$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: bLwNaatJVdY1gX49rB5d2IQd7cOjwHhfNoBMfSuYb+E= Subject key identifier: C2:6E:AA:5B:76:8A:48:71:5C:22:CD:9D:0D:F8:DA:FD:0B:61:24:91 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3481 Signing time: Sat 12 Apr 2025 14:29:25 +0000 Manifest this update: Sat 12 Apr 2025 14:29:25 +0000 Manifest next update: Sat 19 Apr 2025 14:29:25 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: 5I8bVYnUx5B93RAi4EWbn5xLqd3NhHH7R5PJfnWxojo=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: 9sEgtc+Sp4Uok1SqtxGHbFLBelwmukEEkeYE5w5yi/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Apr 12 14:29:25 2025 GMT Not After : Apr 19 14:29:25 2025 GMT Subject: CN=67fa78c5-df54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1f:af:4c:63:56:50:83:cd:25:20:8b:36:4d: d3:ed:5d:03:51:69:ee:e5:eb:ce:d3:93:7e:4b:e8: bf:08:20:55:48:3f:3c:91:03:a4:24:f2:b8:0b:f7: b7:02:b2:e3:93:1a:cf:c1:52:d3:c0:75:5b:16:b8: 6c:bd:75:6e:7b:66:9a:7f:50:82:f4:b9:79:35:eb: 1f:11:bd:ac:ca:ec:bf:c4:36:08:1b:f8:85:58:34: cd:ac:e3:53:82:8a:6f:5b:4d:39:35:43:f2:c9:e9: a4:8e:59:b2:37:b2:6f:38:86:20:3c:ba:e1:03:49: c3:11:7b:56:dd:be:c6:60:c0:6f:02:c5:7f:c0:de: 34:b6:fa:9d:56:22:bb:0b:e6:57:8e:87:4e:de:7c: 12:66:4e:01:f8:e1:10:1c:b6:0e:4e:f9:81:80:b7: 77:99:2d:68:07:07:e2:5d:4a:b9:97:00:a7:09:40: c3:1d:67:ee:0d:8b:93:11:44:89:17:8e:b6:47:2f: df:f2:7f:92:14:f3:32:7f:40:2c:fe:fa:8c:71:9e: 15:43:69:99:ac:fd:d4:7c:ea:23:c7:24:bb:21:0f: 7e:15:b8:c8:2f:52:9c:bd:bb:8b:79:52:f5:3d:9b: bc:dc:14:bc:d4:f9:c5:41:48:44:2e:08:c4:5a:87: c3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6E:AA:5B:76:8A:48:71:5C:22:CD:9D:0D:F8:DA:FD:0B:61:24:91 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:2d:44:0a:04:4c:92:3e:52:da:5d:52:fe:ab:2d:36:a8:52: 0d:0c:45:b0:11:b7:2f:c8:13:76:d0:fc:d2:4e:3e:89:00:1e: c0:54:cb:03:ba:e9:cb:d6:16:ee:c6:70:d1:c3:7d:d0:33:3f: 5c:c0:be:9c:50:c4:1f:25:2f:da:53:3f:f5:f6:81:cf:24:10: 31:c0:09:97:2e:9f:8e:dc:26:97:7a:8e:aa:80:40:a1:82:ab: 0b:e7:94:e9:a0:d4:09:8e:bd:97:62:03:35:c9:61:9d:b5:26: 24:17:5a:80:7c:7d:e0:45:68:1d:c4:32:f9:1d:c7:84:dc:ee: 0d:2b:16:92:79:fc:a4:4c:1e:38:71:0b:71:31:46:4c:46:6d: 69:7d:1a:71:95:3d:01:ab:c1:77:22:48:81:aa:b7:d4:f1:9b: 29:aa:e4:cd:44:a5:99:8e:cc:e1:3a:eb:51:23:c3:82:c7:b8: 42:6a:c3:81:eb:7f:44:bc:f7:20:61:90:96:b3:a9:58:43:79: de:23:c3:3e:77:c0:cb:61:7e:b5:f5:56:e8:6d:04:17:aa:75: a3:a5:3f:43:d8:9c:eb:02:f8:cb:e7:ac:c7:e9:36:cb:47:d4: 38:d1:e7:e5:9a:3e:95:14:63:45:8f:5e:02:4a:fb:e6:82:36: 1b:bd:cc:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwNDEyMTQyOTI1WhcNMjUwNDE5MTQyOTI1WjAYMRYwFAYD VQQDEw02N2ZhNzhjNS1kZjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwR+vTGNWUIPNJSCLNk3T7V0DUWnu5evO05N+S+i/CCBVSD88kQOkJPK4C/e3 ArLjkxrPwVLTwHVbFrhsvXVue2aaf1CC9Ll5NesfEb2syuy/xDYIG/iFWDTNrONT gopvW005NUPyyemkjlmyN7JvOIYgPLrhA0nDEXtW3b7GYMBvAsV/wN40tvqdViK7 C+ZXjodO3nwSZk4B+OEQHLYOTvmBgLd3mS1oBwfiXUq5lwCnCUDDHWfuDYuTEUSJ F462Ry/f8n+SFPMyf0As/vqMcZ4VQ2mZrP3UfOojxyS7IQ9+FbjIL1KcvbuLeVL1 PZu83BS81PnFQUhELgjEWofDJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJuqlt2 ikhxXCLNnQ342v0LYSSRMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdLUQKBEySPlLaXVL+qy02qFINDEWwEbcvyBN20PzSTj6JAB7AVMsD uunL1hbuxnDRw33QMz9cwL6cUMQfJS/aUz/19oHPJBAxwAmXLp+O3CaXeo6qgECh gqsL55TpoNQJjr2XYgM1yWGdtSYkF1qAfH3gRWgdxDL5HceE3O4NKxaSefykTB44 cQtxMUZMRm1pfRpxlT0Bq8F3IkiBqrfU8ZspquTNRKWZjszhOutRI8OCx7hCasOB 639EvPcgYZCWs6lYQ3neI8M+d8DLYX619VbobQQXqnWjpT9D2JzrAvjL56zH6TbL R9Q40eflmj6VFGNFj14CSvvmgjYbvcxr -----END CERTIFICATE-----Generated at Sun Apr 13 02:09:50 2025 by rpki-client