$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft File: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft (raw, json) Hash identifier: 3+539I5J7tn+DEHljzv2O2IUygyKTp06xdK/wW+fFug= Subject key identifier: 57:02:3E:10:6B:9F:3E:60:9D:B3:D0:BA:62:C1:E9:90:B4:F1:E8:90 Authority key identifier: 86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 Certificate issuer: /CN=A91B3759/serialNumber=8622333DBC0773380BA37647DCC3F3E655F34BC6 Certificate serial: 0788 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft Manifest number: 0784 Signing time: Fri 04 Apr 2025 21:30:33 +0000 Manifest this update: Fri 04 Apr 2025 21:30:32 +0000 Manifest next update: Fri 11 Apr 2025 21:30:32 +0000 Files and hashes: 1: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl (hash: Dppa8AvsKphVXI3nX9hrjpwvlzcBaMRcO4P4FiwneMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1928 (0x788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3759 Validity Not Before: Apr 4 21:30:32 2025 GMT Not After : Apr 11 21:30:32 2025 GMT Subject: CN=67f04f78-b85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:45:68:0c:85:ce:e3:7d:0d:33:01:e0:8c: e1:f3:b9:28:6b:5c:e1:45:4e:85:29:35:ab:88:6d: 22:21:1c:ab:be:a3:9b:bb:d9:42:d5:9c:08:03:85: bb:2d:56:f6:0a:16:0b:f6:e2:5e:52:da:3c:17:6e: f8:b5:2d:f6:3a:a5:c1:53:3d:c1:2d:60:63:5d:6d: 8a:ac:ee:87:8c:a3:62:29:8c:00:2c:f6:71:7e:ff: d5:30:ed:35:a3:05:f3:60:c2:18:66:4b:4a:78:8a: 48:f7:16:e3:cd:97:8a:f2:85:52:27:b8:d9:f4:d8: 28:f2:71:ba:2c:2c:71:8a:67:2d:ef:01:3d:f7:93: b9:22:cb:d8:94:f1:98:2c:b4:1f:6b:4e:bf:e2:e7: b0:2b:ea:91:e3:81:5a:af:21:e7:63:1a:ab:84:d7: 96:d0:96:fa:bf:67:4f:e4:dd:07:35:48:1b:88:b2: ba:6b:39:e1:dd:0e:c9:61:db:18:aa:fc:63:51:6e: f1:35:7a:8c:8d:19:ab:45:4d:2c:ad:d2:ba:75:17: 89:51:25:3d:e7:f3:9b:0e:7a:8f:fc:76:e1:b7:a5: b9:90:e0:5e:c9:02:9c:e1:4a:a5:f1:2d:5e:cb:5b: a6:d9:42:0d:ff:11:b7:a2:3d:58:af:53:d3:7d:24: 3e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:02:3E:10:6B:9F:3E:60:9D:B3:D0:BA:62:C1:E9:90:B4:F1:E8:90 X509v3 Authority Key Identifier: keyid:86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:50:1a:91:08:50:24:d5:7f:f1:02:8b:52:96:c1:06:f7:66: 28:d1:84:66:c3:a7:39:f5:65:1a:2b:3b:da:a7:24:5e:43:a7: 46:4a:e0:18:a7:49:a6:3c:26:bc:30:2f:ad:2d:1f:3a:54:f6: 61:f2:14:b3:e0:e8:1f:06:41:b8:7a:52:74:6d:86:e0:8c:45: bc:5c:d6:76:1f:29:31:8f:70:e9:b4:fe:67:c6:41:33:73:bb: b0:d3:0b:f6:43:ef:2a:89:ae:18:e8:b5:55:80:ed:0d:06:a2: 07:4d:e0:58:eb:d0:ec:68:18:26:55:79:39:6e:f9:b8:1e:a5: d9:6c:a1:63:39:bf:e0:56:86:9b:99:46:f4:5c:02:69:fa:30: 9b:c5:72:ae:d5:39:ec:00:83:b8:e3:e0:b3:c1:43:a9:bc:d3: 97:5d:7e:35:9c:76:2b:03:5f:7d:03:c7:6a:af:03:12:ea:a3: 50:99:b7:63:da:bc:bd:a7:b3:79:32:29:16:25:be:e4:29:2d: 17:f3:00:e8:60:ba:3c:97:8c:db:53:06:9c:3a:5c:a0:6e:18: 67:82:30:2e:c4:8c:58:77:c5:6d:90:44:cf:18:5d:75:95:e7: 83:ac:30:84:f5:1f:25:fc:e6:10:f1:65:b1:8a:b9:ad:20:e7: 84:41:eb:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3NTkxMTAvBgNVBAUTKDg2MjIzMzNEQkMwNzczMzgwQkEzNzY0N0RDQzNGM0U2 NTVGMzRCQzYwHhcNMjUwNDA0MjEzMDMyWhcNMjUwNDExMjEzMDMyWjAYMRYwFAYD VQQDEw02N2YwNGY3OC1iODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3xFaAyFzuN9DTMB4Izh87koa1zhRU6FKTWriG0iIRyrvqObu9lC1ZwIA4W7 LVb2ChYL9uJeUto8F274tS32OqXBUz3BLWBjXW2KrO6HjKNiKYwALPZxfv/VMO01 owXzYMIYZktKeIpI9xbjzZeK8oVSJ7jZ9Ngo8nG6LCxximct7wE995O5IsvYlPGY LLQfa06/4uewK+qR44FaryHnYxqrhNeW0Jb6v2dP5N0HNUgbiLK6aznh3Q7JYdsY qvxjUW7xNXqMjRmrRU0srdK6dReJUSU95/ObDnqP/Hbht6W5kOBeyQKc4Uql8S1e y1um2UIN/xG3oj1Yr1PTfSQ+lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcCPhBr nz5gnbPQumLB6ZC08eiQMB8GA1UdIwQYMBaAFIYiMz28B3M4C6N2R9zD8+ZV80vG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzc1OS8wOTBGNUFBQTA1 MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6Z0xvM1pIM01QejVsWHpT OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpSXpQYndIY3pnTG8zWkgzTVB6NWxYelM4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mzc1OS8wOTBGNUFBQTA1MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6 Z0xvM1pIM01QejVsWHpTOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClUBqRCFAk1X/xAotSlsEG92Yo0YRmw6c59WUaKzvapyReQ6dGSuAY p0mmPCa8MC+tLR86VPZh8hSz4OgfBkG4elJ0bYbgjEW8XNZ2Hykxj3DptP5nxkEz c7uw0wv2Q+8qia4Y6LVVgO0NBqIHTeBY69DsaBgmVXk5bvm4HqXZbKFjOb/gVoab mUb0XAJp+jCbxXKu1TnsAIO44+CzwUOpvNOXXX41nHYrA199A8dqrwMS6qNQmbdj 2ry9p7N5MikWJb7kKS0X8wDoYLo8l4zbUwacOlygbhhngjAuxIxYd8VtkETPGF11 leeDrDCE9R8l/OYQ8WWxirmtIOeEQetz -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:41 2025 by rpki-client