$ rpki-client -vvf rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft File: xQRWVXeumfYZHJeDPdvdYk7CTpI.mft (raw, json) Hash identifier: Xf6wUCj4JCf0LWFC6xi0yg0SYVxbrBZE22iv8iu9fTY= Subject key identifier: D1:F9:19:52:1F:A0:73:75:C8:52:60:FF:4B:E6:A2:B3:B6:66:BD:AA Authority key identifier: C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 Certificate issuer: /CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft Manifest number: 06FB Signing time: Fri 28 Mar 2025 22:16:01 +0000 Manifest this update: Fri 28 Mar 2025 22:16:01 +0000 Manifest next update: Fri 04 Apr 2025 22:16:01 +0000 Files and hashes: 1: xQRWVXeumfYZHJeDPdvdYk7CTpI.crl (hash: gxvr8DaGXJ+miYnF8oUrg1VhXhDi68ErBi7DE2d+3b8=) 2: A2272F186E1D11EEB6A10A0CC4F9AE02.roa (hash: qHbtyOGNfvy85AlmzO8CEnT5fTz9AwvvFi0y6XbFwG0=) 3: B38547D6EDB611EEB49CEE2CC4F9AE02.roa (hash: SFXCFjWV3nIjHDr4Y0nX1h+ByORJe0z+8s0nBYc0bds=) 4: 8342D87641AC11ECACD65E18C4F9AE02.roa (hash: ZsYDlTfdZ4GWQgL9mV+7VPUB+1RhWLSObaxg0y98Kxs=) 5: 19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa (hash: aIhdOoGq/5IV6Mhns4F3omRFw08MxMY0t1LOWZhYXz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D128 Validity Not Before: Mar 28 22:16:01 2025 GMT Not After : Apr 4 22:16:01 2025 GMT Subject: CN=67e71fa1-a80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:c8:21:b0:01:69:4c:97:4d:f4:7a:59:db: b5:3f:09:42:eb:89:61:73:e3:7f:97:b4:76:80:4d: 89:b5:71:df:5e:02:8a:ed:53:24:55:85:80:6d:ce: d7:c1:2c:e9:d7:2a:43:dc:dd:3d:67:8c:7d:f8:46: 92:1b:61:06:2f:cb:89:04:cb:9b:1e:4c:7f:62:f5: 27:0e:40:31:f7:5d:c2:ae:09:88:d0:db:08:00:fd: 4c:02:b0:38:db:b5:06:dc:de:e9:f5:99:84:98:ac: 9f:e3:a2:69:c8:62:f3:09:6f:97:29:63:92:cb:83: 2f:fd:62:c6:f3:c2:e8:18:11:27:2a:7f:16:d1:b7: 2f:39:4b:d1:4a:00:ba:45:5a:0f:33:a8:44:0f:35: 30:a0:72:b7:d8:f1:b9:30:18:44:05:f1:31:1e:e8: 68:a7:1a:89:eb:61:0b:aa:db:65:34:8e:b2:48:82: a3:1d:d9:38:6c:65:dd:58:3b:88:c5:21:0c:c7:09: 58:66:a6:13:8f:fc:a2:10:62:e1:60:08:df:15:71: 66:77:57:4a:ba:56:a1:e8:a7:47:b6:c6:41:58:20: 2a:4e:08:35:b1:fa:56:f3:db:eb:1d:bf:09:da:35: 3a:61:70:4f:5a:70:fc:fa:a4:f2:2e:d5:d9:3f:62: f9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F9:19:52:1F:A0:73:75:C8:52:60:FF:4B:E6:A2:B3:B6:66:BD:AA X509v3 Authority Key Identifier: keyid:C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a6:fd:1e:ed:e5:97:5f:38:e8:f9:b1:36:f4:54:94:2b:4d: