$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft File: tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft (raw, json) Hash identifier: CvZKqzy5DpDlLvSA3/O7UcgDqJl7U9cxjhjdm2KrWBY= Subject key identifier: 38:12:03:1A:21:B4:41:FB:D4:61:A0:70:00:64:F4:D2:4D:03:80:09 Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft Manifest number: 0163 Signing time: Thu 03 Apr 2025 03:24:35 +0000 Manifest this update: Thu 03 Apr 2025 03:24:34 +0000 Manifest next update: Thu 10 Apr 2025 03:24:34 +0000 Files and hashes: 1: tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl (hash: EjsGJhLSepwEVdGrErhHgpYVS5XEMSsnA7itfAg5hGo=) 2: 3A9B86AED0C011EEB134543DC4F9AE02.roa (hash: wrNQzAuRQVjZjCzpBxMXn6kt4KShOSGQnoTCPEIgheQ=) 3: 7203E112568C11EEA2DD9914C4F9AE02.roa (hash: gF8SP0nG0LD9gIiEjyyKah/KS5kKQp222tN7wLJ4Gdw=) 4: 3DA6569E383A11EF8998A252C4F9AE02.roa (hash: PvqaT2m26VjtkGuTElfQIOHqKDs1V4TPHM7KOHfBUSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D Validity Not Before: Apr 3 03:24:34 2025 GMT Not After : Apr 10 03:24:34 2025 GMT Subject: CN=67edff72-4b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:df:87:29:a2:c7:e5:53:fe:e1:12:9d:47: b5:ad:fc:38:e0:e0:29:16:0a:aa:06:5d:33:0a:02: 0c:4a:dc:94:2b:51:ff:34:42:51:5c:9c:4b:f2:0e: 52:96:31:2e:b2:65:e4:2e:ab:3e:f4:03:2e:6a:0a: 36:e9:8c:36:91:c5:88:e7:10:0b:3a:16:1b:30:10: dd:c4:2b:78:5a:99:f4:50:93:f2:32:46:03:0d:7d: 68:36:10:75:ad:92:74:bd:ba:fc:b8:8e:a8:06:4d: 7d:35:40:34:46:06:93:35:cf:01:2f:91:f7:b5:0d: eb:b0:52:d7:f2:10:b7:5c:c8:0a:66:2b:dc:12:97: 9d:fe:86:85:da:35:9d:15:d6:46:7b:df:fb:c7:6c: 05:6d:51:7e:59:25:7d:c0:ff:d7:2b:65:32:35:07: 93:f8:6c:27:4b:72:0f:08:e1:78:eb:8a:44:0f:19: 4d:eb:de:f6:24:08:b2:8c:38:61:17:bd:3b:b0:a4: 7a:c4:ac:ea:c4:2a:98:22:b3:1e:19:c9:98:46:c8: 54:43:5c:2b:8f:74:24:a0:57:64:57:d8:32:23:61: 11:87:db:65:a6:79:b9:fd:27:56:c5:33:95:19:73: 00:42:0c:a1:cb:4e:3b:50:76:4d:06:27:d8:bf:1f: 80:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:12:03:1A:21:B4:41:FB:D4:61:A0:70:00:64:F4:D2:4D:03:80:09 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:94:3d:a8:5d:20:48:2f:e0:c0:13:8d:73:f1:ae:52:d8:ff: e1:f4:93:f1:1f:3d:94:a9:d5:a9:41:69:8e:47:73:50:c2:a2: 7c:09:42:bc:98:28:62:16:04:7d:c9:ed:d8:7e:21:eb:ff:1b: f7:40:06:5d:60:47:9a:b3:00:74:f8:7a:e4:bd:0e:c0:c7:86: 70:d2:08:4f:4e:ab:84:1e:82:63:22:48:28:c2:42:aa:f8:98: ba:95:d7:7c:e5:fa:c5:12:b0:38:7a:2e:02:69:b9:9c:50:a2: 5b:61:5b:14:d8:62:6b:0b:e5:22:25:be:14:b0:09:25:ae:ae: 73:2b:18:f9:df:fb:55:65:9c:d4:43:b4:c1:bd:01:0f:e8:48: a9:89:f6:23:88:55:b4:dd:1d:c3:e5:bd:1e:17:5a:7d:f8:03: b4:8e:50:1d:e8:a9:35:5e:88:b5:af:45:66:4e:f1:05:f5:63: a3:90:86:12:29:42:28:ba:aa:c0:fc:83:8e:af:3b:36:54:96: ea:42:0b:74:02:9e:cc:74:8b:68:42:a1:24:b7:dc:ad:b9:b8: e8:27:8f:83:80:67:fd:0c:7d:10:3d:1e:5d:a4:61:fa:7b:4d: 68:1f:4a:07:26:ca:82:d3:b5:a8:8e:93:48:21:88:89:e2:2e: 1b:2a:7a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwNDAzMDMyNDM0WhcNMjUwNDEwMDMyNDM0WjAYMRYwFAYD VQQDEw02N2VkZmY3Mi00YjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BHfhymix+VT/uESnUe1rfw44OApFgqqBl0zCgIMStyUK1H/NEJRXJxL8g5S ljEusmXkLqs+9AMuago26Yw2kcWI5xALOhYbMBDdxCt4Wpn0UJPyMkYDDX1oNhB1 rZJ0vbr8uI6oBk19NUA0RgaTNc8BL5H3tQ3rsFLX8hC3XMgKZivcEped/oaF2jWd FdZGe9/7x2wFbVF+WSV9wP/XK2UyNQeT+GwnS3IPCOF464pEDxlN6972JAiyjDhh F707sKR6xKzqxCqYIrMeGcmYRshUQ1wrj3QkoFdkV9gyI2ERh9tlpnm5/SdWxTOV GXMAQgyhy047UHZNBifYvx+AVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgSAxoh tEH71GGgcABk9NJNA4AJMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0RC81N0MzN0UzODBBNTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0 Z3pVNFFnTGItN09WWmNsTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGlD2oXSBIL+DAE41z8a5S2P/h9JPxHz2UqdWpQWmOR3NQwqJ8CUK8 mChiFgR9ye3YfiHr/xv3QAZdYEeaswB0+HrkvQ7Ax4Zw0ghPTquEHoJjIkgowkKq +Ji6ldd85frFErA4ei4CabmcUKJbYVsU2GJrC+UiJb4UsAklrq5zKxj53/tVZZzU Q7TBvQEP6EipifYjiFW03R3D5b0eF1p9+AO0jlAd6Kk1Xoi1r0VmTvEF9WOjkIYS KUIouqrA/IOOrzs2VJbqQgt0Ap7MdItoQqEkt9ytubjoJ4+DgGf9DH0QPR5dpGH6 e01oH0oHJsqC07WojpNIIYiJ4i4bKnrp -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:19 2025 by rpki-client