$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: 4htgSAxifZM7UcIcplxZNUVskZxvi6FYLET24Any9X4= Subject key identifier: 74:81:43:53:8B:62:8E:0F:B7:65:89:E0:A6:EA:EC:92:6B:1E:21:14 Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 024C Signing time: Fri 11 Apr 2025 01:47:49 +0000 Manifest this update: Fri 11 Apr 2025 01:47:49 +0000 Manifest next update: Fri 18 Apr 2025 01:47:49 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: MW3AZXGmW3igvmVRe0FA8ZqW1I11cbC/T4u5IALNJAQ=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: rj0KTjzf+DtNN3R81snVNcDYp+a1rWXY0u8rHIUHCk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Apr 11 01:47:49 2025 GMT Not After : Apr 18 01:47:49 2025 GMT Subject: CN=67f874c5-9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:be:d0:f9:99:d8:8b:e0:d6:be:0a:a1:31:66: a6:5b:5f:17:5f:e2:11:03:f1:21:16:43:79:5c:d3: 53:74:7c:48:49:64:5d:b9:91:eb:91:c9:4a:a3:d7: 57:e5:f1:14:37:08:9e:3e:5f:ab:ec:b4:96:40:9e: 1b:ab:cd:96:a9:33:22:f8:56:f2:be:52:65:a2:57: 45:f4:a8:92:17:8a:80:1a:83:52:3f:7f:f5:09:f9: e1:37:5b:bf:44:4c:70:07:e1:54:cd:15:71:af:21: 6e:f8:5a:79:d6:33:9a:39:46:70:62:0f:af:fe:c0: 53:13:d4:08:26:bc:36:a1:94:bc:4e:c5:dc:f6:02: 38:bb:fa:1e:c1:fd:26:33:d7:3b:22:ba:e0:ef:b2: 16:8e:93:db:ea:3b:02:8c:85:79:85:a6:f1:7d:78: 99:bb:c9:9f:c3:6c:63:b9:56:0f:2b:de:ac:45:76: 43:f6:eb:a9:34:88:40:58:39:b3:d8:d2:67:f8:60: 40:7d:e4:c8:44:e9:9c:3d:c8:64:43:89:fb:5b:25: 35:88:0e:4b:6b:a2:ff:82:03:54:2b:86:89:01:c4: 02:68:05:6f:b4:56:ee:a0:c2:e0:01:f4:9f:eb:7c: 43:1d:7d:b7:06:20:b2:9e:54:d9:fa:e9:2f:55:14: ac:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:81:43:53:8B:62:8E:0F:B7:65:89:E0:A6:EA:EC:92:6B:1E:21:14 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:09:1c:de:7c:f0:5a:62:b9:1b:57:ba:c0:40:9e:c6:eb:0c: 89:30:b2:05:52:d7:ca:81:2f:bc:88:fc:09:ae:83:ea:b7:de: 39:0e:bd:d3:d5:4b:b4:b6:f0:15:bf:44:32:23:9c:45:1a:65: 56:0f:49:db:1a:aa:a4:4a:11:af:cd:87:23:28:6f:0a:d6:b0: 55:cc:8a:b6:7d:d0:f2:bc:55:ea:c2:64:72:dd:11:d7:18:c0: f2:ac:38:7e:59:da:9b:6a:ea:82:03:ae:28:0e:8c:8b:17:8d: 47:9b:a4:ba:fc:85:79:6a:aa:37:d7:21:c4:3a:95:e4:6e:b5: a1:0d:fd:41:f6:e6:c6:66:e1:09:ad:33:a2:ab:af:8b:ee:22: 32:a5:dd:f2:ab:3a:bd:79:bb:67:e5:95:de:32:7e:e8:ab:b1: a0:ca:66:f4:69:b4:2f:f2:33:60:3b:58:f6:f8:75:1d:1e:73: dc:16:2c:1f:99:44:d2:3f:10:8e:96:b8:16:4e:29:4e:99:e5: be:31:66:98:85:a8:6e:9f:81:d9:a5:f6:1f:7a:ea:10:53:55: 2e:2c:0e:73:5f:34:21:19:e1:6d:61:8c:20:52:dc:b0:0f:26: 2b:fe:4d:f2:4e:06:10:0a:5e:cb:4d:32:06:68:17:95:b8:40: f7:f6:fe:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUwNDExMDE0NzQ5WhcNMjUwNDE4MDE0NzQ5WjAYMRYwFAYD VQQDEw02N2Y4NzRjNS05NDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb7Q+ZnYi+DWvgqhMWamW18XX+IRA/EhFkN5XNNTdHxISWRduZHrkclKo9dX 5fEUNwiePl+r7LSWQJ4bq82WqTMi+FbyvlJloldF9KiSF4qAGoNSP3/1CfnhN1u/ RExwB+FUzRVxryFu+Fp51jOaOUZwYg+v/sBTE9QIJrw2oZS8TsXc9gI4u/oewf0m M9c7Irrg77IWjpPb6jsCjIV5habxfXiZu8mfw2xjuVYPK96sRXZD9uupNIhAWDmz 2NJn+GBAfeTIROmcPchkQ4n7WyU1iA5La6L/ggNUK4aJAcQCaAVvtFbuoMLgAfSf 63xDHX23BiCynlTZ+ukvVRSsjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSBQ1OL Yo4Pt2WJ4Kbq7JJrHiEUMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMCRzefPBaYrkbV7rAQJ7G6wyJMLIFUtfKgS+8iPwJroPqt945Dr3T 1Uu0tvAVv0QyI5xFGmVWD0nbGqqkShGvzYcjKG8K1rBVzIq2fdDyvFXqwmRy3RHX GMDyrDh+WdqbauqCA64oDoyLF41Hm6S6/IV5aqo31yHEOpXkbrWhDf1B9ubGZuEJ rTOiq6+L7iIypd3yqzq9ebtn5ZXeMn7oq7Ggymb0abQv8jNgO1j2+HUdHnPcFiwf mUTSPxCOlrgWTilOmeW+MWaYhahun4HZpfYfeuoQU1UuLA5zXzQhGeFtYYwgUtyw DyYr/k3yTgYQCl7LTTIGaBeVuED39v6Y -----END CERTIFICATE-----Generated at Sat Apr 12 17:50:25 2025 by rpki-client