$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: qKmg+QDUpvEZ97P05BqU8shsH9KeJTgs5CloU/p5F9s= Subject key identifier: A3:0B:FA:95:F1:FF:67:79:44:E3:F8:25:76:DD:08:88:E1:30:19:CD Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 026D Signing time: Tue 13 May 2025 01:32:08 +0000 Manifest this update: Tue 13 May 2025 01:32:07 +0000 Manifest next update: Tue 20 May 2025 01:32:07 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: wkiWB80+uBfMT41WxMrBQXNcRyYJAGCwYmto/1LYdSs=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: May 13 01:32:07 2025 GMT Not After : May 20 01:32:07 2025 GMT Subject: CN=6822a117-be09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:da:ee:17:c8:fd:5a:b0:a9:78:4c:16:e8: d3:bb:7f:3c:10:99:40:90:ab:0d:62:d0:ed:be:a1: 81:2b:0f:d7:27:5e:91:88:0f:e6:ae:90:e3:05:4f: e6:62:98:7d:fe:08:f7:16:91:f4:c2:c9:71:c7:d1: a9:8c:a0:22:67:cf:62:20:a1:93:64:0c:fd:29:e7: bf:5e:ec:a6:1c:25:e8:f8:3c:04:d2:0f:bc:a5:8c: 69:19:1d:30:c5:6c:9b:b6:89:53:e4:08:c5:a3:63: 25:2a:55:6f:82:4c:a7:7c:3b:21:eb:cf:a6:01:22: fb:66:78:86:7c:fc:d1:b0:c2:65:81:e8:a3:eb:98: 20:1c:48:65:c8:29:a4:fd:73:62:d2:4c:2c:97:73: ae:bc:16:cf:71:01:3a:28:20:45:0b:32:55:bc:45: 43:5e:41:a5:6e:e9:14:6e:ee:b0:00:71:11:72:bc: e4:be:5d:53:97:74:fd:81:d0:d0:23:29:73:43:ff: 4e:61:b8:9f:08:71:a7:bd:c6:1e:93:76:02:45:ac: 1c:89:cc:f2:e6:1c:47:45:7f:31:8e:bd:28:f6:c5: 18:5c:3e:00:c2:2b:48:87:b7:01:74:f7:76:2b:51: 96:1b:b0:3f:8c:9e:35:fa:ab:a9:db:36:88:33:f1: 32:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0B:FA:95:F1:FF:67:79:44:E3:F8:25:76:DD:08:88:E1:30:19:CD X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b6:a2:8a:a1:2b:37:4a:5e:8f:a4:25:d4:ec:73:a8:d3:c0: ea:37:ef:1a:cb:78:c7:8a:34:0c:1b:d3:68:e9:cb:72:0f:25: 2d:2f:17:be:16:e5:6c:31:b7:64:2c:a5:9f:69:72:3b:48:85: b6:52:9f:e0:74:e4:6f:d5:4f:14:76:c6:34:23:a6:d5:b3:47: f0:e8:ff:74:b8:77:c2:3c:4b:d8:0b:4a:27:e1:9d:ee:9c:e7: 34:4f:fa:77:89:76:6a:5a:fd:8a:17:36:a9:56:8d:3c:50:bc: e5:34:6c:e5:19:f9:30:e4:60:12:40:48:39:07:22:11:70:e9: 79:70:b8:8f:8b:bc:ba:c6:5f:bf:84:ae:85:f9:9a:22:e6:b5: 3f:f0:71:b6:38:3a:a6:bd:5c:fc:ce:98:f1:d2:8d:6f:5b:c0: 35:de:a4:49:21:a1:85:ef:bf:3a:fa:61:2e:9f:2f:cf:29:29: d8:8a:15:b3:aa:a6:c4:72:c3:f4:6e:67:d8:dd:a8:f4:57:f2: ba:12:c9:2e:26:15:ef:fd:fe:d6:26:b8:35:ac:df:c9:38:98: 1a:71:11:ed:47:a0:a2:4e:4b:03:19:8c:0d:e7:67:9d:7e:00: 9b:6b:32:7f:ca:47:b9:fd:29:24:08:e9:c6:09:1a:bc:00:d5: e7:49:31:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUwNTEzMDEzMjA3WhcNMjUwNTIwMDEzMjA3WjAYMRYwFAYD VQQDEw02ODIyYTExNy1iZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Aja7hfI/VqwqXhMFujTu388EJlAkKsNYtDtvqGBKw/XJ16RiA/mrpDjBU/m Yph9/gj3FpH0wslxx9GpjKAiZ89iIKGTZAz9Kee/XuymHCXo+DwE0g+8pYxpGR0w xWybtolT5AjFo2MlKlVvgkynfDsh68+mASL7ZniGfPzRsMJlgeij65ggHEhlyCmk /XNi0kwsl3OuvBbPcQE6KCBFCzJVvEVDXkGlbukUbu6wAHERcrzkvl1Tl3T9gdDQ IylzQ/9OYbifCHGnvcYek3YCRawciczy5hxHRX8xjr0o9sUYXD4AwitIh7cBdPd2 K1GWG7A/jJ41+qup2zaIM/EyCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKML+pXx /2d5ROP4JXbdCIjhMBnNMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAtqKKoSs3Sl6PpCXU7HOo08DqN+8ay3jHijQMG9No6ctyDyUtLxe+ FuVsMbdkLKWfaXI7SIW2Up/gdORv1U8UdsY0I6bVs0fw6P90uHfCPEvYC0on4Z3u nOc0T/p3iXZqWv2KFzapVo08ULzlNGzlGfkw5GASQEg5ByIRcOl5cLiPi7y6xl+/ hK6F+Zoi5rU/8HG2ODqmvVz8zpjx0o1vW8A13qRJIaGF7786+mEuny/PKSnYihWz qqbEcsP0bmfY3aj0V/K6EskuJhXv/f7WJrg1rN/JOJgacRHtR6CiTksDGYwN52ed fgCbazJ/yke5/SkkCOnGCRq8ANXnSTHQ -----END CERTIFICATE-----Generated at Wed May 14 17:12:00 2025 by rpki-client