ee:7b:ea:a9:df:7d:9c:a2:77:9d:eb:37:1c:48:2a:5e:35:35: fa:48:ce:0c:fb:e3:00:ba:a9:0a:f5:0c:8a:9e:7a:2c:29:fe: 8a:d9:46:52:84:6a:6d:5d:f8:cb:2d:33:ba:ab:3e:ca:76:c4: 04:06:90:aa:76:ec:d7:5f:4e:48:ff:1b:3c:5d:61:09:bb:6b: 73:44:1d:ce:bf:0c:65:72:5f:42:9c:7a:a7:35:2d:5a:f9:78: ba:f7:dd:78:7e:e3:48:d4:ca:71:f4:07:5a:ce:cf:a9:b9:18: 2b:1f:3f:e6:b0:82:ac:94:57:6d:45:39:bd:a5:66:14:c0:52: fa:96:21:27:89:ae:78:a2:56:76:23:55:f7:5a:64:96:14:a7: db:22:26:77:9d:77:aa:b7:72:15:22:d4:b1:87:d5:59:de:ac: 20:3f:3a:80:13:30:31:ce:28:5c:be:49:11:4d:42:c2:b4:e3: 11:c2:67:1b:80:15:2c:81:ec:e6:56:75:25:61:3a:08:9b:64: cc:4b:ae:72:11:c6:9c:81:54:92:6f:60:67:04:26:44:c3:1d: 4c:32:36:4b:09:22:3f:8d:ef:af:6a:4c:b5:c3:30:cf:93:44: da:73:c3:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxMjgxMTAvBgNVBAUTKEM1MDQ1NjU1NzdBRTk5RjYxOTFDOTc4MzNEREJERDYy NEVDMjRFOTIwHhcNMjUwMzI4MjIxNjAxWhcNMjUwNDA0MjIxNjAxWjAYMRYwFAYD VQQDEw02N2U3MWZhMS1hODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OvIIbABaUyXTfR6Wdu1PwlC64lhc+N/l7R2gE2JtXHfXgKK7VMkVYWAbc7X wSzp1ypD3N09Z4x9+EaSG2EGL8uJBMubHkx/YvUnDkAx913CrgmI0NsIAP1MArA4 27UG3N7p9ZmEmKyf46JpyGLzCW+XKWOSy4Mv/WLG88LoGBEnKn8W0bcvOUvRSgC6 RVoPM6hEDzUwoHK32PG5MBhEBfExHuhopxqJ62ELqttlNI6ySIKjHdk4bGXdWDuI xSEMxwlYZqYTj/yiEGLhYAjfFXFmd1dKulah6KdHtsZBWCAqTgg1sfpW89vrHb8J 2jU6YXBPWnD8+qTyLtXZP2L5aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH5GVIf oHN1yFJg/0vmorO2Zr2qMB8GA1UdIwQYMBaAFMUEVlV3rpn2GRyXgz3b3WJOwk6S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDEyOC85MERFOUM2NjNF QTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1mWVpISmVEUGR2ZFlrN0NU cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hRUldWWGV1bWZZWkhKZURQZHZkWWs3Q1RwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDEyOC85MERFOUM2NjNFQTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1m WVpISmVEUGR2ZFlrN0NUcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVpv0e7eWXXzjo+bE29FSUK03ue+qp332coned6zccSCpeNTX6SM4M ++MAuqkK9QyKnnosKf6K2UZShGptXfjLLTO6qz7KdsQEBpCqduzXX05I/xs8XWEJ u2tzRB3Ovwxlcl9CnHqnNS1a+Xi69914fuNI1Mpx9Adazs+puRgrHz/msIKslFdt RTm9pWYUwFL6liEnia54olZ2I1X3WmSWFKfbIiZ3nXeqt3IVItSxh9VZ3qwgPzqA EzAxzihcvkkRTULCtOMRwmcbgBUsgezmVnUlYToIm2TMS65yEcacgVSSb2BnBCZE wx1MMjZLCSI/je+vaky1wzDPk0Tac8MC -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:53 2025 by rpki-client