$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: LmxFwxECTqB0hih2b89lGbjbU6BIqJXHpUPFXBDn1E0= Subject key identifier: 3C:FE:D2:FA:D0:A9:17:96:2A:FB:6F:E4:C3:92:FD:D2:44:15:95:5C Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0625 Signing time: Fri 04 Apr 2025 19:51:40 +0000 Manifest this update: Fri 04 Apr 2025 19:51:39 +0000 Manifest next update: Fri 11 Apr 2025 19:51:39 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: kAy2f9vlKyF6s3MFLuLpRKvr+EiKQFkMcagQcC7e2U4=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: W590cMYjFz6FF4sW9oqplqFnjP+zPSYVDh+Je0kzPIE=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: eFxwV6TYZjxk4/Ekn5nyzAgAfEQn65e+4zP6/WFsXnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8 Validity Not Before: Apr 4 19:51:39 2025 GMT Not After : Apr 11 19:51:39 2025 GMT Subject: CN=67f0384b-2139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f6:34:59:a2:75:ce:e6:99:68:04:a0:05:98: f5:f2:66:a7:5c:27:f0:40:d2:5a:9a:c4:e8:d3:7c: da:d0:03:d5:e1:5f:80:41:ee:0e:72:58:20:61:f9: 02:d4:05:ee:56:34:9b:c0:e3:a0:0b:c1:08:07:b7: 4c:34:8e:4c:8f:37:72:bf:9c:5b:49:23:01:f6:b9: 2e:f2:a8:cc:99:d7:e6:14:2e:17:fb:75:70:05:3a: cd:b6:cb:59:6b:77:fc:60:71:25:2d:dd:0f:ed:7e: 83:3e:3d:7e:77:67:91:57:8b:54:da:71:dd:ca:d1: a3:0d:58:73:58:22:dc:46:bc:ec:d4:0a:bd:60:f4: 70:ed:b7:a1:61:ea:c1:fe:88:a9:ac:01:9d:9f:19: 66:27:4d:33:35:95:04:2a:4a:c1:4b:ce:70:11:d0: 99:54:ac:ca:bd:46:88:1d:a0:5e:d7:69:66:e2:29: b9:61:2e:40:53:c0:80:13:07:7a:88:fa:90:3f:c3: 84:55:53:bd:67:d9:f0:4a:91:db:56:52:8a:d0:c5: e4:27:3a:6e:53:3f:6e:fe:24:9b:b5:d9:91:e9:83: 7d:56:e3:b1:b6:fb:e3:cc:22:fd:bd:ea:02:96:5b: ce:22:77:a7:48:6a:b4:43:d7:81:45:d9:97:a0:17: 9b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FE:D2:FA:D0:A9:17:96:2A:FB:6F:E4:C3:92:FD:D2:44:15:95:5C X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:04:61:25:cd:f2:82:ab:16:5a:f5:61:a5:dc:24:0e:5b:00: 24:83:09:0d:a9:73:7e:a9:eb:6a:a6:e5:e1:b4:a8:ea:5f:a4: 0a:d3:43:b6:a9:3d:f4:3b:de:7e:f0:bc:5b:55:74:bc:20:ae: 6b:61:c1:5a:cf:4a:ca:d2:86:12:17:6b:f2:fe:c6:5c:b5:56: fb:fb:c2:7b:5e:0f:8d:70:6d:96:f2:87:7b:d6:b3:1e:95:22: 85:e0:f7:ac:e4:0d:70:21:dd:b9:a0:5d:a3:bc:f2:de:9a:f5: 43:89:ce:d1:76:d5:ce:12:ff:1e:ee:13:00:53:15:39:aa:1c: c0:90:bc:58:4e:c1:a5:9e:dc:40:fd:51:79:f3:53:34:7a:3f: 2e:8b:4c:af:cb:32:13:aa:53:aa:59:44:b3:e9:b2:4f:26:94: 62:55:e6:1f:b6:d9:9a:dc:42:62:bc:64:79:91:1b:33:01:28: 94:76:95:b9:9f:d3:67:80:71:78:af:54:3a:1b:e4:de:04:8f: bd:47:c3:d6:16:4c:0a:7d:5a:60:b6:7a:65:f4:90:34:79:2b: da:90:35:1b:3e:d5:32:22:66:15:c8:73:23:a5:c5:7a:4c:e3: ca:c7:fc:39:72:eb:a5:d5:59:9f:e5:8b:44:a8:79:d2:89:03: 18:bc:87:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwNDA0MTk1MTM5WhcNMjUwNDExMTk1MTM5WjAYMRYwFAYD VQQDEw02N2YwMzg0Yi0yMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPY0WaJ1zuaZaASgBZj18manXCfwQNJamsTo03za0APV4V+AQe4OclggYfkC 1AXuVjSbwOOgC8EIB7dMNI5Mjzdyv5xbSSMB9rku8qjMmdfmFC4X+3VwBTrNtstZ a3f8YHElLd0P7X6DPj1+d2eRV4tU2nHdytGjDVhzWCLcRrzs1Aq9YPRw7behYerB /oiprAGdnxlmJ00zNZUEKkrBS85wEdCZVKzKvUaIHaBe12lm4im5YS5AU8CAEwd6 iPqQP8OEVVO9Z9nwSpHbVlKK0MXkJzpuUz9u/iSbtdmR6YN9VuOxtvvjzCL9veoC llvOInenSGq0Q9eBRdmXoBebOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDz+0vrQ qReWKvtv5MOS/dJEFZVcMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmBGElzfKCqxZa9WGl3CQOWwAkgwkNqXN+qetqpuXhtKjqX6QK00O2 qT30O95+8LxbVXS8IK5rYcFaz0rK0oYSF2vy/sZctVb7+8J7Xg+NcG2W8od71rMe lSKF4Pes5A1wId25oF2jvPLemvVDic7RdtXOEv8e7hMAUxU5qhzAkLxYTsGlntxA /VF581M0ej8ui0yvyzITqlOqWUSz6bJPJpRiVeYfttma3EJivGR5kRszASiUdpW5 n9NngHF4r1Q6G+TeBI+9R8PWFkwKfVpgtnpl9JA0eSvakDUbPtUyImYVyHMjpcV6 TOPKx/w5cuul1Vmf5YtEqHnSiQMYvIcI -----END CERTIFICATE-----Generated at Sat Apr 5 15:07:34 2025 by rpki-client