$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft File: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft (raw, json) Hash identifier: k9NgKtj4gVM5ZRT6eJ6S0AnY7QFvChdnTCflAhk4GpE= Subject key identifier: A3:B6:10:48:30:97:12:AB:71:F1:05:B8:70:94:61:E8:C2:DE:51:D1 Authority key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA Certificate issuer: /CN=A914E1C1/serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft Manifest number: 0255 Signing time: Sat 05 Apr 2025 01:56:34 +0000 Manifest this update: Sat 05 Apr 2025 01:56:34 +0000 Manifest next update: Sat 12 Apr 2025 01:56:34 +0000 Files and hashes: 1: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl (hash: 0hIGoGNlcaXsZv+yls1qI+jZoOfWmcYO4udGa6OewGk=) 2: 2541D62A7F9811ED93508538C4F9AE02.roa (hash: FUd/qskXH7I3VsZeo9p50JOxxkxMPP4+8p2jo1T6M4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1C1 Validity Not Before: Apr 5 01:56:34 2025 GMT Not After : Apr 12 01:56:34 2025 GMT Subject: CN=67f08dd2-3214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0b:0e:92:88:4b:8e:e2:6d:e5:61:32:e4:b8: ff:d1:bd:74:a0:bd:bd:a5:df:05:08:66:f4:fd:eb: d9:97:99:42:1f:07:8f:09:4b:34:ce:95:ba:1e:d8: 21:a0:3a:44:b8:dd:2e:5c:17:86:fc:1e:b9:59:0f: 95:c3:a1:ae:87:4c:b3:bf:37:92:a1:3f:64:fd:d8: e3:61:e4:f4:b0:99:3c:d1:67:6f:6e:d6:67:e9:57: 41:79:7f:a8:c6:35:63:66:82:f1:6e:de:73:b6:f2: 68:02:b1:c4:ce:8a:3a:83:f5:4a:e2:3f:b6:56:92: 72:33:74:0e:7e:a4:f0:16:51:65:40:16:de:70:64: eb:9d:50:4d:45:f7:1a:04:b7:e0:4c:e9:69:3d:31: 97:8e:a9:07:af:d6:09:b3:2f:8a:07:6a:f9:83:28: c9:8f:b9:48:d3:e4:61:24:e1:37:a4:4c:43:b5:47: 05:6c:2f:68:a3:85:90:08:81:bf:eb:57:8d:8f:e0: aa:58:d0:f2:83:be:be:a3:05:ee:1b:f1:f9:78:c5: a2:63:a8:17:a3:f5:6f:cc:9b:a3:66:43:3c:e4:4a: e1:3f:92:1f:d1:ff:ff:92:6a:d3:78:28:3d:73:67: 60:4c:99:12:72:86:a5:55:07:a2:f0:5c:c7:1b:f1: 06:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B6:10:48:30:97:12:AB:71:F1:05:B8:70:94:61:E8:C2:DE:51:D1 X509v3 Authority Key Identifier: keyid:E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:77:af:14:f5:7b:42:06:50:62:db:22:99:d0:9e:45:9b:57: c1:d4:aa:78:19:fe:00:c1:b1:df:43:80:b9:54:1f:6b:2d:fb: 47:fc:fb:cb:e8:10:b3:3c:6a:26:06:7e:f3:95:f4:eb:bc:59: d7:6b:98:b2:ae:92:eb:17:2b:58:71:9f:14:2a:d5:88:5d:f0: 2b:62:c7:78:48:9b:92:5f:73:0d:96:56:21:8a:4e:c6:95:5c: d8:9a:30:8c:0b:df:63:91:d2:5f:53:bb:0d:ba:31:ea:04:df: 55:c5:32:ad:8b:8a:0a:e7:27:20:cb:05:33:92:29:9a:42:15: c8:ec:50:32:1a:a3:9f:67:0c:78:72:f0:e3:a6:df:eb:8a:8d: 1b:db:e1:32:37:09:d7:b4:1d:e4:8a:3e:05:81:99:b0:b7:94: 8e:e9:e3:5f:29:c4:bc:f5:df:1e:4d:cc:1f:25:b8:95:60:a0: 16:50:d6:a7:53:7c:10:8c:83:3d:bd:57:44:f7:a3:08:20:66: e6:d6:c7:aa:18:b7:f0:4f:6c:d5:c9:bc:bc:82:15:87:4a:62: fe:db:a6:9e:78:70:f9:a6:d6:7d:be:b8:45:e2:ac:53:3a:f3: 1c:71:4e:30:f8:82:a7:02:f0:81:2b:3d:07:fc:19:f2:fc:4d: 3b:eb:c7:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQzExMTAvBgNVBAUTKEUzRjMxNTREOTg4Mjc2QTJGNTQxRTVFQTYyODE4Qzc3 MEJCQjgwRUEwHhcNMjUwNDA1MDE1NjM0WhcNMjUwNDEyMDE1NjM0WjAYMRYwFAYD VQQDEw02N2YwOGRkMi0zMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wsOkohLjuJt5WEy5Lj/0b10oL29pd8FCGb0/evZl5lCHwePCUs0zpW6Htgh oDpEuN0uXBeG/B65WQ+Vw6Guh0yzvzeSoT9k/djjYeT0sJk80WdvbtZn6VdBeX+o xjVjZoLxbt5ztvJoArHEzoo6g/VK4j+2VpJyM3QOfqTwFlFlQBbecGTrnVBNRfca BLfgTOlpPTGXjqkHr9YJsy+KB2r5gyjJj7lI0+RhJOE3pExDtUcFbC9oo4WQCIG/ 61eNj+CqWNDyg76+owXuG/H5eMWiY6gXo/VvzJujZkM85ErhP5If0f//kmrTeCg9 c2dgTJkScoalVQei8FzHG/EGywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKO2EEgw lxKrcfEFuHCUYejC3lHRMB8GA1UdIwQYMBaAFOPzFU2Ygnai9UHl6mKBjHcLu4Dq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFDMS9EQkU1RjJDQTEw QzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2RxTDFRZVhxWW9HTWR3dTdn T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfTVZUWmlDZHFMMVFlWHFZb0dNZHd1N2dPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFDMS9EQkU1RjJDQTEwQzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2Rx TDFRZVhxWW9HTWR3dTdnT28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLd68U9XtCBlBi2yKZ0J5Fm1fB1Kp4Gf4AwbHfQ4C5VB9rLftH/PvL 6BCzPGomBn7zlfTrvFnXa5iyrpLrFytYcZ8UKtWIXfArYsd4SJuSX3MNllYhik7G lVzYmjCMC99jkdJfU7sNujHqBN9VxTKti4oK5ycgywUzkimaQhXI7FAyGqOfZwx4 cvDjpt/rio0b2+EyNwnXtB3kij4FgZmwt5SO6eNfKcS89d8eTcwfJbiVYKAWUNan U3wQjIM9vVdE96MIIGbm1seqGLfwT2zVyby8ghWHSmL+26aeeHD5ptZ9vrhF4qxT OvMccU4w+IKnAvCBKz0H/Bny/E0768e9 -----END CERTIFICATE-----Generated at Sun Apr 6 06:33:16 2025 by rpki-client