$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft File: f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft (raw, json) Hash identifier: 73eAHaA5OqT3YjjwUgi8AXOEyQdJ6Va74H57ZCn9zBY= Subject key identifier: 73:74:C1:15:CF:33:86:B5:AF:6D:DF:13:49:2C:C3:73:C6:04:DB:98 Authority key identifier: 7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 Certificate issuer: /CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft Manifest number: 69 Signing time: Sat 29 Mar 2025 06:20:15 +0000 Manifest this update: Sat 29 Mar 2025 06:20:14 +0000 Manifest next update: Sat 05 Apr 2025 06:20:14 +0000 Files and hashes: 1: f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl (hash: 2Ceo2QVNDsbCU4moJR5waWYeBy+Jh+X0xTmhE3UkvR0=) 2: B47102FE77F211EFBA1E9F7EC4F9AE02.roa (hash: SEeajkndfK9XKBY3HRdlq0CgTt3jAkAhBVklDZv6c2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600 Validity Not Before: Mar 29 06:20:14 2025 GMT Not After : Apr 5 06:20:14 2025 GMT Subject: CN=67e7911e-15b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f8:4f:8c:61:f9:38:15:fa:af:55:dd:a3:02: cd:2d:e8:f2:f1:86:b0:38:69:cf:78:05:a8:7c:26: 6c:aa:f8:5d:71:db:f6:76:ff:ec:77:0b:c3:eb:9f: 8d:85:39:e6:ae:3e:1f:b8:e6:79:0c:df:5e:7c:cd: 18:24:c8:38:18:1d:c6:e1:db:26:bd:23:06:6a:cd: 0c:c8:42:8b:45:fb:81:a4:ca:38:22:cd:1e:45:e6: 1d:e2:e4:ca:df:dd:b8:85:eb:c7:32:49:df:8e:2d: fe:3c:17:52:ae:db:ca:27:c8:c3:b1:53:30:7a:8a: e0:9f:2f:8f:80:1e:ca:90:7c:ca:5b:a8:90:18:46: 28:ea:89:a4:0c:7f:3c:54:a0:f6:08:4d:18:bb:00: fd:8b:52:d8:f5:70:2c:3f:69:0d:9d:26:48:49:e7: ed:54:01:2e:da:e2:de:f4:4c:fd:e4:a2:3e:56:30: af:43:d3:5f:57:d3:26:1b:cf:b5:5f:2f:1d:21:bd: 58:7a:3d:35:fa:88:9f:c4:8e:33:36:0b:c3:ce:5d: 90:1f:95:9e:14:54:55:8d:07:ec:5e:5e:27:64:6f: 9a:ef:f8:fe:44:1d:28:64:bd:19:89:cd:a6:85:f4: ac:53:d4:0a:04:56:51:8b:36:92:31:e9:8d:02:19: de:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:74:C1:15:CF:33:86:B5:AF:6D:DF:13:49:2C:C3:73:C6:04:DB:98 X509v3 Authority Key Identifier: keyid:7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:d6:97:cd:bc:09:04:1d:03:0a:5d:96:88:c7:87:03:a7:f1: d6:c1:c0:17:dd:29:dd:d4:78:fa:9c:ab:9a:0a:ea:51:bb:90: 1a:71:25:1a:f1:03:be:25:de:fc:40:9a:a2:55:12:0e:b4:ee: 77:16:96:fe:cd:b5:53:15:4c:d6:bb:2d:00:70:bd:8c:a2:73: de:33:04:0a:1a:7f:60:29:19:c1:e5:4b:24:ae:11:52:65:0c: 62:67:89:2b:c0:e5:15:6f:e3:e6:8e:23:85:bb:2a:c2:a2:6f: 57:bc:6f:2b:1b:8e:86:35:6c:16:7d:02:8e:ca:1c:79:52:5e: 7c:12:fb:15:d0:d5:3d:05:d1:dc:f7:5c:05:85:b5:d1:d9:92: f8:33:d0:83:d9:dd:24:ac:b5:d6:d1:61:ee:4d:15:cb:c5:26: 3d:2b:e8:d1:0e:9c:b4:58:cd:ac:cc:74:b2:c6:b2:f8:35:69: 45:ff:f2:a3:d0:d1:84:ef:82:39:f6:db:2e:96:da:d1:2a:ee: fe:c1:54:43:cc:37:70:90:c9:df:bb:a6:17:fe:29:b0:a5:0b: 9c:68:c2:6f:70:36:ff:d6:c7:db:5f:fc:7e:a2:be:40:73:a9: 14:f3:44:25:a8:bb:bf:48:bd:be:b3:6f:e2:0c:12:6d:66:28: 9b:8a:31:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTYwMDExMC8GA1UEBRMoN0Y4MjQ1QkJENEQ0NTk3MjFCNDFENEZGMkJCRkI0MjVG RjExODk1MzAeFw0yNTAzMjkwNjIwMTRaFw0yNTA0MDUwNjIwMTRaMBgxFjAUBgNV BAMTDTY3ZTc5MTFlLTE1YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2+E+MYfk4FfqvVd2jAs0t6PLxhrA4ac94Bah8Jmyq+F1x2/Z2/+x3C8Prn42F OeauPh+45nkM3158zRgkyDgYHcbh2ya9IwZqzQzIQotF+4GkyjgizR5F5h3i5Mrf 3biF68cySd+OLf48F1Ku28onyMOxUzB6iuCfL4+AHsqQfMpbqJAYRijqiaQMfzxU oPYITRi7AP2LUtj1cCw/aQ2dJkhJ5+1UAS7a4t70TP3koj5WMK9D019X0yYbz7Vf Lx0hvVh6PTX6iJ/EjjM2C8POXZAflZ4UVFWNB+xeXidkb5rv+P5EHShkvRmJzaaF 9KxT1AoEVlGLNpIx6Y0CGd6fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc3TBFc8z hrWvbd8TSSzDc8YE25gwHwYDVR0jBBgwFoAUf4JFu9TUWXIbQdT/K7+0Jf8RiVMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNjAwLzJBQTdENDVFNzdG MTExRUZBQzExMjk0MkM0RjlBRTAyL2Y0SkZ1OVRVV1hJYlFkVF9LNy0wSmY4UmlW TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZjRKRnU5VFVXWEliUWRUX0s3LTBKZjhSaVZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF NjAwLzJBQTdENDVFNzdGMTExRUZBQzExMjk0MkM0RjlBRTAyL2Y0SkZ1OVRVV1hJ YlFkVF9LNy0wSmY4UmlWTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALDWl828CQQdAwpdlojHhwOn8dbBwBfdKd3UePqcq5oK6lG7kBpxJRrx A74l3vxAmqJVEg607ncWlv7NtVMVTNa7LQBwvYyic94zBAoaf2ApGcHlSySuEVJl DGJniSvA5RVv4+aOI4W7KsKib1e8bysbjoY1bBZ9Ao7KHHlSXnwS+xXQ1T0F0dz3 XAWFtdHZkvgz0IPZ3SSstdbRYe5NFcvFJj0r6NEOnLRYzazMdLLGsvg1aUX/8qPQ 0YTvgjn22y6W2tEq7v7BVEPMN3CQyd+7phf+KbClC5xowm9wNv/Wx9tf/H6ivkBz qRTzRCWou79Ivb6zb+IMEm1mKJuKMcg= -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:08 2025 by rpki-client