$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: JRbxmaYWMchHEYvs3vWizMqA1Dr83C1W7tC7ny6xD6U= Subject key identifier: 28:C2:94:A9:46:3E:EC:90:C3:1B:AB:5F:D3:72:8A:19:6B:D6:28:63 Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: 44 Signing time: Sun 11 May 2025 06:07:57 +0000 Manifest this update: Sun 11 May 2025 06:07:56 +0000 Manifest next update: Sun 18 May 2025 06:07:56 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: agWqv6p29TRlf4aY3ZXLuJ6P6jYuNEEQ5s6TdRkVny4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Validity Not Before: May 11 06:07:56 2025 GMT Not After : May 18 06:07:56 2025 GMT Subject: CN=68203ebc-a051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:d8:49:12:f4:7f:30:05:cb:f5:53:d6:6b: 8c:de:9d:04:68:82:da:68:6f:47:49:1f:d5:ed:07: ef:15:2a:66:44:94:20:a7:b8:57:b2:a6:42:c3:c4: 64:c4:42:e7:00:07:59:f1:3c:6f:58:4a:c1:66:10: 76:7a:bc:b6:e4:6c:91:e8:a6:e8:e6:06:af:b8:30: 5c:50:e6:c1:6f:9e:0f:aa:44:14:f2:5f:de:52:02: f0:54:1d:2f:55:65:04:93:23:20:45:0a:ad:d9:a6: 80:65:81:44:2d:cc:4b:8c:12:31:41:3e:d4:9c:0c: ba:1c:e7:c7:76:85:ae:42:22:70:5f:30:b2:ed:69: b4:11:fc:65:87:82:4f:28:f5:fd:19:74:0e:48:23: ac:1f:57:93:ec:23:b1:57:c9:9f:4b:2b:db:5e:67: 57:64:84:62:90:5d:e4:c4:78:1b:62:22:d7:29:9c: a3:8c:30:d6:d1:03:dd:13:0b:63:6a:8f:82:32:32: e3:03:9c:5f:5d:f9:33:23:0d:a4:f9:66:de:92:ec: 16:77:ba:4d:6b:f5:29:97:5f:87:b8:63:a6:33:a5: 23:26:71:33:b6:61:05:d8:59:65:b7:db:95:36:4e: b9:97:aa:2f:88:a7:82:a2:fe:92:ba:a7:b8:cf:43: e5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C2:94:A9:46:3E:EC:90:C3:1B:AB:5F:D3:72:8A:19:6B:D6:28:63 X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6e:d0:c8:94:9c:62:ef:ef:46:2d:81:eb:b1:82:4e:8f:a3: 8d:2f:d7:51:32:0d:1e:9b:44:b2:74:63:85:f7:85:b3:da:45: a2:43:24:df:82:d2:5a:e0:3d:8c:79:0f:ff:0e:ad:6c:f4:ec: 6c:ea:a6:d6:60:59:96:81:87:32:ca:74:c8:5a:63:40:86:a0: 54:04:6b:ae:f0:99:16:2e:23:4d:a5:c6:89:bc:20:33:e5:9e: 01:65:d7:73:8c:70:b7:bf:71:9c:92:00:84:a9:e4:7f:e2:61: 9e:3b:45:d1:3e:16:61:09:50:bc:74:56:2b:03:d9:66:be:7e: e1:eb:12:d0:f9:9e:6f:35:75:2a:4f:73:8c:28:d9:03:8f:5f: 03:bd:27:8a:ce:5e:f6:0f:7b:8c:77:17:a6:8a:17:10:dc:49: 80:76:a2:fd:b8:c9:af:6a:83:5b:78:8e:c2:a9:86:24:87:64: 2a:56:d3:bb:7b:2c:f9:b9:7a:9f:a9:40:ab:36:b0:2e:e6:c3: 7c:c1:52:90:84:b5:c9:cd:84:d5:2e:7e:89:1e:49:e6:3b:34: 19:8e:a1:88:5a:c0:e9:44:2e:1f:7b:72:43:b8:c9:f6:60:af: 30:5d:c7:1a:6d:25:cc:2f:cd:db:38:74:f2:bf:c1:dd:33:9e: 8f:2a:8e:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMDhFRkQ3MTkzOEY3RjlEQzg3QTY5RjVDQjNGODRDN0E0 QjcyQTAwQTAeFw0yNTA1MTEwNjA3NTZaFw0yNTA1MTgwNjA3NTZaMBgxFjAUBgNV BAMTDTY4MjAzZWJjLWEwNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9mthJEvR/MAXL9VPWa4zenQRogtpob0dJH9XtB+8VKmZElCCnuFeypkLDxGTE QucAB1nxPG9YSsFmEHZ6vLbkbJHopujmBq+4MFxQ5sFvng+qRBTyX95SAvBUHS9V ZQSTIyBFCq3ZpoBlgUQtzEuMEjFBPtScDLoc58d2ha5CInBfMLLtabQR/GWHgk8o 9f0ZdA5II6wfV5PsI7FXyZ9LK9teZ1dkhGKQXeTEeBtiItcpnKOMMNbRA90TC2Nq j4IyMuMDnF9d+TMjDaT5Zt6S7BZ3uk1r9SmXX4e4Y6YzpSMmcTO2YQXYWWW325U2 TrmXqi+Ip4Ki/pK6p7jPQ+XZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKMKUqUY+ 7JDDG6tf03KKGWvWKGMwHwYDVR0jBBgwFoAUCO/XGTj3+dyHpp9cs/hMektyoAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzcxRDUwNjJFQzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9B by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ09fWEdUajMtZHlIcHA5Y3NfaE1la3R5b0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzcxRDUwNjJFQzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5 SHBwOWNzX2hNZWt0eW9Bby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5u0MiUnGLv70Ytgeuxgk6Po40v11EyDR6bRLJ0Y4X3hbPaRaJDJN+C 0lrgPYx5D/8OrWz07GzqptZgWZaBhzLKdMhaY0CGoFQEa67wmRYuI02lxom8IDPl ngFl13OMcLe/cZySAISp5H/iYZ47RdE+FmEJULx0VisD2Wa+fuHrEtD5nm81dSpP c4wo2QOPXwO9J4rOXvYPe4x3F6aKFxDcSYB2ov24ya9qg1t4jsKphiSHZCpW07t7 LPm5ep+pQKs2sC7mw3zBUpCEtcnNhNUufokeSeY7NBmOoYhawOlELh97ckO4yfZg rzBdxxptJcwvzds4dPK/wd0zno8qjoc= -----END CERTIFICATE-----Generated at Sun May 11 13:32:07 2025 by rpki-client