$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft File: m8V5k3xyDN2n11YYtyJj0kza_K4.mft (raw, json) Hash identifier: UNmb0yXYrSEmNgMWovrOAJ2V5ZAQJyO52JJ6eZa/S90= Subject key identifier: C1:D7:94:3C:3B:DC:30:1D:66:6C:82:61:EF:86:3B:D2:1D:55:20:C0 Authority key identifier: 9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE Certificate issuer: /CN=A91396E7/serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft Manifest number: 59 Signing time: Fri 11 Apr 2025 06:21:08 +0000 Manifest this update: Fri 11 Apr 2025 06:21:07 +0000 Manifest next update: Fri 18 Apr 2025 06:21:07 +0000 Files and hashes: 1: m8V5k3xyDN2n11YYtyJj0kza_K4.crl (hash: nnul3HmLjbdV5xX1j+eWHT62o9ba7c1BYKe7LbfOfxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91396E7, serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE Validity Not Before: Apr 11 06:21:07 2025 GMT Not After : Apr 18 06:21:07 2025 GMT Subject: CN=67f8b4d4-e999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b6:64:f4:c7:08:8b:d8:7e:06:24:32:08:a2: 26:64:23:96:c4:c2:d2:e6:9c:45:3f:1a:bc:b8:ea: 65:fc:2c:0c:1e:75:f5:67:39:60:57:5c:d2:aa:f7: 5c:ee:06:8a:44:9d:6d:34:f6:28:79:75:5d:7c:67: 20:d9:fe:cd:e7:84:99:3d:be:1f:5f:ea:4c:b6:31: b9:8e:38:cf:97:ac:18:0d:9d:35:8b:66:44:46:5b: 95:5a:bf:e8:cc:db:f3:d1:05:1d:7a:e2:ee:c4:b9: 75:12:20:92:56:d5:fd:2c:cd:db:ec:6e:27:5d:ff: d7:5b:92:46:bc:e8:f1:2c:4a:ac:1c:63:97:8c:87: d0:76:3e:d3:84:a0:9c:2e:83:d1:10:57:95:53:44: d3:48:a8:26:93:98:9d:93:bf:2e:91:f7:b0:0a:d4: 79:e3:1e:84:f4:f1:0c:5d:78:8a:2b:37:b3:7a:f2: c1:50:4c:59:f3:d6:24:a1:a7:f8:f0:fb:be:62:5b: 2e:56:68:9b:fd:1a:8a:c2:10:7b:86:42:ad:1d:d6: 6b:fe:ca:15:e6:4c:ac:5e:46:01:9e:94:33:b1:e6: f0:66:af:8d:45:fe:3c:18:b8:38:67:01:04:09:a6: c8:a0:2d:07:fd:bf:17:53:4c:09:d2:31:d3:17:ab: 3f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D7:94:3C:3B:DC:30:1D:66:6C:82:61:EF:86:3B:D2:1D:55:20:C0 X509v3 Authority Key Identifier: keyid:9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:77:1e:60:f4:9a:f8:6a:f9:0d:d8:5d:ea:07:f2:90:d6:7e: 7d:41:fb:c1:3a:16:c7:89:4e:47:5a:b8:ae:b9:81:c2:3b:1e: eb:25:2b:7c:05:cc:2b:1d:30:f4:b5:82:a4:63:dd:f5:89:5a: 7b:14:e5:45:ad:2f:2c:d3:21:69:12:56:1b:01:a5:1f:af:26: b6:c4:00:5c:f5:86:0e:5f:b1:c3:03:9a:40:6a:0e:03:2a:56: 88:f6:14:3f:81:f7:b2:eb:44:b8:1f:1e:a5:20:c4:5b:d8:19: 97:d5:b0:47:1a:9d:c0:17:97:83:f0:56:4f:cd:8a:10:07:00: b7:fb:4f:ee:d2:79:f9:5c:36:06:7e:15:e0:39:50:ea:7c:22: 9a:fa:02:a7:73:59:bc:8a:9d:47:74:89:5d:4e:12:d0:bf:1e: da:9c:bc:40:1b:98:08:b5:c7:b1:dc:26:c0:fc:cb:bf:38:24: 20:f2:63:07:7f:0c:5c:e3:4c:c3:ef:06:2a:85:3c:c6:10:9e: 8a:37:c6:e4:86:3f:61:53:04:19:35:d0:37:7b:81:3a:8a:35: 0b:bb:b4:ff:75:47:c4:b2:d9:9c:eb:4a:59:b2:24:44:97:dd: ca:c3:cc:bc:d7:40:62:f3:e8:8f:38:4e:66:bd:fa:69:52:73: 9d:16:10:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTZFNzExMC8GA1UEBRMoOUJDNTc5OTM3QzcyMENEREE3RDc1NjE4QjcyMjYzRDI0 Q0RBRkNBRTAeFw0yNTA0MTEwNjIxMDdaFw0yNTA0MTgwNjIxMDdaMBgxFjAUBgNV BAMTDTY3ZjhiNGQ0LWU5OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCftmT0xwiL2H4GJDIIoiZkI5bEwtLmnEU/Gry46mX8LAwedfVnOWBXXNKq91zu BopEnW009ih5dV18ZyDZ/s3nhJk9vh9f6ky2MbmOOM+XrBgNnTWLZkRGW5Vav+jM 2/PRBR164u7EuXUSIJJW1f0szdvsbidd/9dbkka86PEsSqwcY5eMh9B2PtOEoJwu g9EQV5VTRNNIqCaTmJ2Tvy6R97AK1HnjHoT08QxdeIorN7N68sFQTFnz1iShp/jw +75iWy5WaJv9GorCEHuGQq0d1mv+yhXmTKxeRgGelDOx5vBmr41F/jwYuDhnAQQJ psigLQf9vxdTTAnSMdMXqz9dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwdeUPDvc MB1mbIJh74Y70h1VIMAwHwYDVR0jBBgwFoAUm8V5k3xyDN2n11YYtyJj0kza/K4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NkU3LzBGMzg4NDI4OTEy NTExRUY5NDJBMkIyOEM0RjlBRTAyL204VjVrM3h5RE4ybjExWVl0eUpqMGt6YV9L NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbThWNWszeHlETjJuMTFZWXR5Smowa3phX0s0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NkU3LzBGMzg4NDI4OTEyNTExRUY5NDJBMkIyOEM0RjlBRTAyL204VjVrM3h5RE4y bjExWVl0eUpqMGt6YV9LNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIF3HmD0mvhq+Q3YXeoH8pDWfn1B+8E6FseJTkdauK65gcI7HuslK3wF zCsdMPS1gqRj3fWJWnsU5UWtLyzTIWkSVhsBpR+vJrbEAFz1hg5fscMDmkBqDgMq Voj2FD+B97LrRLgfHqUgxFvYGZfVsEcancAXl4PwVk/NihAHALf7T+7SeflcNgZ+ FeA5UOp8Ipr6AqdzWbyKnUd0iV1OEtC/HtqcvEAbmAi1x7HcJsD8y784JCDyYwd/ DFzjTMPvBiqFPMYQnoo3xuSGP2FTBBk10Dd7gTqKNQu7tP91R8Sy2ZzrSlmyJESX 3crDzLzXQGLz6I84Tma9+mlSc50WEMM= -----END CERTIFICATE-----Generated at Sun Apr 13 04:53:01 2025 by rpki-client