:a4:c6: db:f0:92:0f:f9:1c:33:48:30:c7:8e:f3:66:0a:a2: 76:34:c9:0c:c1:0e:29:cb:26:4c:0e:35:56:77:c2: 58:f8:81:07:b4:83:bb:5d:c2:2c:49:f3:dc:ba:d8: 4b:f5:41:97:91:90:c1:48:f9:52:0b:c7:69:ee:82: 78:da:83:9b:46:99:26:7f:23:5f:d2:68:55:1d:ce: 0f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:73:45:49:5A:13:86:AE:66:76:7C:12:7D:39:4B:BD:57:43:8B:C5 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:31:c1:df:b2:57:ea:85:83:a0:bb:d7:2b:7f:05:95:e1:7e: 1f:ae:b7:42:4b:8b:55:07:74:c6:50:8e:15:56:94:dd:90:39: 6f:64:ad:70:b8:b7:a9:b0:2c:a2:a2:02:b3:b9:11:b1:90:f0: ca:52:99:e3:e0:4f:48:86:10:47:f9:7d:e1:5d:3e:fe:7a:85: 94:54:5e:62:e2:02:56:19:08:a1:41:6e:a8:37:ea:e0:4a:c8: e8:bc:d7:43:0e:c6:c9:80:3a:dc:a3:19:19:2b:4d:7f:65:47: 4f:9d:20:bf:bd:03:f9:ae:7a:aa:94:77:e5:a9:b4:65:ce:2e: 0f:67:e5:e9:0f:10:cf:cf:48:88:74:1c:72:9c:07:0f:5c:6f: 27:8a:76:48:84:73:a7:05:14:2e:80:f5:ae:f4:db:f9:e5:de: d0:f6:45:60:1c:80:8d:48:06:58:d0:a6:cd:91:56:51:99:a4: 6c:af:b5:06:fb:e9:45:45:23:01:90:6f:d7:1f:f7:c8:4b:ad: dc:66:97:fb:45:76:aa:94:1d:5e:41:92:cb:a2:1c:8e:98:19: de:5b:a5:75:fe:56:15:74:ee:65:66:fb:80:83:40:cf:f5:31: 2c:fa:45:71:88:d3:44:43:36:cf:fe:bd:03:1f:da:a6:b3:ca: 6d:42:12:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwMzEyMTY1NDMwWhcNMjUwMzE5MTY1NDMwWjAYMRYwFAYD VQQDEw02N2QxYmM0Ni05NTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4a7j0rY2iBuX553vyzM3Pyb4vDi0755uzY/vA+7E6SqVCRqMCnpVPV5GoIMO B3hQXTCcY0LGlRXVaquIz6Ydor32OqSamO0cqY3HMQ6ZlUpJRPW1wEenh4KdbZZS n55HKcNqssgqlRnytynnO2FDxVtMFn8KcLzqCl7yc+KIFVgIhIdjYZ6PR8iJ7FfM JV+Mx4GpoCaB9tPsXm5Z8GSLHPfKo+pyRZZrpa+8wj/8CkeWpMbb8JIP+RwzSDDH jvNmCqJ2NMkMwQ4pyyZMDjVWd8JY+IEHtIO7XcIsSfPcuthL9UGXkZDBSPlSC8dp 7oJ42oObRpkmfyNf0mhVHc4PNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1zRUla E4auZnZ8En05S71XQ4vFMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9McHfslfqhYOgu9crfwWV4X4frrdCS4tVB3TGUI4VVpTdkDlvZK1w uLepsCyiogKzuRGxkPDKUpnj4E9IhhBH+X3hXT7+eoWUVF5i4gJWGQihQW6oN+rg SsjovNdDDsbJgDrcoxkZK01/ZUdPnSC/vQP5rnqqlHflqbRlzi4PZ+XpDxDPz0iI dBxynAcPXG8ninZIhHOnBRQugPWu9Nv55d7Q9kVgHICNSAZY0KbNkVZRmaRsr7UG ++lFRSMBkG/XH/fIS63cZpf7RXaqlB1eQZLLohyOmBneW6V1/lYVdO5lZvuAg0DP 9TEs+kVxiNNEQzbP/r0DH9qms8ptQhK4 -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:06 2025 by rpki-client