$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft File: PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft (raw, json) Hash identifier: ndpt8ksXUvgplRUkK+/o88555sD6vsqpIdmDKhRFZTQ= Subject key identifier: CE:04:03:47:65:66:71:97:8C:01:07:F8:28:05:7A:51:D6:74:C4:65 Authority key identifier: 3E:C4:F7:5E:64:B7:2A:88:78:6A:F4:B9:7C:98:48:6C:BD:6D:2F:56 Certificate issuer: /CN=A914E0B6/serialNumber=3EC4F75E64B72A88786AF4B97C98486CBD6D2F56 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft Manifest number: E1 Signing time: Wed 09 Apr 2025 04:23:29 +0000 Manifest this update: Wed 09 Apr 2025 04:23:29 +0000 Manifest next update: Wed 16 Apr 2025 04:23:29 +0000 Files and hashes: 1: PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl (hash: A1fni2wl0Rqmwh+RlO05krQtGqaib5+9HbHGWwxrrDQ=) 2: 36FC37FABF3111EE886C313CC4F9AE02.roa (hash: yT3Pw8KgyLGtb1vkHoOYSitDAsAc7QcaGePhN0Bj1+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6 Validity Not Before: Apr 9 04:23:29 2025 GMT Not After : Apr 16 04:23:29 2025 GMT Subject: CN=67f5f641-87fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1f:92:f9:f5:92:ec:e5:57:85:d1:4e:23:91: d5:81:dd:22:ac:3c:84:6a:35:b5:6a:62:87:9f:dc: c1:77:63:7c:9b:9d:45:34:91:00:25:64:42:ed:3e: 3f:75:b8:f8:15:e5:5b:a9:66:f5:34:71:23:2d:87: d1:b3:10:1e:f3:b5:c4:fc:5f:ba:60:7a:2c:c0:5d: f2:ef:c7:c8:46:b3:59:07:b3:7a:b9:c8:c0:0c:f8: 5c:7d:a7:d8:11:f8:b2:4a:65:15:a2:44:21:49:01: f7:bd:4e:c7:95:39:16:37:53:a8:a7:fa:c3:7f:ea: 45:3c:d5:e5:96:b4:dc:dd:0c:53:b3:ff:b9:86:14: 56:ea:8a:e8:42:91:39:e3:6a:eb:c2:92:93:7e:92: f8:8d:a0:cc:7c:7a:5e:11:3d:0d:4d:05:e5:6d:cd: 72:c6:8f:9a:1e:22:6d:09:02:9b:48:4b:71:6b:b0: 44:a8:3c:ba:62:f0:3d:0f:35:b6:3e:84:79:e7:42: e1:53:5b:9d:02:8a:ca:8f:20:fa:b7:88:2f:25:2b: 64:c6:0a:9a:75:fd:86:13:1e:d0:ff:10:65:ee:f5: 96:ab:09:9a:c1:e4:9d:fc:d5:b1:b8:98:12:ac:1f: 65:3a:49:d4:de:82:5b:27:e2:0c:65:80:2b:f4:8a: 61:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:04:03:47:65:66:71:97:8C:01:07:F8:28:05:7A:51:D6:74:C4:65 X509v3 Authority Key Identifier: keyid:3E:C4:F7:5E:64:B7:2A:88:78:6A:F4:B9:7C:98:48:6C:BD:6D:2F:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:31:d5:de:0f:f5:0f:cf:e5:3b:a4:cc:f8:52:06:6a:79:3b: 55:a2:76:06:33:08:99:53:4b:1f:6e:08:da:9a:60:a2:41:7a: 