$ rpki-client -vvf rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft File: 3JAYFdyRlzyvoZqLV2-GjphBPjk.mft (raw, json) Hash identifier: 8lsBfQA+0yLqABlH2mPkgxsD1HPZifCjQjMZrYlf1Fg= Subject key identifier: 30:DE:33:C5:A2:5E:8D:54:82:F8:37:AB:BE:D6:A8:1A:9E:C3:87:2D Authority key identifier: DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 Certificate issuer: /CN=A91168B5/serialNumber=DC901815DC91973CAFA19A8B576F868E98413E39 Certificate serial: 1BB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft Manifest number: 1BB2 Signing time: Fri 04 Apr 2025 16:16:50 +0000 Manifest this update: Fri 04 Apr 2025 16:16:49 +0000 Manifest next update: Fri 11 Apr 2025 16:16:49 +0000 Files and hashes: 1: 3JAYFdyRlzyvoZqLV2-GjphBPjk.crl (hash: oeyGMpA5kiZGCt2c05IFy4AdRamt/4GtoH+VkAEoO/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7090 (0x1bb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168B5 Validity Not Before: Apr 4 16:16:49 2025 GMT Not After : Apr 11 16:16:49 2025 GMT Subject: CN=67f005f2-f2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:97:f0:d4:16:cc:31:c3:ec:09:8b:68:fa:23: 42:a8:75:60:59:76:a4:7f:9f:fc:95:5e:aa:7d:e3: a8:bf:43:c3:10:6e:8f:1f:57:ba:cc:27:f3:63:a9: f9:71:01:0f:ca:41:ab:f9:37:ab:98:5e:96:77:2a: 2d:f9:f3:03:d7:98:66:37:41:95:11:4f:6d:98:ca: 2c:f6:85:d3:8c:e7:38:b8:dd:dc:f0:2f:95:8c:b1: 0b:4e:bf:d1:11:31:5b:a1:f3:e4:38:27:77:a4:a1: 65:1c:48:d2:26:34:fa:9f:bf:3c:97:00:ab:8b:4b: 36:b0:b7:84:35:da:b9:2c:fd:36:37:31:33:9b:ab: 42:0b:e4:b9:de:3f:6e:c6:4d:34:03:34:d6:62:99: f3:c6:a2:ae:50:8c:59:9c:31:87:d7:65:92:98:eb: 01:d5:15:de:c5:6d:40:f9:45:d6:38:c1:96:89:99: 02:3d:c5:b8:79:91:4d:b4:0d:ad:49:da:5f:31:0f: 44:63:ae:15:af:5a:0c:ad:ef:d6:1f:23:8f:90:a5: 3d:7a:5b:a5:09:d1:f6:26:84:5d:2c:a1:4f:9e:c7: 30:2a:1a:b0:14:a4:4c:28:68:18:82:03:2a:63:d5: f0:67:e6:2d:94:17:e5:e8:30:a4:f5:29:51:ba:d8: 97:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DE:33:C5:A2:5E:8D:54:82:F8:37:AB:BE:D6:A8:1A:9E:C3:87:2D X509v3 Authority Key Identifier: keyid:DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:55:74:28:1f:7e:26:c9:2c:1e:a2:6d:6b:f9:e3:e7:3d:05: de:c4:bc:5a:85:70:d2:d4:c4:12:4f:ea:af:60:c7:75:6f:dc: dd:c3:83:5c:4a:89:4d:04:63:14:2c:5a:4d:79:5d:20:0f:4d: 9c:53:69:81:dd:b9:8c:ed:e0:b3:32:cb:17:40:35:e8:04:df: a3:56:d7:f5:43:ca:e2:81:9c:58:cc:85:d3:bf:c8:d3:c8:cf: 83:48:45:29:ad:3a:80:89:ff:c7:e4:23:38:15:6c:dc:12:43: 96:37:4a:94:c0:fe:11:4b:69:90:ad:df:18:3d:a0:80:02:b2: 46:fb:ca:48:ec:a6:d6:83:e2:24:06:13:05:11:2f:a2:a6:c6: 1a:4d:e4:af:ee:4b:46:2a:fa:31:ab:c3:c5:e4:c7:a2:25:ed: cd:c9:ec:a4:38:c3:3c:b0:0d:15:f8:05:e2:59:01:c5:06:b8: c6:90:03:0e:91:27:9e:95:7c:dc:1f:0c:14:87:a9:01:43:6c: 76:6f:e6:57:0d:b5:10:e2:14:99:e1:dc:9c:18:64:2b:bd:0c: b3:3d:d6:b3:3f:d7:bc:cd:1e:d6:02:d2:38:9e:cf:7a:bb:a5: 8d:4f:ee:69:71:21:a8:ca:c5:bf:4c:c1:52:a5:5f:47:4b:1c: 8d:82:51:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4QjUxMTAvBgNVBAUTKERDOTAxODE1REM5MTk3M0NBRkExOUE4QjU3NkY4NjhF OTg0MTNFMzkwHhcNMjUwNDA0MTYxNjQ5WhcNMjUwNDExMTYxNjQ5WjAYMRYwFAYD VQQDEw02N2YwMDVmMi1mMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Jfw1BbMMcPsCYto+iNCqHVgWXakf5/8lV6qfeOov0PDEG6PH1e6zCfzY6n5 cQEPykGr+TermF6Wdyot+fMD15hmN0GVEU9tmMos9oXTjOc4uN3c8C+VjLELTr/R ETFbofPkOCd3pKFlHEjSJjT6n788lwCri0s2sLeENdq5LP02NzEzm6tCC+S53j9u xk00AzTWYpnzxqKuUIxZnDGH12WSmOsB1RXexW1A+UXWOMGWiZkCPcW4eZFNtA2t SdpfMQ9EY64Vr1oMre/WHyOPkKU9elulCdH2JoRdLKFPnscwKhqwFKRMKGgYggMq Y9XwZ+YtlBfl6DCk9SlRutiXawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDeM8Wi Xo1Ugvg3q77WqBqew4ctMB8GA1UdIwQYMBaAFNyQGBXckZc8r6Gai1dvho6YQT45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhCNS8zMkM2NTY4Q0Y2 RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6eXZvWnFMVjItR2pwaEJQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKQVlGZHlSbHp5dm9acUxWMi1HanBoQlBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhCNS8zMkM2NTY4Q0Y2RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6 eXZvWnFMVjItR2pwaEJQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3VXQoH34mySweom1r+ePnPQXexLxahXDS1MQST+qvYMd1b9zdw4Nc SolNBGMULFpNeV0gD02cU2mB3bmM7eCzMssXQDXoBN+jVtf1Q8rigZxYzIXTv8jT yM+DSEUprTqAif/H5CM4FWzcEkOWN0qUwP4RS2mQrd8YPaCAArJG+8pI7KbWg+Ik BhMFES+ipsYaTeSv7ktGKvoxq8PF5MeiJe3NyeykOMM8sA0V+AXiWQHFBrjGkAMO kSeelXzcHwwUh6kBQ2x2b+ZXDbUQ4hSZ4dycGGQrvQyzPdazP9e8zR7WAtI4ns96 u6WNT+5pcSGoysW/TMFSpV9HSxyNglG0 -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:19 2025 by rpki-client