$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: HRbLaon1TQbL1U36eNLmPMOFcCFfhJ7qsKXde0p2Ius= Subject key identifier: 02:D5:C4:89:BF:61:03:11:F4:CA:9C:93:15:6B:7B:2F:90:FD:A7:36 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: FD Signing time: Wed 09 Apr 2025 04:03:08 +0000 Manifest this update: Wed 09 Apr 2025 04:03:07 +0000 Manifest next update: Wed 16 Apr 2025 04:03:07 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: ogFl5V033tjhF4P/uFY8CZ8I6/ublE4PCEOJHEdKrAM=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: Z3NjmZHjrC5QDqZVrNc2A+wY2OMdX2iZifn6im8ttEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33 Validity Not Before: Apr 9 04:03:07 2025 GMT Not After : Apr 16 04:03:07 2025 GMT Subject: CN=67f5f17b-93ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:89:83:6d:36:85:df:22:51:bb:ab:90:1f:b8: 75:a2:9b:55:66:c1:62:96:a6:6e:4d:0a:a6:b6:55: f4:6b:40:86:71:22:ab:69:a2:34:77:b6:08:aa:bd: d3:8a:e9:28:f1:db:07:ac:c2:ba:fa:e4:ed:d4:0f: 52:43:71:13:13:d3:81:b7:98:53:d4:3b:1b:5b:41: a7:f0:a2:24:92:c8:4e:6e:90:a8:5e:ff:a0:b2:e7: 56:4c:9f:6f:dc:e5:00:2a:f4:fc:0e:17:68:7a:8e: c3:b8:95:ef:98:fb:94:71:c7:f0:81:db:58:9b:58: 93:02:e2:eb:3a:43:38:02:fe:b5:77:bc:f4:38:fd: c9:80:b4:c4:a6:be:46:e0:b4:de:9a:25:80:08:6d: 81:46:3a:e8:e4:7d:41:89:60:12:8d:ef:95:59:52: 9a:bc:b0:3b:97:f4:99:c9:28:34:9b:2b:67:a7:f6: 3e:91:ad:9a:9c:ca:83:e8:d2:08:95:b9:dd:77:48: 85:df:f5:ea:c5:c6:d1:49:65:10:48:ca:08:8d:3f: a8:56:c5:5b:89:9f:7b:c7:b8:69:68:98:4b:c3:2d: a6:09:88:bc:82:6e:26:a9:4b:24:c5:8c:4a:75:b4: 30:36:19:d9:ae:7b:0a:ce:d5:eb:41:b5:f5:e0:54: 20:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D5:C4:89:BF:61:03:11:F4:CA:9C:93:15:6B:7B:2F:90:FD:A7:36 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:63:8e:c9:ff:f3:ae:60:31:77:8e:9a:da:a4:f0:26:6a:7d: b1:32:f1:5d:44:68:12:cf:5d:84:b4:e5:ad:ca:d2:79:05:5d: f6:2a:60:37:ac:a9:f6:2b:c2:57:79:17:c9:33:32:6b:79:8e: 8b:e6:1c:1b:6c:d8:a2:cc:c5:b7:41:05:a4:b3:8a:ee:40:dd: b5:fb:12:a9:af:b3:68:39:7b:f3:9a:d8:06:d6:5b:b1:f9:ec: b6:b4:9c:d7:42:dc:b2:5f:f1:ca:62:89:47:1b:ed:32:5b:54: 08:02:ee:f5:a1:ea:dd:5b:1a:e2:92:de:f4:c3:d7:c0:d2:33: f5:41:90:7b:ef:d1:b3:6e:1f:44:a1:7f:8b:6e:60:14:3b:9d: 43:a4:91:15:df:82:1b:ee:8a:72:22:d7:8e:3b:d2:39:e9:23: 52:9c:ad:7d:cb:d3:97:39:93:68:19:d5:20:3c:ce:a9:b9:aa: e5:db:ba:73:c1:4c:52:d6:68:3e:9c:40:63:be:86:ab:47:e5: 11:00:47:37:32:60:fd:37:cb:76:27:0f:ec:13:a4:c0:06:72: ee:03:da:d7:0a:3c:ad:84:63:20:4c:47:80:22:e9:57:db:b4: a1:00:3b:22:43:4a:77:7e:f2:74:95:c7:16:79:98:8b:05:cb: 78:4e:61:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUwNDA5MDQwMzA3WhcNMjUwNDE2MDQwMzA3WjAYMRYwFAYD VQQDEw02N2Y1ZjE3Yi05M2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnImDbTaF3yJRu6uQH7h1optVZsFilqZuTQqmtlX0a0CGcSKraaI0d7YIqr3T iuko8dsHrMK6+uTt1A9SQ3ETE9OBt5hT1DsbW0Gn8KIkkshObpCoXv+gsudWTJ9v 3OUAKvT8Dhdoeo7DuJXvmPuUccfwgdtYm1iTAuLrOkM4Av61d7z0OP3JgLTEpr5G 4LTemiWACG2BRjro5H1BiWASje+VWVKavLA7l/SZySg0mytnp/Y+ka2anMqD6NII lbndd0iF3/XqxcbRSWUQSMoIjT+oVsVbiZ97x7hpaJhLwy2mCYi8gm4mqUskxYxK dbQwNhnZrnsKztXrQbX14FQg4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALVxIm/ YQMR9MqckxVrey+Q/ac2MB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEY47J//OuYDF3jprapPAman2xMvFdRGgSz12EtOWtytJ5BV32KmA3 rKn2K8JXeRfJMzJreY6L5hwbbNiizMW3QQWks4ruQN21+xKpr7NoOXvzmtgG1lux +ey2tJzXQtyyX/HKYolHG+0yW1QIAu71oerdWxrikt70w9fA0jP1QZB779Gzbh9E oX+LbmAUO51DpJEV34Ib7opyIteOO9I56SNSnK19y9OXOZNoGdUgPM6puarl27pz wUxS1mg+nEBjvoarR+URAEc3MmD9N8t2Jw/sE6TABnLuA9rXCjythGMgTEeAIulX 27ShADsiQ0p3fvJ0lccWeZiLBct4TmHf -----END CERTIFICATE-----Generated at Wed Apr 9 18:23:56 2025 by rpki-client