87:82:d0:9f:a2:c0:bf:a5:fa:1d:9e:6b:b8:c7:de:74:50:e5: ce:4d:4c:cf:1c:f8:5f:a2:ae:aa:f4:67:32:4d:75:35:19:9a: 00:56:79:6c:7c:90:97:97:70:85:4a:5a:95:78:67:7f:7d:33: e2:97:8c:b0:50:4f:33:04:b3:9a:b7:db:82:6e:7f:98:1b:11: 4e:89:f7:79:53:cb:06:3e:01:2f:48:c5:f2:a0:b3:db:00:9d: fc:03:1b:e5:45:6b:e1:26:6e:46:b5:5f:14:0e:ae:1c:4e:62: 88:1c:fd:5d:fe:01:83:d9:21:ec:bd:fe:ca:95:0e:0f:02:41: 44:ee:57:76:1e:e2:4b:f2:9e:b8:2f:56:27:10:ff:28:f2:81: 80:e7:91:5b:66:f5:8b:cb:12:23:0a:31:fc:4a:f4:33:71:a2: e8:4e:71:fa:cd:e1:b0:c5:e3:0d:db:8e:a7:51:5d:72:bf:f5: f9:d1:e6:9f:9f:32:97:bf:16:ca:a6:51:2d:e3:4d:34:64:c8: fb:d2:9f:61:da:81:00:26:fd:8e:ed:5e:25:13:13:e3:0d:e8: 09:d4:38:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwQjYxMTAvBgNVBAUTKDNFQzRGNzVFNjRCNzJBODg3ODZBRjRCOTdDOTg0ODZD QkQ2RDJGNTYwHhcNMjUwNDA5MDQyMzI5WhcNMjUwNDE2MDQyMzI5WjAYMRYwFAYD VQQDEw02N2Y1ZjY0MS04N2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1R+S+fWS7OVXhdFOI5HVgd0irDyEajW1amKHn9zBd2N8m51FNJEAJWRC7T4/ dbj4FeVbqWb1NHEjLYfRsxAe87XE/F+6YHoswF3y78fIRrNZB7N6ucjADPhcfafY EfiySmUVokQhSQH3vU7HlTkWN1Oop/rDf+pFPNXllrTc3QxTs/+5hhRW6oroQpE5 42rrwpKTfpL4jaDMfHpeET0NTQXlbc1yxo+aHiJtCQKbSEtxa7BEqDy6YvA9DzW2 PoR550LhU1udAorKjyD6t4gvJStkxgqadf2GEx7Q/xBl7vWWqwmaweSd/NWxuJgS rB9lOknU3oJbJ+IMZYAr9Iph3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4EA0dl ZnGXjAEH+CgFelHWdMRlMB8GA1UdIwQYMBaAFD7E915ktyqIeGr0uXyYSGy9bS9W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBCNi81RkJFNDNCNEJG MzAxMUVFQkU0RjNDMUVDNEY5QUUwMi9Qc1QzWG1TM0tvaDRhdlM1ZkpoSWJMMXRM MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BzVDNYbVMzS29oNGF2UzVmSmhJYkwxdEwxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBCNi81RkJFNDNCNEJGMzAxMUVFQkU0RjNDMUVDNEY5QUUwMi9Qc1QzWG1TM0tv aDRhdlM1ZkpoSWJMMXRMMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcMdXeD/UPz+U7pMz4UgZqeTtVonYGMwiZU0sfbgjammCiQXqHgtCf osC/pfodnmu4x950UOXOTUzPHPhfoq6q9GcyTXU1GZoAVnlsfJCXl3CFSlqVeGd/ fTPil4ywUE8zBLOat9uCbn+YGxFOifd5U8sGPgEvSMXyoLPbAJ38AxvlRWvhJm5G tV8UDq4cTmKIHP1d/gGD2SHsvf7KlQ4PAkFE7ld2HuJL8p64L1YnEP8o8oGA55Fb ZvWLyxIjCjH8SvQzcaLoTnH6zeGwxeMN246nUV1yv/X50eafnzKXvxbKplEt4000 ZMj70p9h2oEAJv2O7V4lExPjDegJ1Diz -----END CERTIFICATE-----Generated at Sat Apr 12 00:31:15 2025 by rpki-client