$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: JvkGkT8PFhGMuSmzuFMfgubz4UxWbwf0wM0Yo4IqPS8= Subject key identifier: D1:7C:95:0D:4B:87:2D:0A:AF:67:95:2D:D8:79:D6:7C:0A:1E:68:98 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 07AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 07A7 Signing time: Fri 04 Apr 2025 21:20:54 +0000 Manifest this update: Fri 04 Apr 2025 21:20:54 +0000 Manifest next update: Fri 11 Apr 2025 21:20:54 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: rdNnNtZGdftI4fgBrCJ3T7TqQ8EbzDntnsnBVHO9dZ0=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2 Validity Not Before: Apr 4 21:20:54 2025 GMT Not After : Apr 11 21:20:54 2025 GMT Subject: CN=67f04d36-55e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b3:e3:e5:3f:58:0b:2b:ca:6e:a3:8b:b9:ce: 4a:f3:6d:99:4b:e1:0d:86:ba:ac:b2:1d:a7:e5:d0: 8d:f6:c9:d9:20:72:e0:84:62:df:9b:aa:c8:b4:a6: cc:2f:d6:03:d3:00:41:08:d1:e8:aa:26:45:07:50: 96:7e:b0:61:ff:be:24:94:50:d8:50:f4:c1:2f:eb: f5:71:44:eb:f1:13:0c:19:ca:ab:f3:ab:88:36:e2: 45:1d:60:c3:cb:1d:65:01:e0:91:5e:28:4d:73:3e: f5:d5:ea:8d:d2:86:50:d4:8c:9d:a0:9b:49:0d:a5: 38:32:c3:5b:b6:64:03:b7:e0:30:91:af:72:f1:02: 18:38:ac:37:50:27:93:8b:2c:bf:25:76:c3:ef:5e: 6b:a9:a5:4d:04:5c:46:10:31:a8:fe:95:96:49:ed: c6:fc:21:02:a9:7d:41:10:d1:01:08:49:1d:9d:77: 0a:9f:87:5f:c9:ce:cb:4c:46:bb:3e:77:f4:d1:40: 37:77:2c:1c:18:e9:ab:0d:98:4d:8c:c0:6e:25:9a: b2:96:05:ab:7d:61:35:78:71:3d:bc:06:8c:f7:b4: 64:5b:8f:be:f1:e0:2c:fa:5b:0a:f5:03:e0:45:3a: 96:99:1a:dd:74:62:43:09:6f:f9:d3:19:93:ec:8f: 87:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7C:95:0D:4B:87:2D:0A:AF:67:95:2D:D8:79:D6:7C:0A:1E:68:98 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cd:ac:eb:44:a4:a6:09:e7:ba:d2:22:18:73:a3:f7:44:96: 46:87:48:f3:a6:cf:20:83:e4:21:ef:50:0f:62:2d:c1:ba:2e: af:0d:85:c0:cc:70:9b:a5:86:b5:58:94:6b:c9:ce:d0:44:8d: 11:25:5e:cf:59:26:70:d9:2d:bf:0d:67:9c:66:04:6c:f1:1c: 73:e6:ef:9f:5a:8f:cc:3e:d8:18:98:41:30:cc:2d:1a:06:04: b7:52:10:f3:8c:c7:a1:fb:a5:15:4c:ad:d1:fa:c1:de:e8:72: d0:18:db:1c:43:c8:14:37:6e:9b:12:f4:30:72:69:dd:00:b7: 6d:a0:79:92:d1:b0:ad:f2:34:ab:ba:92:3a:4c:48:8f:7e:8e: 17:35:08:38:02:75:3c:c6:7a:64:b6:fa:a4:1e:95:0f:97:45: ef:f8:01:c0:5d:02:b5:49:c1:cb:f3:8c:94:7f:cf:8c:66:af: ff:84:15:a2:3b:31:ae:a6:a2:af:14:bd:c1:4a:33:a3:96:e6: 99:dc:dc:75:49:31:b5:2d:97:59:b6:dd:95:42:96:f4:61:ba: 86:33:52:37:c2:10:d2:40:4f:f4:6e:04:e3:40:b7:a7:db:23: d4:b1:43:7d:0e:86:d6:7c:a0:91:73:de:d6:af:bf:01:ba:8e: 64:61:9d:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUwNDA0MjEyMDU0WhcNMjUwNDExMjEyMDU0WjAYMRYwFAYD VQQDEw02N2YwNGQzNi01NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7Pj5T9YCyvKbqOLuc5K822ZS+ENhrqssh2n5dCN9snZIHLghGLfm6rItKbM L9YD0wBBCNHoqiZFB1CWfrBh/74klFDYUPTBL+v1cUTr8RMMGcqr86uINuJFHWDD yx1lAeCRXihNcz711eqN0oZQ1IydoJtJDaU4MsNbtmQDt+Awka9y8QIYOKw3UCeT iyy/JXbD715rqaVNBFxGEDGo/pWWSe3G/CECqX1BENEBCEkdnXcKn4dfyc7LTEa7 Pnf00UA3dywcGOmrDZhNjMBuJZqylgWrfWE1eHE9vAaM97RkW4++8eAs+lsK9QPg RTqWmRrddGJDCW/50xmT7I+H4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNF8lQ1L hy0Kr2eVLdh51nwKHmiYMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTzazrRKSmCee60iIYc6P3RJZGh0jzps8gg+Qh71APYi3Bui6vDYXA zHCbpYa1WJRryc7QRI0RJV7PWSZw2S2/DWecZgRs8Rxz5u+fWo/MPtgYmEEwzC0a BgS3UhDzjMeh+6UVTK3R+sHe6HLQGNscQ8gUN26bEvQwcmndALdtoHmS0bCt8jSr upI6TEiPfo4XNQg4AnU8xnpktvqkHpUPl0Xv+AHAXQK1ScHL84yUf8+MZq//hBWi OzGupqKvFL3BSjOjluaZ3Nx1STG1LZdZtt2VQpb0YbqGM1I3whDSQE/0bgTjQLen 2yPUsUN9DobWfKCRc97Wr78Buo5kYZ1U -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:22 2025 by rpki-client