$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.mft File: 43R0Hh7G7NjwB3XisOiSmLY45mo.mft (raw, json) Hash identifier: c9qf9w4gh95P0G8RM70NPc5QeDOAUR2ZE125Sxvj5Vo= Subject key identifier: C5:26:32:A1:AE:5E:AC:DA:97:84:CE:28:D5:3D:77:2C:78:00:5B:46 Authority key identifier: E3:74:74:1E:1E:C6:EC:D8:F0:07:75:E2:B0:E8:92:98:B6:38:E6:6A Certificate issuer: /CN=A91B0416/serialNumber=E374741E1EC6ECD8F00775E2B0E89298B638E66A Certificate serial: 0411 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/43R0Hh7G7NjwB3XisOiSmLY45mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.mft Manifest number: 040D Signing time: Sat 05 Apr 2025 00:33:44 +0000 Manifest this update: Sat 05 Apr 2025 00:33:44 +0000 Manifest next update: Sat 12 Apr 2025 00:33:44 +0000 Files and hashes: 1: 43R0Hh7G7NjwB3XisOiSmLY45mo.crl (hash: axJnXPvHRvf0ZgD4UhPJ6FG9cIfbDQbEKcKPARO12hQ=) 2: B56622C2638011ECAFDDDF20C4F9AE02.roa (hash: 5JVS9rLOFKIljft/lvnWQAQk331+RM1kSimyqz2YLac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.crl rsync://rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/43R0Hh7G7NjwB3XisOiSmLY45mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0416 Validity Not Before: Apr 5 00:33:44 2025 GMT Not After : Apr 12 00:33:44 2025 GMT Subject: CN=67f07a68-8c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:5d:26:61:46:73:7d:c4:fa:2e:23:6c:43: b1:76:e1:bb:ae:85:13:fb:05:c7:a6:11:76:9a:a1: 29:d1:d5:12:c0:8a:dd:7b:c1:d7:09:fd:44:6e:9e: 32:00:8a:95:80:cc:36:68:65:12:8a:2e:62:53:5d: 4d:08:f3:06:64:d8:09:0c:16:f5:2f:6d:f6:8c:ff: 86:ba:75:26:34:35:ad:22:b3:0c:f0:ef:2c:07:d2: af:c7:8d:d6:41:53:fc:05:75:5c:d1:05:81:29:bb: 26:14:be:6b:9f:df:4c:45:c7:c5:23:53:e6:d6:b7: cf:38:13:d6:e6:da:c8:a2:3d:29:3b:37:49:c3:a0: b8:15:25:ca:97:db:17:ba:1c:32:0e:f8:90:a6:14: 51:38:b3:61:39:7c:78:ac:dd:7f:d0:63:12:ea:15: 61:f1:9f:c1:e1:4d:72:be:d7:27:3e:67:70:31:8d: d1:91:5e:11:e1:d0:f0:31:44:25:60:0a:d7:64:b7: 70:f0:32:b5:a0:0b:68:e0:29:84:47:ec:27:41:59: 9b:9f:9c:82:e2:04:20:7f:a3:db:97:2a:3a:b4:d4: e2:45:63:b0:62:ea:2c:d2:8c:e3:e0:32:1e:b7:64: f6:74:f1:73:b3:82:4c:d9:30:e1:9b:22:86:55:7e: b5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:26:32:A1:AE:5E:AC:DA:97:84:CE:28:D5:3D:77:2C:78:00:5B:46 X509v3 Authority Key Identifier: keyid:E3:74:74:1E:1E:C6:EC:D8:F0:07:75:E2:B0:E8:92:98:B6:38:E6:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/43R0Hh7G7NjwB3XisOiSmLY45mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0416/54750BDA637C11EC9C822317C4F9AE02/43R0Hh7G7NjwB3XisOiSmLY45mo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5d:a7:bd:db:c7:47:68:a9:e1:12:74:c5:d5:8e:20:6e:bf: 