$ rpki-client -vvf rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft File: MBTdOHsX8ziHOip6N_gkTZNwLqg.mft (raw, json) Hash identifier: R0XkcDOHF48UsHnqX2IjUo7w47lmPwl4fnP5B6Oybm8= Subject key identifier: 61:63:A7:3B:2A:41:70:F0:DF:04:69:10:8C:60:EB:03:B6:A7:9B:66 Authority key identifier: 30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8 Certificate issuer: /CN=A9172E1E/serialNumber=3014DD387B17F338873A2A7A37F8244D93702EA8 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft Manifest number: 011D Signing time: Sat 29 Mar 2025 04:11:42 +0000 Manifest this update: Sat 29 Mar 2025 04:11:42 +0000 Manifest next update: Sat 05 Apr 2025 04:11:42 +0000 Files and hashes: 1: MBTdOHsX8ziHOip6N_gkTZNwLqg.crl (hash: HOL+lR3ZZL3KXMmHu81sKGxEhcZOdnjw1nPDsVYEEDc=) 2: B9645EC65C2511EEAF0A215DC4F9AE02.roa (hash: vLLtqJRwe55PLrIjKzUZV3hunL6I7HlofeTqMR4Wk9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.crl rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172E1E Validity Not Before: Mar 29 04:11:42 2025 GMT Not After : Apr 5 04:11:42 2025 GMT Subject: CN=67e772fe-582c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dd:46:a4:53:2c:21:35:88:ca:b5:89:c8:01: f6:b0:38:43:22:55:99:5d:18:0b:a4:c9:3c:e1:c2: 7e:ad:76:c3:4b:a6:e5:6e:d5:de:87:36:f3:cb:36: 85:94:2c:6a:27:62:4d:f9:5e:dd:9e:03:11:d7:85: ff:28:14:0c:f2:70:01:aa:2d:c1:b8:50:61:dd:0d: f0:69:59:81:35:9b:f5:6a:d2:e1:bc:e0:bd:c7:8a: 7d:4d:62:d0:b7:5d:c2:aa:5f:90:cb:2e:af:c6:40: 93:57:b5:4d:f9:45:91:f7:46:26:a0:5e:80:6d:f7: 49:17:32:29:78:6e:c8:7d:a3:86:e9:3b:79:4a:14: a9:6d:2e:fa:7a:82:f9:98:c1:74:98:cb:e3:9a:11: 14:98:2a:3d:00:c3:f8:61:b3:ba:34:55:a1:95:75: fe:b0:a2:4b:61:55:e2:fd:e5:f2:e4:0c:02:44:1b: 5d:7a:0b:5e:46:32:3d:71:e9:d4:8a:af:e7:26:e4: 77:85:71:d4:15:e2:11:5d:cc:f5:3e:0b:c1:32:2b: c7:d7:ed:07:6b:17:36:37:a0:4a:90:28:76:ea:0b: 6b:67:c8:69:3b:65:df:34:76:5e:3e:be:6b:e3:bf: a5:18:90:bd:12:69:ff:d6:9e:b8:b7:27:5e:f3:08: 6d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:63:A7:3B:2A:41:70:F0:DF:04:69:10:8C:60:EB:03:B6:A7:9B:66 X509v3 Authority Key Identifier: keyid:30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:68:4e:45:09:b9:46:26:8b:06:e9:ed:ec:58:a5:cb:8a:0d: a6:13:c2:33:48:a8:eb:57:72:33:c0:98:98:05:35:9e:b9:02: 2a:bc:02:0c:fd:1d:23:e0:cf:23:38:0b:e8:a3:3d:2d:7b:51: 02:a8:e0:bc:cf:3f:31:9b:ef:af:7a:ec:af:87:73:9f:9e:7a: 44:ca:e0:d2:b6:7f:7b:3b:75:29:9c:79:8f:c0:31:74:c8:1a: 5e:63:1a:84:2f:12:10:b3:8e:02:ac:77:c1:85:b1:ba:63:d5: c6:c6:73:fa:22:38:3a:1e:6a:35:41:2e:70:df:53:7c:56:d1: 96:de:d8:22:20:a7:cc:be:fd:3f:90:dc:00:64:ea:2e:a2:d5: b8:1d:3c:cf:54:78:8d:f2:9c:24:4a:0e:77:35:a6:25:85:48: e6:71:50:67:5f:7d:3f:dd:ee:2e:e0:22:c6:91:9a:78:e9:e7: d0:02:80:dd:dc:f6:53:2d:21:17:89:97:02:46:d9:5f:1d:c5: 82:dc:71:9a:e4:2f:a0:56:b8:20:c2:00:8a:52:c2:a4:8c:b4: 07:89:c8:63:8b:1b:d9:09:fa:5a:20:d3:9a:e6:dc:4e:9d:b1: bc:45:e7:bd:06:ad:47:e9:f0:dd:98:84:7b:fc:1a:bd:0f:35: 3b:e6:0c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFMUUxMTAvBgNVBAUTKDMwMTRERDM4N0IxN0YzMzg4NzNBMkE3QTM3RjgyNDRE OTM3MDJFQTgwHhcNMjUwMzI5MDQxMTQyWhcNMjUwNDA1MDQxMTQyWjAYMRYwFAYD VQQDEw02N2U3NzJmZS01ODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoN1GpFMsITWIyrWJyAH2sDhDIlWZXRgLpMk84cJ+rXbDS6blbtXehzbzyzaF lCxqJ2JN+V7dngMR14X/KBQM8nABqi3BuFBh3Q3waVmBNZv1atLhvOC9x4p9TWLQ t13Cql+Qyy6vxkCTV7VN+UWR90YmoF6AbfdJFzIpeG7IfaOG6Tt5ShSpbS76eoL5 mMF0mMvjmhEUmCo9AMP4YbO6NFWhlXX+sKJLYVXi/eXy5AwCRBtdegteRjI9cenU iq/nJuR3hXHUFeIRXcz1PgvBMivH1+0Haxc2N6BKkCh26gtrZ8hpO2XfNHZePr5r 47+lGJC9Emn/1p64tyde8whtcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFjpzsq QXDw3wRpEIxg6wO2p5tmMB8GA1UdIwQYMBaAFDAU3Th7F/M4hzoqejf4JE2TcC6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkUxRS8yNzg4MTdDMDVD MTMxMUVFQTkwNzE4M0RDNEY5QUUwMi9NQlRkT0hzWDh6aUhPaXA2Tl9na1RaTndM cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01CVGRPSHNYOHppSE9pcDZOX2drVFpOd0xxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkUxRS8yNzg4MTdDMDVDMTMxMUVFQTkwNzE4M0RDNEY5QUUwMi9NQlRkT0hzWDh6 aUhPaXA2Tl9na1RaTndMcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9aE5FCblGJosG6e3sWKXLig2mE8IzSKjrV3IzwJiYBTWeuQIqvAIM /R0j4M8jOAvooz0te1ECqOC8zz8xm++veuyvh3OfnnpEyuDStn97O3UpnHmPwDF0 yBpeYxqELxIQs44CrHfBhbG6Y9XGxnP6Ijg6Hmo1QS5w31N8VtGW3tgiIKfMvv0/ kNwAZOouotW4HTzPVHiN8pwkSg53NaYlhUjmcVBnX30/3e4u4CLGkZp46efQAoDd 3PZTLSEXiZcCRtlfHcWC3HGa5C+gVrggwgCKUsKkjLQHichjixvZCfpaINOa5txO nbG8Ree9Bq1H6fDdmIR7/Bq9DzU75gxf -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:33 2025 by rpki-client