$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: jo15csvlXjKZx6KPOy82Svm7Xm+Nz65V7k7D54hxGTI= Subject key identifier: 2E:28:FD:68:83:C4:38:7C:0E:82:86:C8:AD:E8:6E:E8:82:6B:6F:2F Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0100 Signing time: Sun 11 May 2025 03:58:44 +0000 Manifest this update: Sun 11 May 2025 03:58:44 +0000 Manifest next update: Sun 18 May 2025 03:58:44 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: 5Xh1SseGGsKT/zRuIq8LVCK8v0oyrTlbOk431FtAfD0=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: May 11 03:58:44 2025 GMT Not After : May 18 03:58:44 2025 GMT Subject: CN=68202074-d015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:30:68:93:ab:99:ff:a5:88:b2:31:97:a2: f5:c3:4b:6e:c7:1e:ce:48:29:0e:d4:d8:ab:53:65: 40:02:66:58:55:54:b6:18:1f:ea:3c:94:8b:d7:42: d8:3d:72:0e:d0:88:7e:79:2e:59:fe:42:84:e7:29: 55:5d:bc:06:2e:9e:62:cf:9c:16:63:a3:90:1f:c2: 83:47:f8:e2:f3:e9:fe:72:c9:2c:aa:c7:4b:e2:ec: 96:41:97:8b:88:a4:d8:fb:cc:51:ee:01:af:87:6b: 36:79:ed:c9:8f:dc:da:24:28:e3:69:25:01:06:b6: 7a:17:b4:74:78:60:dc:ef:97:11:b9:77:05:5b:7b: bd:9f:4e:14:d0:4e:19:30:d8:4e:dc:d9:7a:37:04: bd:a4:44:69:6d:01:84:19:11:5b:51:44:d3:ed:60: 16:ed:80:8b:9a:c0:10:01:ac:bd:e1:28:26:8f:cf: c7:3e:34:7f:4d:d7:fe:b3:56:cf:07:1f:5c:cd:6f: fe:c1:59:f8:70:cc:67:0b:b9:a0:15:94:16:01:a7: 94:3b:4b:c9:4c:2b:22:db:ad:ba:eb:fa:8c:83:fe: bb:69:98:0e:ea:48:18:7e:2f:52:fd:47:a6:70:f6: 13:35:18:55:b8:a2:14:49:7f:82:47:06:0a:f0:cb: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:28:FD:68:83:C4:38:7C:0E:82:86:C8:AD:E8:6E:E8:82:6B:6F:2F X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:7c:64:25:88:70:62:e0:70:09:e4:b4:ce:7a:85:7d:46:87: 67:3c:50:ff:07:33:9b:ff:7c:4f:5c:ee:63:7f:07:f3:16:85: cb:d1:67:39:9b:e9:5f:90:e3:54:3b:bf:84:b6:81:09:b6:9c: bc:a2:b2:4f:8f:6e:1a:dc:d5:cb:8b:53:04:0e:37:3f:4b:4b: 8c:29:ba:8f:e1:60:8e:95:86:87:67:db:67:32:9b:0f:cd:11: 3b:9a:ee:4f:10:5e:78:d1:10:8c:62:bb:64:75:22:03:c6:de: 08:11:89:19:a7:ef:92:87:81:15:1e:c7:a5:9e:12:33:90:33: 1c:6d:95:81:48:66:57:63:19:8a:a8:56:78:f3:b4:e1:3e:b8: 4a:7d:9a:8c:8c:16:67:c5:45:02:5b:51:ed:eb:62:ac:2b:d0: 92:11:9b:59:8b:01:a4:50:fe:4a:af:e2:6e:2f:40:f5:ed:63: 1f:dc:f6:9f:2a:fa:2c:b8:c7:76:fe:66:51:bf:ba:52:30:b5: a5:ad:4a:5f:e1:2c:a8:3e:b1:c6:1d:18:64:4a:a3:ef:81:f0: 1c:16:6c:8d:e5:54:09:f3:d7:ce:f3:8d:0d:14:d4:56:01:ce: 35:27:65:96:f5:65:5b:c1:ee:98:a5:6f:ff:a4:60:c8:29:7c: a4:ab:09:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwNTExMDM1ODQ0WhcNMjUwNTE4MDM1ODQ0WjAYMRYwFAYD VQQDEw02ODIwMjA3NC1kMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDAwaJOrmf+liLIxl6L1w0tuxx7OSCkO1NirU2VAAmZYVVS2GB/qPJSL10LY PXIO0Ih+eS5Z/kKE5ylVXbwGLp5iz5wWY6OQH8KDR/ji8+n+csksqsdL4uyWQZeL iKTY+8xR7gGvh2s2ee3Jj9zaJCjjaSUBBrZ6F7R0eGDc75cRuXcFW3u9n04U0E4Z MNhO3Nl6NwS9pERpbQGEGRFbUUTT7WAW7YCLmsAQAay94Sgmj8/HPjR/Tdf+s1bP Bx9czW/+wVn4cMxnC7mgFZQWAaeUO0vJTCsi26266/qMg/67aZgO6kgYfi9S/Uem cPYTNRhVuKIUSX+CRwYK8MtCFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4o/WiD xDh8DoKGyK3obuiCa28vMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPfGQliHBi4HAJ5LTOeoV9RodnPFD/BzOb/3xPXO5jfwfzFoXL0Wc5 m+lfkONUO7+EtoEJtpy8orJPj24a3NXLi1MEDjc/S0uMKbqP4WCOlYaHZ9tnMpsP zRE7mu5PEF540RCMYrtkdSIDxt4IEYkZp++Sh4EVHselnhIzkDMcbZWBSGZXYxmK qFZ487ThPrhKfZqMjBZnxUUCW1Ht62KsK9CSEZtZiwGkUP5Kr+JuL0D17WMf3Paf KvosuMd2/mZRv7pSMLWlrUpf4SyoPrHGHRhkSqPvgfAcFmyN5VQJ89fO840NFNRW Ac41J2WW9WVbwe6YpW//pGDIKXykqwm8 -----END CERTIFICATE-----Generated at Mon May 12 18:48:30 2025 by rpki-client