$ rpki-client -vvf rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft File: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft (raw, json) Hash identifier: rxAc/F/5rxxGJgcroTiFM3Nlx1P0G86lKo9AyL4pd88= Subject key identifier: 14:FB:23:81:B7:4A:7D:91:61:8F:7B:A7:7E:48:48:42:AC:E2:1C:5D Authority key identifier: 91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 Certificate issuer: /CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft Manifest number: 3E Signing time: Thu 03 Apr 2025 06:47:34 +0000 Manifest this update: Thu 03 Apr 2025 06:47:33 +0000 Manifest next update: Thu 10 Apr 2025 06:47:33 +0000 Files and hashes: 1: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl (hash: aSDUziWOw4iIN6tC1/XTxreX4vcTEw1rdEDumer4mRA=) 2: 9CEF2622B76E11EF8FCC9767C4F9AE02.roa (hash: 2R62YAvpAuupePKvyUwfJfetCOhCrZjNgarawDnuvxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917408F Validity Not Before: Apr 3 06:47:33 2025 GMT Not After : Apr 10 06:47:33 2025 GMT Subject: CN=67ee2f05-3db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:db:6e:7c:30:69:95:16:df:fa:89:ec:ca:1c: 71:7c:24:d7:6c:c8:65:ea:c8:7d:90:90:83:83:bc: f9:19:05:16:08:d2:76:e6:11:0c:be:fe:62:a5:3e: cf:48:a4:50:ed:5e:94:c1:fd:8a:dd:77:db:4f:5f: 16:a3:20:eb:25:45:03:e9:32:50:5f:51:f9:ff:5c: 20:75:b5:91:a3:07:54:c9:f8:1b:51:6a:5a:7c:ce: ad:f7:32:54:e7:2f:7d:a8:32:25:71:7d:08:26:fc: 97:93:89:c8:a4:73:97:aa:3d:ea:e5:0a:4e:54:46: 84:b8:da:0b:86:68:20:08:fc:a8:f7:13:3b:0e:7e: b2:c6:2f:7b:6a:ae:19:15:a8:5d:d6:16:94:c4:fc: 58:3d:c1:c6:66:30:1d:f9:a3:15:51:46:11:94:74: 62:61:ac:0b:6d:23:4f:05:f1:da:ba:10:bc:84:64: 8c:f8:11:ab:4a:5e:84:df:d9:9a:59:32:69:64:57: 87:62:5e:f6:43:7a:dd:27:4d:59:d8:4a:bc:d4:6e: 3e:41:26:04:61:60:11:ab:30:f1:86:26:32:d2:a2: db:3d:c2:2a:31:a9:76:c6:37:2a:7b:17:a7:60:64: c9:80:4d:64:aa:79:b4:f9:0a:01:be:82:ae:5d:30: 47:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FB:23:81:B7:4A:7D:91:61:8F:7B:A7:7E:48:48:42:AC:E2:1C:5D X509v3 Authority Key Identifier: keyid:91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ff:2f:81:45:87:e6:d1:a7:d3:73:71:47:bc:a8:e8:8f:ec: 7d:13:a9:c8:6b:bb:42:8b:01:6a:90:7e:4e:cc:d4:73:9d:22: 03:e8:20:85:65:0d:23:4a:9c:45:9d:25:db:06:57:3f:f7:51: e6:af:91:2c:38:85:98:9b:e1:a4:93:1b:b3:53:41:44:41:41: 0d:b6:80:7d:94:a4:e0:44:81:f9:bc:1b:35:79:01:39:f8:87: 62:e5:74:0e:c6:84:8e:ca:15:6a:46:f3:99:11:43:83:45:18: 09:09:ac:ce:0c:f4:ae:8b:e8:25:3f:9f:2a:41:e9:63:fa:59: 92:8f:b4:f8:79:17:69:d6:50:cb:3a:ac:8b:ad:01:4e:8d:38: 3a:30:41:33:73:7d:fb:13:19:d3:26:13:4d:f7:07:b3:dc:e7: d9:ad:c0:62:91:db:62:1e:8e:03:b5:d7:08:61:a2:1f:76:b2: 41:c0:c1:2b:e1:1c:f6:a4:57:6d:3a:b3:f1:fe:48:f4:fa:4b: 42:22:f2:26:c0:e9:e0:fb:79:60:45:21:9d:f5:69:d0:77:5a: 55:a5:ff:88:25:8a:b2:e9:8e:c7:1a:e6:c5:73:2f:8f:0a:b5: e3:11:75:5b:32:53:17:24:92:51:d5:a6:50:3b:86:bc:3c:b4: 27:c2:68:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NDA4RjExMC8GA1UEBRMoOTEwRjJGNDE0MDhFMTNEQUVEN0MyMURDNDcyREM1QzU4 QzQ1ODgzNjAeFw0yNTA0MDMwNjQ3MzNaFw0yNTA0MTAwNjQ3MzNaMBgxFjAUBgNV BAMTDTY3ZWUyZjA1LTNkYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh2258MGmVFt/6iezKHHF8JNdsyGXqyH2QkIODvPkZBRYI0nbmEQy+/mKlPs9I pFDtXpTB/Yrdd9tPXxajIOslRQPpMlBfUfn/XCB1tZGjB1TJ+BtRalp8zq33MlTn L32oMiVxfQgm/JeTicikc5eqPerlCk5URoS42guGaCAI/Kj3EzsOfrLGL3tqrhkV qF3WFpTE/Fg9wcZmMB35oxVRRhGUdGJhrAttI08F8dq6ELyEZIz4EatKXoTf2ZpZ MmlkV4diXvZDet0nTVnYSrzUbj5BJgRhYBGrMPGGJjLSots9wioxqXbGNyp7F6dg ZMmATWSqebT5CgG+gq5dMEdLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFPsjgbdK fZFhj3unfkhIQqziHF0wHwYDVR0jBBgwFoAUkQ8vQUCOE9rtfCHcRy3FxYxFiDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0MDhGLzE2Q0Q5ODU4Qjc2 RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTlydGZDSGNSeTNGeFl4RmlE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1E4dlFVQ09FOXJ0ZkNIY1J5M0Z4WXhGaURZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 MDhGLzE2Q0Q5ODU4Qjc2RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTly dGZDSGNSeTNGeFl4RmlEWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKz/L4FFh+bRp9NzcUe8qOiP7H0Tqchru0KLAWqQfk7M1HOdIgPoIIVl DSNKnEWdJdsGVz/3UeavkSw4hZib4aSTG7NTQURBQQ22gH2UpOBEgfm8GzV5ATn4 h2LldA7GhI7KFWpG85kRQ4NFGAkJrM4M9K6L6CU/nypB6WP6WZKPtPh5F2nWUMs6 rIutAU6NODowQTNzffsTGdMmE033B7Pc59mtwGKR22IejgO11whhoh92skHAwSvh HPakV206s/H+SPT6S0Ii8ibA6eD7eWBFIZ31adB3WlWl/4glirLpjsca5sVzL48K teMRdVsyUxckklHVplA7hrw8tCfCaHI= -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:00 2025 by rpki-client