$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: axNNGEBFHffG/WNmpzjwt4bjg7vwQbkz69NOToZ5T2E= Subject key identifier: 92:AA:D5:DA:55:A9:76:B3:61:51:D6:8E:C0:F0:3B:9E:4B:93:C9:56 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0196 Signing time: Thu 03 Apr 2025 02:49:47 +0000 Manifest this update: Thu 03 Apr 2025 02:49:47 +0000 Manifest next update: Thu 10 Apr 2025 02:49:47 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: dK1d4BULAAHI2XSGPxMwn26tV36Ncc9QQMEhR4A1/Us=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: gp0c0TAvNcGzlWuq4DB/NpWsaDumiulUkd34eH+poTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9 Validity Not Before: Apr 3 02:49:47 2025 GMT Not After : Apr 10 02:49:47 2025 GMT Subject: CN=67edf74b-2587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:77:f6:31:f9:1d:2b:c9:63:a8:3c:e0:aa: 08:b8:ec:c6:76:d9:1f:ac:3e:78:26:db:0e:3e:5f: 83:02:4b:b1:da:91:95:07:e3:87:38:38:29:36:e5: 7b:cb:7c:19:d0:2c:b8:08:f0:9b:8a:1d:8d:1a:85: 7f:85:75:6c:4b:85:b9:9a:d5:72:b8:05:d4:36:c0: 4d:ae:89:48:4c:c1:55:6c:1a:91:95:66:7a:a6:3b: b8:2f:48:78:86:1c:35:b4:2d:8c:c0:64:83:f7:fb: cc:73:55:8f:4a:30:6e:87:e2:b2:3f:8a:f5:05:a4: 6b:c6:99:16:7c:9c:19:02:95:b1:2f:fd:35:f9:3d: ce:f6:16:ec:33:e0:27:14:a8:78:27:f7:2b:bd:a8: 56:40:31:6c:f5:de:9d:9a:0f:e4:b2:27:7d:e0:04: 6e:fa:5b:e4:90:2e:30:6f:33:d3:22:14:41:4f:65: ef:c4:bc:b4:ee:c2:78:72:46:f1:9c:7f:49:c3:e7: 18:3b:a9:37:fe:32:3d:f4:96:23:ed:f5:bb:fb:6e: 92:87:5c:77:5c:f4:01:86:bd:ac:39:1f:4c:5d:98: fd:7f:a0:c2:db:cb:76:37:5d:88:e6:66:98:ca:4b: 2e:54:16:4d:51:98:57:fd:b3:bb:47:65:16:5e:b4: cc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AA:D5:DA:55:A9:76:B3:61:51:D6:8E:C0:F0:3B:9E:4B:93:C9:56 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:5b:39:72:23:0d:67:43:96:3f:43:40:62:a9:70:56:b1:69: 24:77:2c:af:36:4d:9c:e4:e5:b5:9e:36:5b:5b:b5:5d:70:98: 05:ba:dd:f6:13:5b:42:ac:b8:ad:1d:01:62:c8:ce:6a:75:70: 20:38:3d:f0:b6:62:f0:a6:67:e1:3d:5a:ae:c9:20:be:01:24: 39:e6:79:48:85:17:64:86:7d:73:49:e8:c1:a7:43:7f:1d:f4: d5:f7:a7:ea:5d:b1:3e:88:ca:c0:d2:0a:3a:8e:dd:ef:1c:a1: 7c:92:a9:10:a3:6d:7a:3b:a9:84:ce:47:e6:39:51:a5:74:b7: 2b:f9:d6:ee:11:a9:ef:48:93:cd:3e:12:7c:51:94:2d:0e:b9: 4a:3f:49:27:39:5a:c5:8f:d1:28:3e:a8:dc:85:b8:8a:e3:25: fb:0e:29:c7:54:b6:f6:66:f9:46:f0:3e:5b:f8:ca:d4:bf:c3: 04:05:78:d9:cd:ed:81:ba:69:fb:56:a1:4d:c2:8b:7a:24:d6: 5f:6f:fc:64:bd:e7:a1:23:5d:30:a2:c4:5a:71:e3:1c:a1:a5: a1:d0:e2:3d:07:6c:56:3c:30:e2:ee:02:fd:02:33:02:8c:ba: 67:d6:8b:09:e1:cc:ab:3c:8b:e1:ee:d6:fc:e9:d4:b9:0d:0d: 19:68:e5:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwNDAzMDI0OTQ3WhcNMjUwNDEwMDI0OTQ3WjAYMRYwFAYD VQQDEw02N2VkZjc0Yi0yNTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11V39jH5HSvJY6g84KoIuOzGdtkfrD54JtsOPl+DAkux2pGVB+OHODgpNuV7 y3wZ0Cy4CPCbih2NGoV/hXVsS4W5mtVyuAXUNsBNrolITMFVbBqRlWZ6pju4L0h4 hhw1tC2MwGSD9/vMc1WPSjBuh+KyP4r1BaRrxpkWfJwZApWxL/01+T3O9hbsM+An FKh4J/crvahWQDFs9d6dmg/ksid94ARu+lvkkC4wbzPTIhRBT2XvxLy07sJ4ckbx nH9Jw+cYO6k3/jI99JYj7fW7+26Sh1x3XPQBhr2sOR9MXZj9f6DC28t2N12I5maY yksuVBZNUZhX/bO7R2UWXrTMuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKq1dpV qXazYVHWjsDwO55Lk8lWMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9WzlyIw1nQ5Y/Q0BiqXBWsWkkdyyvNk2c5OW1njZbW7VdcJgFut32 E1tCrLitHQFiyM5qdXAgOD3wtmLwpmfhPVquySC+ASQ55nlIhRdkhn1zSejBp0N/ HfTV96fqXbE+iMrA0go6jt3vHKF8kqkQo216O6mEzkfmOVGldLcr+dbuEanvSJPN PhJ8UZQtDrlKP0knOVrFj9EoPqjchbiK4yX7DinHVLb2ZvlG8D5b+MrUv8MEBXjZ ze2Bumn7VqFNwot6JNZfb/xkveehI10wosRaceMcoaWh0OI9B2xWPDDi7gL9AjMC jLpn1osJ4cyrPIvh7tb86dS5DQ0ZaOUc -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:09 2025 by rpki-client