$ rpki-client -vvf rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft File: P8lxKSzpGlkajN-n0a4JykbgPoc.mft (raw, json) Hash identifier: o3FSkF0F6YcuDv+sAj0+tF2H/V80j2yUkSF4Y2EV/YM= Subject key identifier: 67:C0:61:23:A7:5E:A3:79:6A:A0:B4:1E:6F:DD:24:75:53:ED:D6:85 Authority key identifier: 3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87 Certificate issuer: /CN=A9171634/serialNumber=3FC971292CE91A591A8CDFA7D1AE09CA46E03E87 Certificate serial: 34BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft Manifest number: 3491 Signing time: Fri 04 Apr 2025 14:42:02 +0000 Manifest this update: Fri 04 Apr 2025 14:42:01 +0000 Manifest next update: Fri 11 Apr 2025 14:42:01 +0000 Files and hashes: 1: P8lxKSzpGlkajN-n0a4JykbgPoc.crl (hash: Wczvlv22agC1P9Dn7pn9er5AiBsrLEhnVWBNnkXHTb0=) 2: 727368486F1F11EDA34CF049C4F9AE02.roa (hash: NZbs45t8XXl/tBdxXy7mih7R8Y+MNfTCo2/0Q6D+AY8=) 3: 28B45FE86AF411EDB328EF4BC4F9AE02.roa (hash: YOeMT2ch94llljjtSxDRfpwVxGJgR5Hy6UG9iTs2yno=) 4: 989ED314FDCB11EDA52DCB45C4F9AE02.roa (hash: 7Gr5+LKQZg71Xe7aRTwT76gb+Vnjm/TSiDDJs1rwm1o=) 5: AFA4CF3E606F11EFB9FCCC59C4F9AE02.roa (hash: LFZEMiEZWVGVhw073oJZ6a3acteubVePOhbEcX4Y/2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.crl rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13503 (0x34bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171634 Validity Not Before: Apr 4 14:42:01 2025 GMT Not After : Apr 11 14:42:01 2025 GMT Subject: CN=67efefba-e4a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d0:3e:41:fb:3c:fc:97:11:d4:7f:a9:53:26: b8:2b:07:c5:12:eb:c7:76:60:42:8e:41:81:0d:f7: 48:64:8c:5b:45:34:72:c0:19:af:b3:60:41:b5:f4: 7f:2b:db:ec:e9:bb:36:86:04:1a:ff:f9:c1:47:1a: 83:33:03:2d:39:f4:b2:6b:76:00:38:44:0f:08:a7: 9b:04:8f:2a:64:6c:75:f6:00:21:79:16:47:cb:17: c3:cb:bd:7d:16:ba:a9:6e:ad:02:0e:0b:a0:2a:96: 58:11:7b:bd:1b:8f:40:e9:f7:27:37:64:20:65:43: c1:8b:1d:16:dd:a2:30:08:12:f6:05:9c:1e:51:8d: c0:b6:a6:95:00:84:b3:d8:ac:ff:bd:d0:8d:74:a2: 04:6e:67:8c:b7:59:f0:e0:0e:99:d5:02:0a:f0:96: 1f:f7:e2:1a:7e:ac:b0:c4:0a:dc:5a:ab:a3:b6:7f: d6:63:62:0b:68:48:f1:31:f6:b1:d8:dc:86:51:82: 7e:a1:a5:d3:7d:69:c8:80:01:5e:ec:aa:2f:66:90: 51:00:7f:ae:65:f7:9f:ba:e3:3c:d0:a5:c1:e2:76: 4b:1c:08:96:0c:1d:59:2b:3e:b0:6f:39:53:f4:15: 41:42:33:87:8b:24:02:bc:f3:bb:ee:54:06:a3:e0: d2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C0:61:23:A7:5E:A3:79:6A:A0:B4:1E:6F:DD:24:75:53:ED:D6:85 X509v3 Authority