$ rpki-client -vvf rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft File: cQovxyPTd706pfsnGkrolOV6dFQ.mft (raw, json) Hash identifier: h9GrIe2czhWGtIEqSUEdLGLQbPuKVOlSE2Z6CCAJsA4= Subject key identifier: 66:EA:34:33:42:93:4F:63:27:66:39:2A:8C:65:0B:EA:35:9F:F4:CF Authority key identifier: 71:0A:2F:C7:23:D3:77:BD:3A:A5:FB:27:1A:4A:E8:94:E5:7A:74:54 Certificate issuer: /CN=A91976E2/serialNumber=710A2FC723D377BD3AA5FB271A4AE894E57A7454 Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft Manifest number: 0350 Signing time: Thu 03 Apr 2025 01:01:56 +0000 Manifest this update: Thu 03 Apr 2025 01:01:56 +0000 Manifest next update: Thu 10 Apr 2025 01:01:56 +0000 Files and hashes: 1: cQovxyPTd706pfsnGkrolOV6dFQ.crl (hash: BZMXfJEy15PCS50n7+sk9XuqmEs20QnODuOa8+q/ub4=) 2: 02F03EBCD2F111ECB0DB7850C4F9AE02.roa (hash: Q0fNfLOcKzzEZus7R55E69tTYXEUxIWv89YZB7PtU84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.crl rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91976E2 Validity Not Before: Apr 3 01:01:56 2025 GMT Not After : Apr 10 01:01:56 2025 GMT Subject: CN=67edde04-7be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:88:bc:59:91:16:a6:5b:1f:c5:79:db:39:fc: 15:2c:b3:33:d8:ba:8d:19:7f:b4:f5:03:a6:a6:34: ba:e3:74:a1:c0:1b:70:d7:c1:34:a9:21:d1:7d:ea: 81:52:97:de:49:60:9d:a5:a3:51:60:74:87:b0:3a: 08:f3:ef:49:a5:a6:25:63:88:cb:1f:a2:16:0b:2b: 51:00:30:5f:e6:88:18:da:a9:0a:40:6a:3a:7b:d3: 88:44:d6:0c:34:15:4c:4a:05:bd:c4:22:ca:f2:47: 78:e8:1d:8c:a2:73:58:a4:46:a4:02:db:b5:c3:1a: f0:df:a0:4c:af:36:c6:b4:a6:c2:47:b5:67:a2:de: b7:58:b7:9b:74:f1:13:e0:9d:8b:71:af:84:4f:79: 6e:e9:10:42:4a:5d:d0:60:95:ec:8e:85:e6:95:9a: bb:5e:06:8f:75:20:43:c4:34:1e:f8:39:f2:5c:7a: ae:bd:d7:f4:24:00:a3:6e:af:2d:e8:57:13:0e:11: 5f:25:98:45:d8:d5:67:16:50:57:53:1f:52:91:43: f4:f3:b8:15:38:47:aa:0e:d2:f7:33:08:14:de:cc: 53:c1:05:61:86:f9:97:22:c9:ba:07:a6:20:5f:19: 73:ea:f3:e1:97:f3:a1:24:d6:34:4a:1d:6a:3c:24: 04:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EA:34:33:42:93:4F:63:27:66:39:2A:8C:65:0B:EA:35:9F:F4:CF X509v3 Authority Key Identifier: keyid:71:0A:2F:C7:23:D3:77:BD:3A:A5:FB:27:1A:4A:E8:94:E5:7A:74:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQovxyPTd706pfsnGkrolOV6dFQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91976E2/47C44AD8AE8911EC8A8D3368C4F9AE02/cQovxyPTd706pfsnGkrolOV6dFQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ce:66:f3:9d:a0:01:ee:1d:d4:75:1d:1a:35:13:87:f7:df: