$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: OXJ6A5fQs3/GUu6gsxsriGtBnb4P+0Rzud+Ub2R9Xa0= Subject key identifier: 04:8A:68:B7:0B:BB:FA:B3:45:85:1E:A7:BB:3B:B7:1A:49:6A:00:8B Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 0F Signing time: Thu 03 Apr 2025 07:25:02 +0000 Manifest this update: Thu 03 Apr 2025 07:25:02 +0000 Manifest next update: Thu 10 Apr 2025 07:25:02 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: oihf+YTIn9KyEiGpkvoDrp3CGSyqegk65cMxg3MixfQ=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8 Validity Not Before: Apr 3 07:25:02 2025 GMT Not After : Apr 10 07:25:02 2025 GMT Subject: CN=67ee37ce-691b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fa:60:4c:a3:4b:f5:43:6d:9b:bc:3f:33:e7: 03:8c:76:76:06:d0:79:03:31:45:ab:fe:65:cd:f1: 10:3d:d9:b8:a6:d3:85:a6:5a:8a:ed:f8:f1:f7:c0: 41:ec:fc:71:3f:2f:36:5e:d1:5e:a1:c0:b8:66:92: 63:f2:71:e0:be:b2:b0:2c:e1:6f:11:ea:71:09:cf: 28:a3:ed:8f:5a:8d:da:79:38:fb:c7:c7:1f:2b:51: 45:e0:5c:70:21:4a:06:16:0e:9b:30:99:f9:f7:ca: a9:48:ec:06:34:d7:4b:a4:ea:c4:a4:b1:1f:63:7f: b7:83:df:bc:1d:3d:73:1f:67:56:d7:14:2a:d2:3a: ec:9d:dc:58:47:0d:e5:ad:f6:10:b8:8e:eb:e3:c1: bc:2d:cd:ff:2c:dc:82:11:b7:31:c3:5f:d1:d9:ae: 46:f6:69:ce:6d:90:2d:92:df:ad:08:23:00:9b:e2: 59:68:9f:b4:92:a3:f6:fc:5f:d4:0f:42:e0:43:db: 0e:a6:11:d3:db:a1:bb:2b:62:1a:74:90:3b:94:7d: 83:8f:86:2d:94:d0:ad:62:2b:a4:9f:8a:6e:ab:88: 3a:cb:75:e4:61:53:7e:b2:af:02:e1:fc:e2:5b:72: bb:10:50:bd:8d:54:8d:33:2c:36:f8:cd:54:8e:dc: 29:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8A:68:B7:0B:BB:FA:B3:45:85:1E:A7:BB:3B:B7:1A:49:6A:00:8B X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:58:ed:6a:92:44:ca:a2:b9:97:32:e9:8a:77:d1:39:5f:36: 0f:c5:e6:e0:5f:e5:28:f1:e4:bc:80:7b:4a:5a:50:7f:7a:87: f0:27:59:bc:d5:0b:76:62:ba:1a:6b:18:9a:d7:89:ce:c6:d2: 31:29:bf:04:6c:29:eb:47:b6:30:80:a1:0e:f5:a6:5b:ae:aa: 6c:55:4a:6d:d4:5a:3a:0e:de:34:7c:c9:f3:c7:41:65:6a:11: da:8c:71:d4:77:a3:70:40:7f:5b:36:69:37:a2:ec:1d:22:26: 69:5c:52:2c:e7:ac:02:7d:00:be:20:b5:93:67:9a:b3:7a:1e: 41:c1:df:ca:18:ef:47:d4:35:52:f4:16:25:67:0d:21:41:35: cc:37:f6:99:48:bc:1b:16:39:a6:77:ad:32:86:46:20:6f:86: 26:5f:c6:34:92:60:ea:53:a1:01:83:2b:97:ec:49:c7:59:dc: 60:8e:26:8e:42:23:19:99:50:6b:a3:94:da:87:c4:97:75:a7: 9a:66:da:5e:54:93:bf:ea:47:cf:65:6e:c3:e5:bc:4b:da:e7: 50:87:a0:c1:a7:a0:3f:28:2c:f2:af:e5:f9:a7:99:8b:53:f2: 31:a5:49:9d:72:2a:60:31:c3:4c:be:62:7a:88:6a:04:9d:41: 48:27:1e:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA0MDMwNzI1MDJaFw0yNTA0MTAwNzI1MDJaMBgxFjAUBgNV BAMTDTY3ZWUzN2NlLTY5MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/+mBMo0v1Q22bvD8z5wOMdnYG0HkDMUWr/mXN8RA92bim04WmWort+PH3wEHs /HE/LzZe0V6hwLhmkmPyceC+srAs4W8R6nEJzyij7Y9ajdp5OPvHxx8rUUXgXHAh SgYWDpswmfn3yqlI7AY010uk6sSksR9jf7eD37wdPXMfZ1bXFCrSOuyd3FhHDeWt 9hC4juvjwbwtzf8s3IIRtzHDX9HZrkb2ac5tkC2S360IIwCb4llon7SSo/b8X9QP QuBD2w6mEdPbobsrYhp0kDuUfYOPhi2U0K1iK6Sfim6riDrLdeRhU36yrwLh/OJb crsQUL2NVI0zLDb4zVSO3CnZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBIpotwu7 +rNFhR6nuzu3GklqAIswHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJZY7WqSRMqiuZcy6Yp30TlfNg/F5uBf5Sjx5LyAe0paUH96h/AnWbzV C3ZiuhprGJrXic7G0jEpvwRsKetHtjCAoQ71pluuqmxVSm3UWjoO3jR8yfPHQWVq EdqMcdR3o3BAf1s2aTei7B0iJmlcUiznrAJ9AL4gtZNnmrN6HkHB38oY70fUNVL0 FiVnDSFBNcw39plIvBsWOaZ3rTKGRiBvhiZfxjSSYOpToQGDK5fsScdZ3GCOJo5C IxmZUGujlNqHxJd1p5pm2l5Uk7/qR89lbsPlvEva51CHoMGnoD8oLPKv5fmnmYtT 8jGlSZ1yKmAxw0y+YnqIagSdQUgnHrk= -----END CERTIFICATE-----Generated at Sat Apr 5 04:03:40 2025 by rpki-client