$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: 57M8zhOWdAlcaMmatAERG02mpLuzSljan4AeypxB8VI= Subject key identifier: 61:89:F8:9D:C3:18:E2:8B:93:92:5C:17:DF:40:4A:AA:20:90:25:49 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 05DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 05DB Signing time: Sat 10 May 2025 22:34:52 +0000 Manifest this update: Sat 10 May 2025 22:34:51 +0000 Manifest next update: Sat 17 May 2025 22:34:51 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: 6bBY9IBZUv5vxdbnyn21+qckaz0Wc/O0rx4TkoeNLQ8=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: May 10 22:34:51 2025 GMT Not After : May 17 22:34:51 2025 GMT Subject: CN=681fd48c-91cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6c:4e:85:37:b0:95:49:ec:0d:98:5d:ff:59: 9a:eb:0d:31:71:68:43:ad:6b:41:f0:d7:5a:3f:28: 71:46:b3:62:41:63:7d:97:08:f0:f8:71:23:59:84: 99:6c:03:46:d7:74:20:76:2b:52:2d:4c:25:52:a7: f0:66:5c:3d:b0:3a:42:54:11:9c:66:72:8c:43:02: 62:70:b7:47:26:cd:6f:50:e3:c9:a5:28:e7:bd:97: ac:52:fc:8e:bc:86:c1:3f:32:a2:30:d4:e7:10:44: 34:11:ae:a4:0d:76:15:a0:31:cd:4e:f3:20:40:d8: e3:06:3e:e0:24:c7:05:d7:d2:16:a8:81:cf:b4:e5: ee:ab:0f:19:a0:f2:8a:9e:6d:6f:3d:29:08:6a:f4: 54:0c:0d:dd:85:61:fd:82:29:17:20:01:db:09:cc: 0c:87:c7:e4:f5:65:8a:d2:f1:ad:98:1c:ef:6a:ba: 2e:80:09:ce:83:d0:88:0d:84:24:6c:54:98:47:1a: 4a:85:5a:5b:88:7f:ce:7c:bd:84:be:8a:e9:8f:f4: 41:c8:1f:63:92:2a:b2:cf:2f:73:70:7a:db:39:86: c3:7a:ec:60:26:f8:bd:22:a1:46:04:4d:b6:59:7e: 0c:7e:1b:4b:cb:9c:84:d4:42:ac:85:ec:f6:13:b5: ec:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:89:F8:9D:C3:18:E2:8B:93:92:5C:17:DF:40:4A:AA:20:90:25:49 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f2:41:da:8e:34:da:71:31:04:09:11:77:d4:e1:0c:95:6f: a2:91:ec:da:3f:1f:ac:6e:ef:47:18:f1:4e:2a:6a:be:55:bb: 66:01:dd:a6:19:21:22:3a:5b:61:86:6e:89:3c:d6:51:db:06: 4b:4c:e9:e2:c0:ed:ef:7a:09:3d:8b:60:fb:bb:9e:2c:2c:cf: ba:36:e4:ba:cd:32:05:98:96:2a:c5:5f:10:40:c9:d1:d9:14: d5:9e:4c:da:d9:66:c2:cf:d8:7b:e5:d9:6a:bf:be:97:4b:93: 16:22:37:ff:04:e0:1d:49:e8:aa:d1:4d:3f:67:d9:dc:78:97: 48:78:73:03:20:da:4b:20:2f:49:3f:b5:41:c3:0f:73:f2:e4: 14:2c:f2:89:14:72:13:64:4f:ac:f0:96:00:18:34:b3:75:9d: 9c:c5:2c:c7:62:18:7e:27:af:1f:5f:2b:d7:9d:12:a7:81:f1: f8:97:d0:18:11:ad:ad:81:3e:55:80:3e:92:09:e5:e7:1e:44: 7d:d5:0a:be:17:9e:c4:62:72:65:38:60:b7:5c:72:83:30:c8: 64:98:2f:a9:6d:b5:31:0c:3b:02:d6:96:44:bf:43:7c:3d:cd: 34:c5:b6:d5:a7:9e:b7:c0:66:e2:56:08:36:d2:11:c0:6d:9a: 00:e7:5e:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUwNTEwMjIzNDUxWhcNMjUwNTE3MjIzNDUxWjAYMRYwFAYD VQQDEw02ODFmZDQ4Yy05MWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymxOhTewlUnsDZhd/1ma6w0xcWhDrWtB8NdaPyhxRrNiQWN9lwjw+HEjWYSZ bANG13QgditSLUwlUqfwZlw9sDpCVBGcZnKMQwJicLdHJs1vUOPJpSjnvZesUvyO vIbBPzKiMNTnEEQ0Ea6kDXYVoDHNTvMgQNjjBj7gJMcF19IWqIHPtOXuqw8ZoPKK nm1vPSkIavRUDA3dhWH9gikXIAHbCcwMh8fk9WWK0vGtmBzvarougAnOg9CIDYQk bFSYRxpKhVpbiH/OfL2Evorpj/RByB9jkiqyzy9zcHrbOYbDeuxgJvi9IqFGBE22 WX4MfhtLy5yE1EKshez2E7XszwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGJ+J3D GOKLk5JcF99ASqogkCVJMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk8kHajjTacTEECRF31OEMlW+ikezaPx+sbu9HGPFOKmq+VbtmAd2m GSEiOlthhm6JPNZR2wZLTOniwO3vegk9i2D7u54sLM+6NuS6zTIFmJYqxV8QQMnR 2RTVnkza2WbCz9h75dlqv76XS5MWIjf/BOAdSeiq0U0/Z9nceJdIeHMDINpLIC9J P7VBww9z8uQULPKJFHITZE+s8JYAGDSzdZ2cxSzHYhh+J68fXyvXnRKngfH4l9AY Ea2tgT5VgD6SCeXnHkR91Qq+F57EYnJlOGC3XHKDMMhkmC+pbbUxDDsC1pZEv0N8 Pc00xbbVp563wGbiVgg20hHAbZoA515S -----END CERTIFICATE-----Generated at Mon May 12 21:38:48 2025 by rpki-client