$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: +PUHJzH1x5r6WXHQSfWQzMlKRvU6U2Gm5lTPnJXYmMs= Subject key identifier: 5E:15:FB:D3:CB:F0:1C:DA:23:F6:81:B9:9C:00:AF:E8:F5:BF:0A:66 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 0264 Signing time: Sat 05 Apr 2025 01:52:49 +0000 Manifest this update: Sat 05 Apr 2025 01:52:49 +0000 Manifest next update: Sat 12 Apr 2025 01:52:49 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: G620yCgBMP64x4rxNZ7w3mHG3oi1nEooMJTt2rmaVmg=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7 Validity Not Before: Apr 5 01:52:49 2025 GMT Not After : Apr 12 01:52:49 2025 GMT Subject: CN=67f08cf1-e4a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:26:0f:00:f7:5f:f8:d2:07:9e:62:8b:1a:1e: b8:91:dc:08:ef:33:8b:b8:af:73:64:a6:5c:bf:6d: 33:b8:3f:a1:57:ff:8d:ca:fc:37:45:db:a7:f3:4a: 17:6f:54:ce:5a:50:ab:33:f0:df:6c:1c:2d:08:c8: 1a:0b:d1:cb:1f:b3:41:63:87:54:71:fa:12:ee:ba: 97:53:0c:41:4a:a0:d5:72:08:2d:ea:c8:71:e7:00: 90:00:15:f1:7d:00:bc:b7:91:06:e2:f7:70:4f:df: ad:d9:90:16:4e:7a:77:63:d7:03:9f:d4:1c:fa:1f: 23:27:9b:17:4a:11:7e:7d:1f:ec:7f:5e:f4:21:d7: 55:88:1d:e3:a3:68:46:b4:27:6f:3a:ee:a9:3f:65: 5b:df:7a:d2:46:1d:93:14:e8:a2:d3:ec:8a:70:51: bf:f4:0c:29:89:94:84:d0:af:48:f1:1f:ba:0e:8c: aa:61:d0:35:d3:2e:49:e7:0d:0f:18:03:29:dc:f7: ea:64:75:f6:9e:df:29:fe:8d:54:0d:e9:23:d6:27: a9:7a:ae:5a:4c:28:b2:d8:29:dc:d0:a0:2a:1f:50: 8d:24:d4:77:0f:7a:cd:5e:35:a1:f8:2e:7a:e4:62: 63:c1:bf:eb:bc:f1:63:22:e8:b6:2f:00:bc:58:bb: 83:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:15:FB:D3:CB:F0:1C:DA:23:F6:81:B9:9C:00:AF:E8:F5:BF:0A:66 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:8b:d8:e1:e7:44:49:b9:32:51:ec:6a:3f:3e:f7:8f:10:f2: c5:d2:08:eb:77:8c:20:70:6b:87:51:0c:d4:5a:6a:ae:2f:fc: 5d:e9:e6:b4:c9:a5:00:a2:9e:c2:06:48:51:6d:88:fd:5c:f1: cf:cb:a4:2c:3c:4d:2d:70:68:50:46:ac:10:18:92:7e:56:76: 9e:ea:a5:dd:58:f9:b1:19:21:dd:47:a9:ca:a7:f7:51:8c:d7: bc:db:b5:a2:a0:85:be:d3:48:f1:68:95:ae:60:2d:1d:55:87: c3:2d:b9:f4:17:ee:54:d5:54:c8:3c:af:a4:c0:c6:97:76:f6: 4e:d3:16:c4:ca:c0:0c:d3:fd:4f:f1:12:05:1f:7b:81:7f:be: 92:03:e4:a5:33:40:8b:a3:60:3f:b6:bb:bd:df:fa:0f:d9:f0: 8c:2f:1b:03:2e:1f:3e:41:a4:00:41:4d:3b:5f:41:ed:34:cb: 04:7e:b3:c7:67:7c:a7:e3:5a:d2:be:e2:2b:c2:e6:54:31:29: d4:15:4d:ab:48:5e:dd:a4:84:96:6e:0f:14:3f:50:b7:f3:47: 64:83:3f:73:93:d8:71:c9:a8:da:81:58:7a:ce:b4:82:b8:67: 45:ae:65:c4:e2:d8:8a:ef:db:50:ac:88:6e:84:40:2d:cf:8f: 64:3e:2f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUwNDA1MDE1MjQ5WhcNMjUwNDEyMDE1MjQ5WjAYMRYwFAYD VQQDEw02N2YwOGNmMS1lNGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCYPAPdf+NIHnmKLGh64kdwI7zOLuK9zZKZcv20zuD+hV/+Nyvw3Rdun80oX b1TOWlCrM/DfbBwtCMgaC9HLH7NBY4dUcfoS7rqXUwxBSqDVcggt6shx5wCQABXx fQC8t5EG4vdwT9+t2ZAWTnp3Y9cDn9Qc+h8jJ5sXShF+fR/sf170IddViB3jo2hG tCdvOu6pP2Vb33rSRh2TFOii0+yKcFG/9AwpiZSE0K9I8R+6DoyqYdA10y5J5w0P GAMp3PfqZHX2nt8p/o1UDekj1iepeq5aTCiy2Cnc0KAqH1CNJNR3D3rNXjWh+C56 5GJjwb/rvPFjIui2LwC8WLuDtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4V+9PL 8BzaI/aBuZwAr+j1vwpmMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATi9jh50RJuTJR7Go/PvePEPLF0gjrd4wgcGuHUQzUWmquL/xd6ea0 yaUAop7CBkhRbYj9XPHPy6QsPE0tcGhQRqwQGJJ+Vnae6qXdWPmxGSHdR6nKp/dR jNe827WioIW+00jxaJWuYC0dVYfDLbn0F+5U1VTIPK+kwMaXdvZO0xbEysAM0/1P 8RIFH3uBf76SA+SlM0CLo2A/tru93/oP2fCMLxsDLh8+QaQAQU07X0HtNMsEfrPH Z3yn41rSvuIrwuZUMSnUFU2rSF7dpISWbg8UP1C380dkgz9zk9hxyajagVh6zrSC uGdFrmXE4tiK79tQrIhuhEAtz49kPi8m -----END CERTIFICATE-----Generated at Sat Apr 5 16:42:48 2025 by rpki-client