$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft File: IwN4FncHnC-7R0lkDwZXociO20Q.mft (raw, json) Hash identifier: tNhJcMM5KJNpMge25BkPZlSb7x7dhV2skwfnw3cLhn0= Subject key identifier: 68:CF:7B:CA:42:24:9E:AC:B8:CC:0A:15:C7:91:CE:1B:CB:E8:0A:1F Authority key identifier: 23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 Certificate issuer: /CN=A911E0B4/serialNumber=2303781677079C2FBB4749640F0657A1C88EDB44 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft Manifest number: 41 Signing time: Thu 03 Apr 2025 06:42:27 +0000 Manifest this update: Thu 03 Apr 2025 06:42:27 +0000 Manifest next update: Thu 10 Apr 2025 06:42:27 +0000 Files and hashes: 1: IwN4FncHnC-7R0lkDwZXociO20Q.crl (hash: dFOzjUiXNn8JET2DehRX2eFNwguKNVScLWHP4l8lXwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4 Validity Not Before: Apr 3 06:42:27 2025 GMT Not After : Apr 10 06:42:27 2025 GMT Subject: CN=67ee2dd3-53b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:7a:f7:49:e2:2f:30:27:8f:ed:82:f6:8c:7e: a4:a7:aa:c7:10:23:ab:96:03:a8:7e:0f:64:49:50: bb:22:5d:72:c1:86:4a:0e:18:fc:1f:8d:74:97:3e: 4b:04:a1:e4:ab:1f:1e:6f:2d:36:38:65:41:ee:78: d7:78:18:e0:cb:6a:91:07:8d:0d:77:3e:76:70:2f: 72:ad:ac:27:1d:96:31:cc:9e:a3:c4:84:5f:d2:e2: fd:41:ab:47:07:24:47:31:c9:63:44:ba:f1:6f:cc: 51:08:e0:60:01:96:88:37:06:af:80:f4:6e:a2:9b: 82:38:54:41:df:9b:ce:0a:60:2d:06:37:77:04:b5: 6c:c1:fe:a0:7d:ee:3e:f3:e5:30:e3:91:db:9a:df: 31:35:c1:54:58:a5:ca:38:a4:b7:99:36:66:fb:d6: 18:47:31:17:6d:4d:33:ff:45:b1:e8:f5:70:c0:9e: 8b:18:67:16:cf:e4:67:80:e5:d6:00:26:8e:af:d8: 47:92:da:f1:2d:4d:d1:ec:d2:af:0c:35:e9:ad:18: 56:03:67:73:a6:a2:f5:ce:20:02:0b:fa:78:33:70: bd:e7:aa:3b:18:93:5f:6a:c3:3b:06:eb:6b:50:32: 05:8d:d0:7e:c3:f0:b7:e6:5f:44:a8:05:f2:61:e5: 6f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:CF:7B:CA:42:24:9E:AC:B8:CC:0A:15:C7:91:CE:1B:CB:E8:0A:1F X509v3 Authority Key Identifier: keyid:23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:94:fb:e3:23:56:1a:49:df:45:fa:6d:54:1f:ac:ac:70:cb: 5d:96:10:81:dd:03:d6:6d:fb:1f:0a:28:e1:49:ff:01:de:5f: ab:5e:8d:03:cc:71:c4:1c:27:68:c2:05:13:f3:b0:04:cd:2a: a7:f6:a5:d1:02:0f:fa:c0:87:56:ae:57:07:58:dd:33:6c:f0: 04:35:d0:96:15:f8:69:4e:66:c4:ee:ef:ab:f8:c2:36:d3:aa: 9f:84:98:be:54:78:9f:0c:2f:cb:ae:e0:48:9f:cb:55:01:1b: ae:02:22:6f:ff:86:6e:05:75:09:ce:ce:d4:bd:0a:50:a3:34: 46:29:f6:71:3c:03:74:54:0b:81:d1:af:ed:3e:45:cd:0a:7e: 12:8a:d5:1b:52:9d:e2:52:17:78:b1:80:f5:f6:f7:27:26:ed: f6:0f:da:b9:b1:47:20:66:1c:df:43:36:a4:7e:4a:4e:4b:d7: ab:e2:a5:76:af:30:e2:57:45:ed:bc:17:dc:83:04:e4:5d:67: 77:99:3c:23:3f:58:aa:27:70:f5:40:1c:25:38:6c:83:d9:5b: fb:a6:ea:21:e0:43:fb:a2:ad:d2:e0:8f:fe:19:32:8b:2b:27: 77:38:49:f9:80:8c:c2:05:ff:6f:51:9f:b3:a7:61:a9:a0:56: c6:64:09:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMjMwMzc4MTY3NzA3OUMyRkJCNDc0OTY0MEYwNjU3QTFD ODhFREI0NDAeFw0yNTA0MDMwNjQyMjdaFw0yNTA0MTAwNjQyMjdaMBgxFjAUBgNV BAMTDTY3ZWUyZGQzLTUzYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2evdJ4i8wJ4/tgvaMfqSnqscQI6uWA6h+D2RJULsiXXLBhkoOGPwfjXSXPksE oeSrHx5vLTY4ZUHueNd4GODLapEHjQ13PnZwL3KtrCcdljHMnqPEhF/S4v1Bq0cH JEcxyWNEuvFvzFEI4GABlog3Bq+A9G6im4I4VEHfm84KYC0GN3cEtWzB/qB97j7z 5TDjkdua3zE1wVRYpco4pLeZNmb71hhHMRdtTTP/RbHo9XDAnosYZxbP5GeA5dYA Jo6v2EeS2vEtTdHs0q8MNemtGFYDZ3OmovXOIAIL+ngzcL3nqjsYk19qwzsG62tQ MgWN0H7D8LfmX0SoBfJh5W/LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaM97ykIk nqy4zAoVx5HOG8voCh8wHwYDVR0jBBgwFoAUIwN4FncHnC+7R0lkDwZXociO20Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0YyMjMxREU0QUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMtN1IwbGtEd1pYb2NpTzIw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXdONEZuY0huQy03UjBsa0R3WlhvY2lPMjBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0YyMjMxREU0QUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMt N1IwbGtEd1pYb2NpTzIwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC+U++MjVhpJ30X6bVQfrKxwy12WEIHdA9Zt+x8KKOFJ/wHeX6tejQPM ccQcJ2jCBRPzsATNKqf2pdECD/rAh1auVwdY3TNs8AQ10JYV+GlOZsTu76v4wjbT qp+EmL5UeJ8ML8uu4Eify1UBG64CIm//hm4FdQnOztS9ClCjNEYp9nE8A3RUC4HR r+0+Rc0KfhKK1RtSneJSF3ixgPX29ycm7fYP2rmxRyBmHN9DNqR+Sk5L16vipXav MOJXRe28F9yDBORdZ3eZPCM/WKoncPVAHCU4bIPZW/um6iHgQ/uirdLgj/4ZMosr J3c4SfmAjMIF/29Rn7OnYamgVsZkCcY= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:30 2025 by rpki-client