da:16:91:27:90:1a:ab:74:9e:be:f1:d9:e7:2a:50:84:f6:31: 97:a7:dc:66:47:af:a0:97:bc:9a:90:43:09:ee:00:39:47:b1: cd:b6:c6:45:89:72:35:6e:9d:70:44:59:e2:6b:ac:16:01:19: 0b:d8:7d:9a:4b:36:35:b0:a1:b5:5c:5f:55:60:1a:30:5e:bc: d1:c8:f5:d7:c4:79:9c:a0:b8:7d:a7:f5:3f:c5:ee:cf:07:19: 33:42:8c:ae:17:67:51:91:a2:7a:1f:01:cd:5f:66:9b:02:14: 07:46:4d:96:cd:84:3e:17:19:3f:77:1e:81:82:2c:6a:f0:76: 03:2d:b8:d3:27:2c:60:b4:9e:16:f7:be:6a:f4:2c:cd:f5:81: 46:a3:8b:fa:f7:0a:d0:68:5c:ea:ed:9e:ed:94:b5:41:75:3e: ca:18:59:04:9a:64:1c:55:e4:40:c9:c7:58:2d:20:84:ed:9c: f7:88:6a:ec:02:f7:84:50:c8:d1:b4:99:21:a3:d1:5a:58:2c: 98:37:87:a0:c5:c2:6e:56:17:a4:6a:8c:42:ee:31:c0:78:e9: 09:a7:df:7b:b4:ad:3b:14:21:b6:ef:c7:55:df:8a:6f:b9:0a: a4:cb:fb:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc2RTIxMTAvBgNVBAUTKDcxMEEyRkM3MjNEMzc3QkQzQUE1RkIyNzFBNEFFODk0 RTU3QTc0NTQwHhcNMjUwNDAzMDEwMTU2WhcNMjUwNDEwMDEwMTU2WjAYMRYwFAYD VQQDEw02N2VkZGUwNC03YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4i8WZEWplsfxXnbOfwVLLMz2LqNGX+09QOmpjS643ShwBtw18E0qSHRfeqB UpfeSWCdpaNRYHSHsDoI8+9JpaYlY4jLH6IWCytRADBf5ogY2qkKQGo6e9OIRNYM NBVMSgW9xCLK8kd46B2MonNYpEakAtu1wxrw36BMrzbGtKbCR7Vnot63WLebdPET 4J2Lca+ET3lu6RBCSl3QYJXsjoXmlZq7XgaPdSBDxDQe+DnyXHquvdf0JACjbq8t 6FcTDhFfJZhF2NVnFlBXUx9SkUP087gVOEeqDtL3MwgU3sxTwQVhhvmXIsm6B6Yg Xxlz6vPhl/OhJNY0Sh1qPCQEPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbqNDNC k09jJ2Y5KoxlC+o1n/TPMB8GA1UdIwQYMBaAFHEKL8cj03e9OqX7JxpK6JTlenRU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzZFMi80N0M0NEFEOEFF ODkxMUVDOEE4RDMzNjhDNEY5QUUwMi9jUW92eHlQVGQ3MDZwZnNuR2tyb2xPVjZk RlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRb3Z4eVBUZDcwNnBmc25Ha3JvbE9WNmRGUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzZFMi80N0M0NEFEOEFFODkxMUVDOEE4RDMzNjhDNEY5QUUwMi9jUW92eHlQVGQ3 MDZwZnNuR2tyb2xPVjZkRlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0zmbznaAB7h3UdR0aNROH99/aFpEnkBqrdJ6+8dnnKlCE9jGXp9xm R6+gl7yakEMJ7gA5R7HNtsZFiXI1bp1wRFnia6wWARkL2H2aSzY1sKG1XF9VYBow XrzRyPXXxHmcoLh9p/U/xe7PBxkzQoyuF2dRkaJ6HwHNX2abAhQHRk2WzYQ+Fxk/ dx6Bgixq8HYDLbjTJyxgtJ4W975q9CzN9YFGo4v69wrQaFzq7Z7tlLVBdT7KGFkE mmQcVeRAycdYLSCE7Zz3iGrsAveEUMjRtJkho9FaWCyYN4egxcJuVhekaoxC7jHA eOkJp997tK07FCG278dV34pvuQqky/tW -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:07 2025 by rpki-client