$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft File: cleSPWdwxWeJGbB8vPqK-LnFBT8.mft (raw, json) Hash identifier: Ywd1dVqh01m1//9qLLgiDMfA4oEW4KwmKwaOddEMwAc= Subject key identifier: AC:F3:AB:79:F5:E2:85:CB:62:D5:EA:00:31:0F:09:EB:7A:60:39:A6 Authority key identifier: 72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F Certificate issuer: /CN=A91C7175/serialNumber=7257923D6770C5678919B07CBCFA8AF8B9C5053F Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft Manifest number: 72 Signing time: Wed 09 Apr 2025 05:39:22 +0000 Manifest this update: Wed 09 Apr 2025 05:39:22 +0000 Manifest next update: Wed 16 Apr 2025 05:39:22 +0000 Files and hashes: 1: cleSPWdwxWeJGbB8vPqK-LnFBT8.crl (hash: Utuhm+hzUgZ9PhUHsQs74o5o/SjyI2KVMfAI50Oh6Qg=) 2: 65783A3A68FE11EFB904E587C4F9AE02.roa (hash: W9AbIPs04msR2L8j2qpbp6FWBUlEN2nJFHSFxYkcZYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.crl rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175 Validity Not Before: Apr 9 05:39:22 2025 GMT Not After : Apr 16 05:39:22 2025 GMT Subject: CN=67f6080a-4aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7a:bf:3c:47:d4:b7:10:54:17:90:04:27:a4: e5:e2:4b:49:31:9f:07:95:37:c8:4a:58:8b:9a:33: 32:26:15:5c:bc:ef:cd:c6:7a:ad:12:cf:50:0b:d4: 61:60:9c:72:96:3f:31:2e:86:ac:1a:ce:07:b8:f2: 55:9a:85:5c:71:a5:07:a7:36:9c:2a:59:7d:cf:8f: fb:04:34:bb:71:96:ba:4a:6b:cf:f3:82:3a:3b:7c: 67:b3:37:f9:b5:dc:92:b4:0e:66:a6:0f:de:37:42: d4:b1:29:90:01:2f:fe:9b:62:87:b4:9f:2e:03:6f: bd:23:2e:68:5a:8c:96:cc:42:0c:29:e9:53:8f:20: 23:6a:e4:3b:77:4a:5a:2d:28:f6:69:e2:f4:f0:35: 7d:23:de:a8:3f:56:43:d0:d8:0e:60:2b:5b:02:45: e0:c7:85:00:b2:15:0c:57:70:a3:c8:35:ba:5a:47: 3c:cf:2d:1d:40:09:c0:e7:43:88:4a:d4:11:2d:3b: c1:07:65:3b:8d:36:a6:c4:d6:28:9e:65:a6:47:a8: 0a:2b:e1:86:d8:09:80:50:80:d3:bb:c4:5b:29:80: 77:93:87:77:cd:5d:cd:9f:a7:9d:c8:3d:0c:28:a8: b2:fa:2e:6f:6e:1a:9e:eb:8a:ee:4b:66:89:80:87: cc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F3:AB:79:F5:E2:85:CB:62:D5:EA:00:31:0F:09:EB:7A:60:39:A6 X509v3 Authority Key Identifier: keyid:72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e6:8b:65:0f:e2:80:aa:8f:74:4b:a4:e8:99:d4:bd:a8:da: 11:d2:db:99:6f:85:e1:ad:3b:12:75:e5:2f:53:f2:1e:f7:a3: 39:67:a2:50:f0:a8:d9:d2:48:4a:a0:3a:85:ce:69:c3:2a:4b: 1c:02:6c:40:d1:e0:3b:74:47:56:18:c4:96:9f:eb:0e:4f:4d: cc:39:9f:d1:e9:6a:16:7d:c2:5d:41:c8:1f:e3:0a:99:f1:fa: 48:18:1f:b8:94:c6:b1:79:74:6f:9d:3d:a9:18:80:9c:ae:25: e8:51:9b:52:f4:3c:a5:0e:bf:50:ed:0b:a5:67:c2:db:ca:28: 29:b7:2d:e1:8d:48:4e:27:d1:08:68:76:d3:5b:25:6e:75:e1: 5d:14:45:28:8b:26:5b:55:8f:b5:61:06:8a:93:41:09:76:81: 01:a2:78:43:fa:05:eb:2c:9c:3e:43:50:b0:da:90:1a:99:79: a1:08:83:0c:8f:79:02:5d:35:ae:c0:1d:0f:a8:54:6c:bf:58: 60:34:91:85:b4:19:76:ed:b3:9d:86:84:8b:4b:3b:b2:fd:e3: c8:97:e7:d1:11:6d:8f:74:8e:32:0a:4a:2c:c4:88:55:a9:4a: 37:7c:9f:70:2a:f9:16:af:38:7d:e0:09:f4:e8:ea:a7:c6:bf: 96:4f:05:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzE3NTExMC8GA1UEBRMoNzI1NzkyM0Q2NzcwQzU2Nzg5MTlCMDdDQkNGQThBRjhC OUM1MDUzRjAeFw0yNTA0MDkwNTM5MjJaFw0yNTA0MTYwNTM5MjJaMBgxFjAUBgNV BAMTDTY3ZjYwODBhLTRhYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBer88R9S3EFQXkAQnpOXiS0kxnweVN8hKWIuaMzImFVy8783Geq0Sz1AL1GFg nHKWPzEuhqwazge48lWahVxxpQenNpwqWX3Pj/sENLtxlrpKa8/zgjo7fGezN/m1 3JK0DmamD943QtSxKZABL/6bYoe0ny4Db70jLmhajJbMQgwp6VOPICNq5Dt3Slot KPZp4vTwNX0j3qg/VkPQ2A5gK1sCReDHhQCyFQxXcKPINbpaRzzPLR1ACcDnQ4hK 1BEtO8EHZTuNNqbE1iieZaZHqAor4YbYCYBQgNO7xFspgHeTh3fNXc2fp53IPQwo qLL6Lm9uGp7riu5LZomAh8wjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrPOrefXi hcti1eoAMQ8J63pgOaYwHwYDVR0jBBgwFoAUcleSPWdwxWeJGbB8vPqK+LnFBT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3MTc1L0U5QTA5MkI4NjhG RDExRUZBOTUwMDE4N0M0RjlBRTAyL2NsZVNQV2R3eFdlSkdiQjh2UHFLLUxuRkJU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2xlU1BXZHd4V2VKR2JCOHZQcUstTG5GQlQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 MTc1L0U5QTA5MkI4NjhGRDExRUZBOTUwMDE4N0M0RjlBRTAyL2NsZVNQV2R3eFdl SkdiQjh2UHFLLUxuRkJUOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLmi2UP4oCqj3RLpOiZ1L2o2hHS25lvheGtOxJ15S9T8h73ozlnolDw qNnSSEqgOoXOacMqSxwCbEDR4Dt0R1YYxJaf6w5PTcw5n9HpahZ9wl1ByB/jCpnx +kgYH7iUxrF5dG+dPakYgJyuJehRm1L0PKUOv1DtC6VnwtvKKCm3LeGNSE4n0Qho dtNbJW514V0URSiLJltVj7VhBoqTQQl2gQGieEP6BessnD5DULDakBqZeaEIgwyP eQJdNa7AHQ+oVGy/WGA0kYW0GXbts52GhItLO7L948iX59ERbY90jjIKSizEiFWp Sjd8n3Aq+RavOH3gCfTo6qfGv5ZPBb4= -----END CERTIFICATE-----Generated at Thu Apr 10 22:08:08 2025 by rpki-client