$ rpki-client -vvf rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft File: xGfLLMucIacHtd-86roFTBkFI64.mft (raw, json) Hash identifier: xmZ8urqjQdxf9BDbhIMJjI1SDvOKYPMfL9/sOebjfJc= Subject key identifier: 5B:1E:A4:49:1D:4F:2C:98:96:09:A1:9D:40:4E:1A:B5:AB:D6:2B:88 Authority key identifier: C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE Certificate issuer: /CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft Manifest number: 0C2D Signing time: Sun 06 Apr 2025 18:25:40 +0000 Manifest this update: Sun 06 Apr 2025 18:25:40 +0000 Manifest next update: Sun 13 Apr 2025 18:25:40 +0000 Files and hashes: 1: xGfLLMucIacHtd-86roFTBkFI64.crl (hash: y89iJ16kbP5ZgvuV32R68HhZ0c75TrWL93KD/qPt/AU=) 2: 2C1A71D81A9B11EFA4886942C4F9AE02.roa (hash: UTQp4c4ErG5PlENypT/6nQS39iV0gb18Daq4T/Ea0Ug=) 3: 022432421A9B11EF8C724E37C4F9AE02.roa (hash: dm8SxeGSmUIEnKBAxZSYW3Vlgy+3VExTf1YjJz0ds5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C3BE Validity Not Before: Apr 6 18:25:40 2025 GMT Not After : Apr 13 18:25:40 2025 GMT Subject: CN=67f2c724-dc25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:55:ef:54:a4:6d:be:b2:04:c9:1a:2a:f2: 1f:fe:3e:da:bf:58:06:44:4c:0b:7d:41:70:8b:b8: db:52:ce:0f:37:e3:9f:65:9b:45:13:7b:67:df:a4: 7a:68:d0:c0:52:f8:07:4b:f3:6d:6a:67:04:d4:64: 8f:5d:2d:be:1a:3b:a4:1a:de:73:ec:c2:2c:f7:5d: 5e:19:38:06:09:6e:69:04:89:9e:99:30:80:16:b2: 6b:44:3b:10:39:39:d5:64:ab:ec:a3:bf:3d:12:b3: b5:88:56:08:b4:e7:31:96:32:f2:c1:6b:7d:ef:07: 72:f8:5c:e9:9e:b8:e7:95:f4:7e:ca:7a:ee:18:93: 03:04:04:b0:2c:69:85:23:1b:1c:36:d8:d6:61:2b: 51:96:53:f9:f6:27:a6:5c:0c:7d:2b:09:9c:bc:0e: 68:6d:2e:bb:6d:cf:4c:52:5b:d6:c8:04:9d:06:a5: b9:1e:2f:cf:ac:9d:83:f6:1a:89:9d:8c:0f:11:df: 37:3f:73:fb:bb:74:61:28:97:27:9e:05:ca:3a:9b: 8e:2d:12:95:81:49:57:c4:62:25:8a:da:15:cf:86: 56:85:32:b9:13:82:ce:63:98:94:f7:35:64:2b:9b: 52:e6:49:96:24:8d:99:7d:2b:fe:ec:b7:1e:83:07: 6b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1E:A4:49:1D:4F:2C:98:96:09:A1:9D:40:4E:1A:B5:AB:D6:2B:88 X509v3 Authority Key Identifier: keyid:C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ca:2a:8c:9f:60:ef:22:0e:96:3b:21:23:15:9c:46:88:b8: 7f:36:a7:6f:bd:c0:26:12:32:6d:d2:b7:90:4d:00:4a:9d:1d: e2:1c:0f:28:d8:c3:26:1d:50:bb:1b:e1:d0:d4:32:3a:da:fb: d3:1f:54:c9:b2:d6:d5:83:79:65:fa:45:66:93:72:e8:41:1f: 48:15:00:57:d2:79:d6:5c:16:01:48:35:4d:e4:c6:ed:4f:ab: 51:d1:f5:18:cf:f6:6c:78:fd:79:ae:3a:73:d8:6a:b6:d3:f9: 73:ab:df:9c:7a:dd:28:c5:5a:6d:f7:44:e2:23:f9:9e:09:79: ea:15:9a:5e:7a:cc:e4:04:06:7c:fe:09:67:fd:75:0a:95:f3: ee:a7:fa:bf:56:12:5d:a6:88:02:d3:38:53:30:be:09:11:b0: 1f:ba:e9:5d:94:75:20:72:d5:dc:c3:d7:7a:3a:68:dd:a1:77: e0:01:58:5f:26:7c:25:69:94:ab:e7:12:c3:9e:77:5a:f0:85: c9:92:d4:19:7d:be:ed:45:11:19:57:cc:6c:6d:ac:1a:33:0c: 4e:7c:72:5a:8b:be:e9:62:34:35:eb:b0:fe:eb:c6:f2:ee:50: a8:1a:66:9e:dc:38:ce:b8:fb:bc:6b:2f:ed:71:49:34:74:38: bb:36:99:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzQkUxMTAvBgNVBAUTKEM0NjdDQjJDQ0I5QzIxQTcwN0I1REZCQ0VBQkEwNTRD MTkwNTIzQUUwHhcNMjUwNDA2MTgyNTQwWhcNMjUwNDEzMTgyNTQwWjAYMRYwFAYD VQQDEw02N2YyYzcyNC1kYzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm1V71Skbb6yBMkaKvIf/j7av1gGREwLfUFwi7jbUs4PN+OfZZtFE3tn36R6 aNDAUvgHS/NtamcE1GSPXS2+GjukGt5z7MIs911eGTgGCW5pBImemTCAFrJrRDsQ OTnVZKvso789ErO1iFYItOcxljLywWt97wdy+FzpnrjnlfR+ynruGJMDBASwLGmF IxscNtjWYStRllP59iemXAx9KwmcvA5obS67bc9MUlvWyASdBqW5Hi/PrJ2D9hqJ nYwPEd83P3P7u3RhKJcnngXKOpuOLRKVgUlXxGIlitoVz4ZWhTK5E4LOY5iU9zVk K5tS5kmWJI2ZfSv+7Lcegwdr8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsepEkd TyyYlgmhnUBOGrWr1iuIMB8GA1UdIwQYMBaAFMRnyyzLnCGnB7XfvOq6BUwZBSOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzNCRS85NDdCMzUwNjA5 MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lhY0h0ZC04NnJvRlRCa0ZJ NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHZkxMTXVjSWFjSHRkLTg2cm9GVEJrRkk2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzNCRS85NDdCMzUwNjA5MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lh Y0h0ZC04NnJvRlRCa0ZJNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMyiqMn2DvIg6WOyEjFZxGiLh/NqdvvcAmEjJt0reQTQBKnR3iHA8o 2MMmHVC7G+HQ1DI62vvTH1TJstbVg3ll+kVmk3LoQR9IFQBX0nnWXBYBSDVN5Mbt T6tR0fUYz/ZseP15rjpz2Gq20/lzq9+cet0oxVpt90TiI/meCXnqFZpeeszkBAZ8 /gln/XUKlfPup/q/VhJdpogC0zhTML4JEbAfuuldlHUgctXcw9d6OmjdoXfgAVhf JnwlaZSr5xLDnnda8IXJktQZfb7tRREZV8xsbawaMwxOfHJai77pYjQ167D+68by 7lCoGmae3DjOuPu8ay/tcUk0dDi7NplZ -----END CERTIFICATE-----Generated at Mon Apr 7 20:36:36 2025 by rpki-client