$ rpki-client -vvf rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft File: dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft (raw, json) Hash identifier: 3vBLs5XU9mmS0Lyqyh8SQXhYVFY09Jdh7DcgyadlOMA= Subject key identifier: B1:FB:EB:98:31:D0:CF:8C:18:36:12:1E:74:1D:25:8C:57:9E:E7:43 Authority key identifier: 74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 Certificate issuer: /CN=A91838AE/serialNumber=749427218111D2F2F5A570B99517CA08E5773724 Certificate serial: 06C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft Manifest number: 06B9 Signing time: Wed 02 Apr 2025 22:08:06 +0000 Manifest this update: Wed 02 Apr 2025 22:08:06 +0000 Manifest next update: Wed 09 Apr 2025 22:08:06 +0000 Files and hashes: 1: dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl (hash: IBgovIcvlnDzJPVOu4V3Q6Dx+lJ5SoF6uN58O+kSKvs=) 2: 33EA4CE055AE11EBA5EFA876C4F9AE02.roa (hash: Zjwbd7A/MXOwRReQkUKden3QdXuGaPIKzLzYkjV/0SE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91838AE Validity Not Before: Apr 2 22:08:06 2025 GMT Not After : Apr 9 22:08:06 2025 GMT Subject: CN=67edb546-c4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:61:ef:04:6b:3b:5b:8f:b9:78:5c:cf:64: c5:44:8f:20:6d:58:77:83:ca:8e:d0:68:d4:17:49: b1:b8:35:85:ce:de:95:a9:85:81:63:56:9e:21:c3: e2:2e:5e:94:05:b6:f1:ac:7f:62:3c:d8:66:2e:fd: 74:7b:4f:25:2b:9b:d4:e6:eb:5d:83:63:9e:22:1b: 62:22:c7:2b:1f:bb:dd:09:78:ea:44:e0:53:4e:d6: 1a:27:aa:5e:cf:c6:95:1f:86:94:ca:a3:9c:8c:72: 50:d9:79:fb:28:81:8a:d2:d6:0b:72:ba:25:e3:49: 43:f8:be:c6:ef:80:2d:31:86:dd:be:9a:54:82:b9: 0a:cb:e0:59:eb:7e:e4:f3:46:5b:5e:93:06:79:dc: 07:d3:0c:35:d4:78:cb:05:82:d3:39:4e:cf:dc:7c: 02:e3:6c:3c:2f:84:f1:6e:7d:a3:32:e5:29:1c:a3: cc:85:03:98:a3:36:4f:1f:a0:aa:76:96:ac:23:2d: 1b:72:5a:30:ce:5b:27:98:7b:ba:3c:af:36:9d:33: ec:20:b6:f4:cf:72:22:d7:55:08:e4:92:8c:c0:d0: 27:ad:e2:f5:6e:32:aa:8a:b4:07:41:b2:fc:27:b2: 26:af:d4:dc:f6:0c:4a:cb:98:af:53:49:8c:2f:7c: f0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FB:EB:98:31:D0:CF:8C:18:36:12:1E:74:1D:25:8C:57:9E:E7:43 X509v3 Authority Key Identifier: keyid:74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c7:0a:49:44:b4:e6:15:a7:35:3b:4c:4d:1e:cf:72:56:23: 3c:f0:5a:ee:16:3c:37:ce:93:4f:09:50:66:5f:7b:30:b9:8e: 89:2b:e9:98:1a:db:73:a1:f2:3b:37:a1:88:3b:b0:9f:2e:fc: 7e:17:88:08:72:12:73:5f:28:d2:7e:99:29:24:68:c0:1d:7c: 68:4f:e4:ae:e5:73:69:c2:c8:31:52:04:c8:43:eb:9c:38:d9: c4:49:09:31:a0:15:ce:a7:af:4e:be:8e:97:05:ff:26:79:04: 67:da:84:05:82:a5:c6:93:02:41:cd:f4:8b:0c:45:99:c5:a2: f9:66:de:91:60:43:e4:bc:3a:6b:df:e8:40:ea:ef:3c:4f:14: eb:02:71:d4:50:3b:30:81:6a:ac:93:13:59:6c:22:ef:ee:59: ba:ad:c1:1c:79:9f:25:55:ec:d9:e0:1d:fa:2f:15:52:8d:da: 22:87:ab:81:9d:90:3d:77:69:5e:ce:f8:7b:e0:21:c5:a1:13: c0:2d:1e:7b:43:48:7b:f7:cc:a2:b1:8f:ca:6e:90:18:bd:2f: 48:99:d8:6d:b3:77:60:c2:bc:1b:84:99:1c:c7:44:4c:3d:10: 28:6a:1d:9f:c3:39:27:19:ef:05:4a:f6:a3:a8:ec:6a:6c:2a: ff:93:c6:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM4QUUxMTAvBgNVBAUTKDc0OTQyNzIxODExMUQyRjJGNUE1NzBCOTk1MTdDQTA4 RTU3NzM3MjQwHhcNMjUwNDAyMjIwODA2WhcNMjUwNDA5MjIwODA2WjAYMRYwFAYD VQQDEw02N2VkYjU0Ni1jNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyBh7wRrO1uPuXhcz2TFRI8gbVh3g8qO0GjUF0mxuDWFzt6VqYWBY1aeIcPi Ll6UBbbxrH9iPNhmLv10e08lK5vU5utdg2OeIhtiIscrH7vdCXjqROBTTtYaJ6pe z8aVH4aUyqOcjHJQ2Xn7KIGK0tYLcrol40lD+L7G74AtMYbdvppUgrkKy+BZ637k 80ZbXpMGedwH0ww11HjLBYLTOU7P3HwC42w8L4Txbn2jMuUpHKPMhQOYozZPH6Cq dpasIy0bclowzlsnmHu6PK82nTPsILb0z3Ii11UI5JKMwNAnreL1bjKqirQHQbL8 J7Imr9Tc9gxKy5ivU0mML3zw2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH765gx 0M+MGDYSHnQdJYxXnudDMB8GA1UdIwQYMBaAFHSUJyGBEdLy9aVwuZUXygjldzck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzhBRS83MDcwQTBGMDU1 OUIxMUVCQkExMTcxMzdDNEY5QUUwMi9kSlFuSVlFUjB2TDFwWEM1bFJmS0NPVjNO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RKUW5JWUVSMHZMMXBYQzVsUmZLQ09WM055US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzhBRS83MDcwQTBGMDU1OUIxMUVCQkExMTcxMzdDNEY5QUUwMi9kSlFuSVlFUjB2 TDFwWEM1bFJmS0NPVjNOeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoxwpJRLTmFac1O0xNHs9yViM88FruFjw3zpNPCVBmX3swuY6JK+mY GttzofI7N6GIO7CfLvx+F4gIchJzXyjSfpkpJGjAHXxoT+Su5XNpwsgxUgTIQ+uc ONnESQkxoBXOp69Ovo6XBf8meQRn2oQFgqXGkwJBzfSLDEWZxaL5Zt6RYEPkvDpr 3+hA6u88TxTrAnHUUDswgWqskxNZbCLv7lm6rcEceZ8lVezZ4B36LxVSjdoih6uB nZA9d2lezvh74CHFoRPALR57Q0h798yisY/KbpAYvS9Imdhts3dgwrwbhJkcx0RM PRAoah2fwzknGe8FSvajqOxqbCr/k8bE -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:36 2025 by rpki-client