$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: ucnFQEEUgxVBMi01JfswpSBlFz25pNzsl5Jm8lyEl3o= Subject key identifier: 74:5D:EA:3A:6D:B5:FE:8F:BF:DC:EC:14:AB:53:B1:4D:6A:55:12:B2 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: CA Signing time: Sun 11 May 2025 04:33:04 +0000 Manifest this update: Sun 11 May 2025 04:33:04 +0000 Manifest next update: Sun 18 May 2025 04:33:04 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: TlwM1ce90Ts4wP9jlg0bW37cTJyJG6+Am2rrlulwvRc=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: May 11 04:33:04 2025 GMT Not After : May 18 04:33:04 2025 GMT Subject: CN=68202880-f4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0e:39:87:3d:90:01:4e:5a:9e:df:4b:cd:80: d0:07:cf:01:60:ee:43:47:e7:fc:c1:f5:b2:ce:93: 24:d5:a0:06:32:c6:5e:0b:d9:96:2f:18:c2:cb:40: a2:fd:a9:4e:a4:73:38:62:45:41:85:e0:21:a6:db: 89:20:32:5d:27:24:a8:56:d0:f7:66:5c:91:c8:c0: 81:44:57:22:f2:76:30:63:be:57:e7:cd:24:69:98: f2:d4:bd:3a:f0:0c:bc:30:ed:12:d2:35:65:2f:89: 08:20:eb:89:34:34:7f:e0:63:15:50:c7:23:a4:c7: 47:bd:cb:ed:aa:d0:ba:b3:0d:79:bd:82:40:f0:35: cf:6b:55:fd:57:26:9a:16:69:71:f1:ab:49:0c:e3: 4c:21:69:29:eb:60:a4:08:d8:eb:3f:8d:94:6d:cb: aa:14:f5:94:da:f1:0b:12:4d:ab:b4:fc:46:f9:d5: 01:e7:61:4a:58:ae:ee:f5:b9:5e:8c:97:3f:4f:1c: ce:bd:88:1e:d3:18:fb:ad:b1:e8:f3:9e:de:55:fe: 08:27:3c:c5:43:3e:5f:8b:15:e8:59:bf:6b:21:c3: 7e:02:2a:f8:7a:8b:1d:f4:7f:81:3f:3e:d1:0a:02: b8:43:b4:e6:24:fc:fa:b7:2b:11:f4:80:7e:23:4d: d1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5D:EA:3A:6D:B5:FE:8F:BF:DC:EC:14:AB:53:B1:4D:6A:55:12:B2 X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b6:b5:6e:bd:23:69:f3:08:7f:9a:8e:a1:8f:f5:96:b7:58: 97:3c:75:88:e4:fe:4a:e6:f3:7e:f4:40:7b:33:ff:74:79:de: 24:aa:e3:58:63:12:54:24:fd:2d:7f:e1:ec:36:c8:1d:55:8a: 33:f3:46:f1:cd:55:f7:df:75:ad:40:09:07:ac:3d:62:42:e9: c4:af:70:b5:e4:d8:f6:51:e6:9f:9d:00:7f:5f:a9:59:ca:d3: fb:66:a0:bb:54:48:c4:f1:ef:eb:4e:ac:48:af:29:12:1e:1b: a9:e0:5b:44:9d:6e:a3:61:64:71:72:69:0b:ba:b9:6a:bf:be: d7:2a:da:5b:4e:ca:7c:de:a8:71:61:d2:c8:ec:06:45:fe:da: 9b:1a:a3:66:10:24:b6:5a:03:33:28:0b:7e:e4:a1:57:e0:24: 5d:59:26:c3:04:88:8f:29:df:a7:87:9c:87:cb:b9:68:be:09: da:92:40:d2:f9:d1:92:ac:4f:fe:8d:27:eb:a4:0b:93:3e:a4: ce:8e:98:ff:52:0b:50:ee:e6:a4:74:13:0c:6f:08:85:02:8f: 96:42:32:b2:55:85:64:93:7c:60:83:97:56:3c:6d:dc:dc:96: 43:c1:25:9d:00:ec:82:d3:46:26:66:ad:cc:d8:0e:86:03:39: 96:79:88:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwNTExMDQzMzA0WhcNMjUwNTE4MDQzMzA0WjAYMRYwFAYD VQQDEw02ODIwMjg4MC1mNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ45hz2QAU5ant9LzYDQB88BYO5DR+f8wfWyzpMk1aAGMsZeC9mWLxjCy0Ci /alOpHM4YkVBheAhptuJIDJdJySoVtD3ZlyRyMCBRFci8nYwY75X580kaZjy1L06 8Ay8MO0S0jVlL4kIIOuJNDR/4GMVUMcjpMdHvcvtqtC6sw15vYJA8DXPa1X9Vyaa Fmlx8atJDONMIWkp62CkCNjrP42UbcuqFPWU2vELEk2rtPxG+dUB52FKWK7u9ble jJc/TxzOvYge0xj7rbHo857eVf4IJzzFQz5fixXoWb9rIcN+Air4eosd9H+BPz7R CgK4Q7TmJPz6tysR9IB+I03RqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRd6jpt tf6Pv9zsFKtTsU1qVRKyMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOtrVuvSNp8wh/mo6hj/WWt1iXPHWI5P5K5vN+9EB7M/90ed4kquNY YxJUJP0tf+HsNsgdVYoz80bxzVX333WtQAkHrD1iQunEr3C15Nj2UeafnQB/X6lZ ytP7ZqC7VEjE8e/rTqxIrykSHhup4FtEnW6jYWRxcmkLurlqv77XKtpbTsp83qhx YdLI7AZF/tqbGqNmECS2WgMzKAt+5KFX4CRdWSbDBIiPKd+nh5yHy7lovgnakkDS +dGSrE/+jSfrpAuTPqTOjpj/UgtQ7uakdBMMbwiFAo+WQjKyVYVkk3xgg5dWPG3c 3JZDwSWdAOyC00YmZq3M2A6GAzmWeYhs -----END CERTIFICATE-----Generated at Sun May 11 16:53:59 2025 by rpki-client