Key Identifier: keyid:3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:8f:21:39:45:d6:1f:47:8e:6c:26:45:18:6f:86:4a:db:c4: 59:10:bc:20:69:dd:cc:ea:03:6d:a3:89:9c:02:c4:8a:a4:00: 8f:44:9d:ec:b9:ad:bb:56:60:06:53:75:ce:31:4b:b8:35:03: 68:36:36:2b:36:7d:43:f8:34:0a:67:a4:a5:a0:fc:23:62:78: 9e:c5:72:f5:99:39:e9:25:2d:e1:f6:f1:b2:d8:ba:ae:28:9f: 70:ae:1c:32:3f:91:60:33:e9:64:ae:6c:79:e2:ca:40:b0:96: 3a:93:a0:10:99:b8:7d:56:eb:e4:0f:b4:33:67:66:33:91:71: 92:fe:b8:66:48:ca:4c:4d:b4:ac:4a:c1:24:4f:d4:b8:f2:56: ab:84:6c:30:a5:80:9a:81:48:c8:35:dd:de:6c:2e:ab:4f:10: 16:dc:dc:26:f8:da:cf:86:ee:95:32:9b:1d:0e:9b:9f:7e:71: c0:96:06:2c:d6:1a:a9:ce:1b:66:de:70:85:eb:a8:be:96:ad: 38:03:05:dc:01:bb:3e:63:26:45:74:95:a7:9b:ad:87:c8:c9: a8:93:3d:db:dd:b7:de:ed:c9:15:22:dc:64:cf:4a:5c:ca:80: cb:6e:fd:1e:5f:85:1f:0d:11:ad:2c:64:36:a7:75:19:35:7f: c5:29:fa:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2MzQxMTAvBgNVBAUTKDNGQzk3MTI5MkNFOTFBNTkxQThDREZBN0QxQUUwOUNB NDZFMDNFODcwHhcNMjUwNDA0MTQ0MjAxWhcNMjUwNDExMTQ0MjAxWjAYMRYwFAYD VQQDEw02N2VmZWZiYS1lNGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtA+Qfs8/JcR1H+pUya4KwfFEuvHdmBCjkGBDfdIZIxbRTRywBmvs2BBtfR/ K9vs6bs2hgQa//nBRxqDMwMtOfSya3YAOEQPCKebBI8qZGx19gAheRZHyxfDy719 Frqpbq0CDgugKpZYEXu9G49A6fcnN2QgZUPBix0W3aIwCBL2BZweUY3AtqaVAISz 2Kz/vdCNdKIEbmeMt1nw4A6Z1QIK8JYf9+IafqywxArcWqujtn/WY2ILaEjxMfax 2NyGUYJ+oaXTfWnIgAFe7KovZpBRAH+uZfefuuM80KXB4nZLHAiWDB1ZKz6wbzlT 9BVBQjOHiyQCvPO77lQGo+DSmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfAYSOn XqN5aqC0Hm/dJHVT7daFMB8GA1UdIwQYMBaAFD/JcSks6RpZGozfp9GuCcpG4D6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTYzNC85NDJCODNCQzFE OTAxMUUyQTM2MTY2RjAwOEIwMkNEMi9QOGx4S1N6cEdsa2FqTi1uMGE0SnlrYmdQ b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4bHhLU3pwR2xrYWpOLW4wYTRKeWtiZ1BvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTYzNC85NDJCODNCQzFEOTAxMUUyQTM2MTY2RjAwOEIwMkNEMi9QOGx4S1N6cEds a2FqTi1uMGE0SnlrYmdQb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUjyE5RdYfR45sJkUYb4ZK28RZELwgad3M6gNto4mcAsSKpACPRJ3s ua27VmAGU3XOMUu4NQNoNjYrNn1D+DQKZ6SloPwjYniexXL1mTnpJS3h9vGy2Lqu KJ9wrhwyP5FgM+lkrmx54spAsJY6k6AQmbh9VuvkD7QzZ2YzkXGS/rhmSMpMTbSs SsEkT9S48larhGwwpYCagUjINd3ebC6rTxAW3Nwm+NrPhu6VMpsdDpuffnHAlgYs 1hqpzhtm3nCF66i+lq04AwXcAbs+YyZFdJWnm62HyMmokz3b3bfe7ckVItxkz0pc yoDLbv0eX4UfDRGtLGQ2p3UZNX/FKfqL -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:48 2025 by rpki-client