7f:2d:63:ae:2c:a9:e6:81:71:00:25:26:d4:aa:90:71:fb:38: 17:e3:86:2b:91:43:82:74:50:11:20:06:e4:46:6a:b4:5a:6e: de:82:db:79:97:ef:69:a6:6b:33:d5:b4:d6:59:b0:b3:00:8c: d8:a2:c5:20:71:c6:be:70:e1:9b:01:4c:26:96:1c:46:aa:16: 99:69:f0:7e:1c:52:ab:f4:34:19:9a:e9:04:d2:2e:0f:cc:cd: 8a:cb:c3:8a:64:50:8d:19:71:43:e7:2b:33:1b:3c:fd:2f:24: e5:3f:71:97:ed:49:87:7a:eb:36:e3:7c:2d:9f:27:67:e6:b5: fe:42:3f:3a:7c:c7:84:39:94:0c:86:20:b2:aa:83:82:37:96: 31:e9:88:11:7a:0c:80:d1:d3:17:8d:96:3d:09:33:9f:9e:a0: 17:76:34:09:f2:a7:df:0c:f7:40:19:1b:6d:fe:be:f4:1d:3d: 59:6c:9a:4f:3e:dd:f6:50:9b:de:47:ce:5f:c6:39:e3:fe:f2: c3:10:57:44:ce:17:b8:13:79:00:40:bf:c8:fd:72:78:a8:b3: df:74:a1:f4:62:4a:c5:16:7d:63:f8:14:df:fe:0f:f0:3f:f4: 1b:52:80:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0MTYxMTAvBgNVBAUTKEUzNzQ3NDFFMUVDNkVDRDhGMDA3NzVFMkIwRTg5Mjk4 QjYzOEU2NkEwHhcNMjUwNDA1MDAzMzQ0WhcNMjUwNDEyMDAzMzQ0WjAYMRYwFAYD VQQDEw02N2YwN2E2OC04Yzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoi1dJmFGc33E+i4jbEOxduG7roUT+wXHphF2mqEp0dUSwIrde8HXCf1Ebp4y AIqVgMw2aGUSii5iU11NCPMGZNgJDBb1L232jP+GunUmNDWtIrMM8O8sB9Kvx43W QVP8BXVc0QWBKbsmFL5rn99MRcfFI1Pm1rfPOBPW5trIoj0pOzdJw6C4FSXKl9sX uhwyDviQphRROLNhOXx4rN1/0GMS6hVh8Z/B4U1yvtcnPmdwMY3RkV4R4dDwMUQl YArXZLdw8DK1oAto4CmER+wnQVmbn5yC4gQgf6Pblyo6tNTiRWOwYuos0ozj4DIe t2T2dPFzs4JM2TDhmyKGVX61FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUmMqGu Xqzal4TOKNU9dyx4AFtGMB8GA1UdIwQYMBaAFON0dB4exuzY8Ad14rDokpi2OOZq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDQxNi81NDc1MEJEQTYz N0MxMUVDOUM4MjIzMTdDNEY5QUUwMi80M1IwSGg3RzdOandCM1hpc09pU21MWTQ1 bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQzUjBIaDdHN05qd0IzWGlzT2lTbUxZNDVtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDQxNi81NDc1MEJEQTYzN0MxMUVDOUM4MjIzMTdDNEY5QUUwMi80M1IwSGg3RzdO andCM1hpc09pU21MWTQ1bW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxXae928dHaKnhEnTF1Y4gbr9/LWOuLKnmgXEAJSbUqpBx+zgX44Yr kUOCdFARIAbkRmq0Wm7egtt5l+9ppmsz1bTWWbCzAIzYosUgcca+cOGbAUwmlhxG qhaZafB+HFKr9DQZmukE0i4PzM2Ky8OKZFCNGXFD5yszGzz9LyTlP3GX7UmHeus2 43wtnydn5rX+Qj86fMeEOZQMhiCyqoOCN5Yx6YgRegyA0dMXjZY9CTOfnqAXdjQJ 8qffDPdAGRtt/r70HT1ZbJpPPt32UJveR85fxjnj/vLDEFdEzhe4E3kAQL/I/XJ4 qLPfdKH0YkrFFn1j+BTf/g/wP/QbUoAz -----END CERTIFICATE-----Generated at Sat Apr 5 19:35:23 2025 by rpki-client