$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: CdtdYUb0ihsjdql4mMNyi93do6A/VOh6hooluRaUTzw= Subject key identifier: 80:3C:35:FE:A1:91:C6:53:F4:94:E3:52:54:40:7A:48:7C:AD:F9:CE Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 037E Signing time: Wed 09 Apr 2025 01:07:31 +0000 Manifest this update: Wed 09 Apr 2025 01:07:30 +0000 Manifest next update: Wed 16 Apr 2025 01:07:30 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: Q7KQqlNYtfRBOIvncn/yeHUX/PHcY2o6F7jhf2oj/Kg=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5 Validity Not Before: Apr 9 01:07:30 2025 GMT Not After : Apr 16 01:07:30 2025 GMT Subject: CN=67f5c853-e21a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c0:f7:d8:2c:aa:81:6a:e5:c2:db:85:93:37: 54:be:f7:08:de:b5:2c:96:51:c2:24:33:fa:d6:51: 76:ef:b5:37:b1:41:b1:f7:ef:e3:10:91:ee:b5:d3: 0a:a6:7b:0a:ad:23:3e:a7:c1:71:44:14:1c:a2:c0: 8e:25:88:8b:ff:64:16:8f:e6:5b:66:4a:be:e7:b9: f0:a9:51:42:8a:54:12:da:cf:6d:dc:98:ee:24:ce: cd:87:a2:2b:00:f8:ed:b9:48:76:50:be:e2:0a:c7: 2d:21:36:f5:26:8d:d8:20:3d:7f:73:f5:e0:84:30: b7:e8:92:38:65:60:c3:6f:7f:bf:aa:2b:91:7a:8c: 86:3b:2a:d8:4c:a6:e9:3d:77:96:0d:b9:90:b8:60: 81:85:20:48:6c:54:82:55:41:3e:25:12:4e:3d:8f: b5:41:68:95:8a:b9:04:b2:47:c0:0c:ec:5a:88:2a: 02:1a:5c:fb:53:89:f0:34:4c:c7:c4:f2:12:69:3a: 41:bf:81:36:85:ad:5d:69:33:2c:21:bb:82:07:00: d8:6b:1a:24:48:c5:25:9e:67:94:7b:a5:ba:cb:cd: fa:49:05:e4:32:62:78:fa:91:45:92:2e:13:77:00: 82:ba:5b:c2:8f:03:26:ec:9b:86:76:a6:b9:cc:0f: a6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3C:35:FE:A1:91:C6:53:F4:94:E3:52:54:40:7A:48:7C:AD:F9:CE X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2f:19:18:11:9f:05:83:7f:f2:a6:fd:28:1b:c6:70:8c:94: 89:84:3a:37:bf:85:cf:1c:9b:7b:8b:95:d9:ae:4c:99:d2:39: ec:1f:2f:50:5d:7f:8a:2a:97:86:73:3b:a1:c5:cc:2a:9f:9b: e2:bb:83:f0:6f:4d:21:d6:c6:60:48:72:08:27:e0:1b:07:96: 12:2b:7f:d7:46:a9:14:c1:b3:da:3b:af:7f:db:98:ee:89:98: ba:3c:85:63:f0:78:a1:20:df:7b:92:db:ca:b0:26:ea:50:9a: 25:8a:28:45:21:43:59:f2:7c:2f:cd:dd:d1:71:b3:d9:d2:60: d7:2b:43:9b:25:c2:b1:5b:4c:99:c7:65:65:d6:c1:89:d3:b5: d9:42:02:71:a5:8e:7b:a2:79:0b:cd:86:42:5b:3b:68:7f:d8: 83:2c:42:a4:6f:ad:b0:64:5f:86:6d:22:bb:f2:d1:65:06:a4: a1:03:2e:fb:60:01:db:d0:e3:9d:bb:8c:67:60:fb:2c:e7:ac: 88:6e:31:1d:0b:5b:e6:36:90:ea:08:4f:97:c0:f9:e2:f1:e9: 67:be:0f:3d:f6:ed:38:c7:8c:12:52:36:54:7a:5b:55:5e:a6: 2c:8f:84:a5:f5:c6:44:50:a5:e4:1f:8a:44:63:5a:b1:0b:70: 5d:fb:f9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUwNDA5MDEwNzMwWhcNMjUwNDE2MDEwNzMwWjAYMRYwFAYD VQQDEw02N2Y1Yzg1My1lMjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsD32CyqgWrlwtuFkzdUvvcI3rUsllHCJDP61lF277U3sUGx9+/jEJHutdMK pnsKrSM+p8FxRBQcosCOJYiL/2QWj+ZbZkq+57nwqVFCilQS2s9t3JjuJM7Nh6Ir APjtuUh2UL7iCsctITb1Jo3YID1/c/XghDC36JI4ZWDDb3+/qiuReoyGOyrYTKbp PXeWDbmQuGCBhSBIbFSCVUE+JRJOPY+1QWiVirkEskfADOxaiCoCGlz7U4nwNEzH xPISaTpBv4E2ha1daTMsIbuCBwDYaxokSMUlnmeUe6W6y836SQXkMmJ4+pFFki4T dwCCulvCjwMm7JuGdqa5zA+mEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA8Nf6h kcZT9JTjUlRAekh8rfnOMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMLxkYEZ8Fg3/ypv0oG8ZwjJSJhDo3v4XPHJt7i5XZrkyZ0jnsHy9Q XX+KKpeGczuhxcwqn5viu4Pwb00h1sZgSHIIJ+AbB5YSK3/XRqkUwbPaO69/25ju iZi6PIVj8HihIN97ktvKsCbqUJoliihFIUNZ8nwvzd3RcbPZ0mDXK0ObJcKxW0yZ x2Vl1sGJ07XZQgJxpY57onkLzYZCWztof9iDLEKkb62wZF+GbSK78tFlBqShAy77 YAHb0OOdu4xnYPss56yIbjEdC1vmNpDqCE+XwPni8elnvg899u04x4wSUjZUeltV XqYsj4Sl9cZEUKXkH4pEY1qxC3Bd+/lY -----END CERTIFICATE-----Generated at Thu Apr 10 23:56:38 2025 by rpki-client