$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: aq8MkgWtQZi0xY+WlwPgmTC0RGFaK+ba2RNlu6gKHt4= Subject key identifier: 3A:7B:62:BC:F3:7F:01:F8:A2:0B:8B:E4:D4:E4:0F:34:A8:21:D7:6A Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 014D Signing time: Mon 07 Apr 2025 03:08:13 +0000 Manifest this update: Mon 07 Apr 2025 03:08:12 +0000 Manifest next update: Mon 14 Apr 2025 03:08:12 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: lbgdx8WuQFjz2cJP9ol+/AGVYTSjGbHzhUv+ajlWdMo=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: h2JTkH5cDdzaWjiM7lCs6Ni3E0awofcV4Wu5xaJdDqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 03:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3 Validity Not Before: Apr 7 03:08:12 2025 GMT Not After : Apr 14 03:08:12 2025 GMT Subject: CN=67f3419d-5d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:14:9e:ac:2b:72:69:df:12:46:9e:75:2a: 53:ba:14:9f:19:4b:28:63:70:22:cb:b5:64:b6:d7: c0:f6:92:1f:c7:8a:ec:c4:d2:6b:6f:b7:75:8b:ad: 62:d3:74:9b:69:92:1b:46:e1:f6:a1:a8:78:c4:22: 74:98:40:64:6d:e8:a5:08:d6:80:ea:84:b1:eb:58: a9:88:1a:59:b9:f1:5e:20:2f:2e:67:f9:f2:03:55: 31:2e:b6:c3:f4:e9:1e:bd:60:c4:93:40:c3:61:be: 3b:89:73:db:63:ac:44:f6:82:0d:04:da:aa:95:6c: d8:d6:99:2e:dc:b3:86:1a:10:63:d8:23:b4:d0:ed: be:6d:6b:06:e3:c3:a5:00:c6:b1:05:b7:83:c4:ba: 0f:12:13:58:4a:90:d7:e1:8c:b1:6b:5c:f3:dd:2f: 1d:7e:d1:09:b4:7e:4b:ba:64:38:75:77:13:f8:27: d3:d4:c6:39:c8:ba:e6:a0:7a:ce:d4:27:25:26:af: 1a:4e:b5:fc:da:19:d1:2a:24:f9:63:30:0e:0a:0a: ac:20:e1:60:82:3b:e2:29:1d:39:33:cd:35:cb:51: ef:78:c0:c5:84:ac:5b:94:7e:68:a5:84:7c:6d:50: 1a:32:43:bf:4d:36:20:7f:7c:f4:5a:f5:4a:2d:2b: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7B:62:BC:F3:7F:01:F8:A2:0B:8B:E4:D4:E4:0F:34:A8:21:D7:6A X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:a0:0d:15:92:30:ed:bd:83:06:e4:17:d6:8b:7a:d3:e4:77: 22:0b:3c:98:5f:ba:6b:24:5a:74:b7:1b:73:c6:aa:68:69:e0: 6e:6d:cd:9d:03:8e:f4:42:52:30:d4:6f:e9:55:8f:4c:90:4d: 49:5c:b0:0b:7b:33:9e:32:e9:6f:36:ab:ed:c2:83:da:b1:9d: 14:ab:64:d1:84:bd:bf:40:b7:d5:df:3d:68:c2:90:b8:d8:cc: 0d:f3:f1:42:b5:35:bb:3c:f7:9d:83:cd:d2:e6:e3:79:e1:a6: c3:77:5d:57:36:e6:ff:97:68:be:bc:66:04:ac:b2:10:77:d5: 1a:ff:05:8d:d9:95:4c:0c:c2:8f:c0:a4:06:2f:ea:59:09:ed: 5b:bc:19:2f:20:8f:c1:d4:37:1d:ac:66:bf:9d:52:ff:b1:99: 95:e4:64:50:8c:2b:2e:ee:0d:20:08:9b:2f:32:31:f8:54:5c: fb:81:14:73:42:f5:7c:71:af:cb:7d:8f:10:9c:78:44:c8:06: 47:3f:e0:c8:9d:1d:9b:42:02:c0:48:10:6d:29:9e:0f:15:14: fc:18:3a:78:0c:dc:93:66:83:75:76:95:3f:ee:76:f6:7d:c8: b4:c0:3d:3e:85:6b:ac:7c:2d:8c:9a:90:4e:3c:de:3f:96:37: 94:80:ee:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUwNDA3MDMwODEyWhcNMjUwNDE0MDMwODEyWjAYMRYwFAYD VQQDEw02N2YzNDE5ZC01ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ8UnqwrcmnfEkaedSpTuhSfGUsoY3Aiy7VkttfA9pIfx4rsxNJrb7d1i61i 03SbaZIbRuH2oah4xCJ0mEBkbeilCNaA6oSx61ipiBpZufFeIC8uZ/nyA1UxLrbD 9OkevWDEk0DDYb47iXPbY6xE9oINBNqqlWzY1pku3LOGGhBj2CO00O2+bWsG48Ol AMaxBbeDxLoPEhNYSpDX4Yyxa1zz3S8dftEJtH5LumQ4dXcT+CfT1MY5yLrmoHrO 1CclJq8aTrX82hnRKiT5YzAOCgqsIOFggjviKR05M801y1HveMDFhKxblH5opYR8 bVAaMkO/TTYgf3z0WvVKLSuM+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp7Yrzz fwH4oguL5NTkDzSoIddqMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOoA0VkjDtvYMG5BfWi3rT5HciCzyYX7prJFp0txtzxqpoaeBubc2d A470QlIw1G/pVY9MkE1JXLALezOeMulvNqvtwoPasZ0Uq2TRhL2/QLfV3z1owpC4 2MwN8/FCtTW7PPedg83S5uN54abDd11XNub/l2i+vGYErLIQd9Ua/wWN2ZVMDMKP wKQGL+pZCe1bvBkvII/B1DcdrGa/nVL/sZmV5GRQjCsu7g0gCJsvMjH4VFz7gRRz QvV8ca/LfY8QnHhEyAZHP+DInR2bQgLASBBtKZ4PFRT8GDp4DNyTZoN1dpU/7nb2 fci0wD0+hWusfC2MmpBOPN4/ljeUgO7X -----END CERTIFICATE-----Generated at Mon Apr 7 21:40:24 2025 by rpki-client