$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: 23V6KzdHRCQnF4+2mL56q8oltRpT8yPN9jbN6IOlgj0= Subject key identifier: 89:03:AE:95:C5:1C:CE:AE:EE:9D:3C:9B:33:E8:87:E5:95:06:D9:93 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1014 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0FDF Signing time: Fri 04 Apr 2025 17:37:48 +0000 Manifest this update: Fri 04 Apr 2025 17:37:48 +0000 Manifest next update: Fri 11 Apr 2025 17:37:48 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: ksxWYlCVbotDZgcip2C2TPJfLDewAyfdDXdQ4QN/X6k=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: mhCrCLIryxh44WtZLA41qeaUSE+ipopXbFtA9uM/L9M=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: HXSaiv/+h3LslBJCo/sEGl2BDqm+Kqjgd7hBF3MDYrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4116 (0x1014) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B Validity Not Before: Apr 4 17:37:48 2025 GMT Not After : Apr 11 17:37:48 2025 GMT Subject: CN=67f018ec-1600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:95:e5:c9:e2:89:8b:a4:66:96:30:7e:cb: 42:67:f2:52:66:05:99:06:65:28:b5:80:58:52:24: ff:ab:23:81:76:66:66:eb:5f:13:63:2e:8c:23:7a: f4:c2:5e:a1:11:0e:08:8c:3b:14:39:4d:76:80:e2: af:91:97:c1:7f:b2:b4:42:47:1b:82:58:bb:93:af: 9f:1d:09:76:19:25:e5:cb:20:87:6c:e1:a2:cb:e7: 17:60:b7:79:5a:36:26:ac:bd:60:bf:5b:bd:d2:3a: e3:5b:44:95:e6:7e:c1:ad:56:2a:09:e3:9f:51:6b: 89:98:d6:44:db:96:31:07:1e:36:7a:8b:08:1e:29: d6:57:dc:23:1c:5a:77:1e:79:90:26:bb:77:64:83: d7:29:c0:97:a9:7c:93:2a:b6:b9:af:3e:01:50:d1: 21:89:62:f0:e0:e7:6e:2c:98:a4:2d:77:2e:7e:fc: ac:1d:ec:5e:da:bb:77:d8:e0:67:ad:bc:3e:28:92: 7a:a8:39:7b:7e:b8:da:97:40:06:67:6a:e8:a8:fc: bf:f4:87:9e:31:f2:b8:8d:42:48:1d:0d:28:47:77: 99:c7:a6:97:a4:a7:97:1f:fa:20:2d:71:0b:c5:80: ba:f0:3d:7a:af:a0:c5:59:90:30:c1:ce:77:60:49: 9d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:03:AE:95:C5:1C:CE:AE:EE:9D:3C:9B:33:E8:87:E5:95:06:D9:93 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:94:8b:02:b8:38:71:c5:0a:c3:22:ef:8e:ca:21:9b:a0:27: 73:c0:03:2c:11:4f:05:a7:03:48:5b:ad:c2:08:ee:0a:d2:e6: e3:1f:ef:4d:bf:3f:07:64:fa:99:06:b3:46:c5:38:a4:2e:58: 26:40:80:8f:63:f3:95:ce:cb:34:0e:e7:93:f4:dd:ba:4e:ea: 2e:2b:c8:dd:8d:8a:67:8f:5c:03:ba:c9:96:f3:30:1c:ca:de: 18:8d:66:6e:20:1f:bf:ad:94:6e:aa:fe:95:b4:aa:41:95:1d: 8a:40:9e:52:27:ef:c6:61:2c:f4:25:93:35:5d:72:33:c0:e9: cd:c1:e8:4b:0c:88:8b:70:44:ec:23:55:b3:a6:57:8f:27:f7: c0:04:ba:2e:fd:36:20:8c:f3:5b:5b:98:81:b4:9d:d8:2e:7c: 80:80:2d:fe:ad:b4:73:af:0b:d4:01:19:35:3d:3d:8c:bd:1a: 59:02:66:4d:35:9e:45:5e:9d:90:83:61:9a:ba:a6:ee:4d:c0: a2:36:40:fa:64:22:3c:e0:e0:03:eb:35:6d:ef:47:b5:8a:a0: c8:7a:1c:e1:e1:19:49:1d:11:c1:f2:49:14:d0:7f:8c:0d:fb: 64:94:f1:48:bd:42:60:b0:cd:29:16:91:bd:08:31:5f:32:f3: 10:03:55:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNDA0MTczNzQ4WhcNMjUwNDExMTczNzQ4WjAYMRYwFAYD VQQDEw02N2YwMThlYy0xNjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTSV5cniiYukZpYwfstCZ/JSZgWZBmUotYBYUiT/qyOBdmZm618TYy6MI3r0 wl6hEQ4IjDsUOU12gOKvkZfBf7K0Qkcbgli7k6+fHQl2GSXlyyCHbOGiy+cXYLd5 WjYmrL1gv1u90jrjW0SV5n7BrVYqCeOfUWuJmNZE25YxBx42eosIHinWV9wjHFp3 HnmQJrt3ZIPXKcCXqXyTKra5rz4BUNEhiWLw4OduLJikLXcufvysHexe2rt32OBn rbw+KJJ6qDl7frjal0AGZ2roqPy/9IeeMfK4jUJIHQ0oR3eZx6aXpKeXH/ogLXEL xYC68D16r6DFWZAwwc53YEmdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkDrpXF HM6u7p08mzPoh+WVBtmTMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPlIsCuDhxxQrDIu+OyiGboCdzwAMsEU8FpwNIW63CCO4K0ubjH+9N vz8HZPqZBrNGxTikLlgmQICPY/OVzss0DueT9N26TuouK8jdjYpnj1wDusmW8zAc yt4YjWZuIB+/rZRuqv6VtKpBlR2KQJ5SJ+/GYSz0JZM1XXIzwOnNwehLDIiLcETs I1WzplePJ/fABLou/TYgjPNbW5iBtJ3YLnyAgC3+rbRzrwvUARk1PT2MvRpZAmZN NZ5FXp2Qg2GauqbuTcCiNkD6ZCI84OAD6zVt70e1iqDIehzh4RlJHRHB8kkU0H+M DftklPFIvUJgsM0pFpG9CDFfMvMQA1Wl -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:14 2025 by rpki-client