$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: RI4wSCJcmswD4yx2H5LYAkzU+gZMQ1GjAOCnKlEE9y8= Subject key identifier: 61:D6:33:3F:3E:3B:DF:C4:2F:19:4A:35:7A:62:5E:A2:9D:8F:22:CF Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 0298 Signing time: Sat 29 Mar 2025 01:49:41 +0000 Manifest this update: Sat 29 Mar 2025 01:49:40 +0000 Manifest next update: Sat 05 Apr 2025 01:49:40 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: SA+bvd2afesi+yRz+z0mLeo9LAO9GXpnqsOf4tax+XA=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F Validity Not Before: Mar 29 01:49:40 2025 GMT Not After : Apr 5 01:49:40 2025 GMT Subject: CN=67e751b4-1951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8e:3a:ec:27:ba:29:85:29:2d:de:1e:04:70: 91:e2:4d:3e:85:36:bd:50:1c:6c:ab:fe:af:89:2b: 64:e8:5b:b0:22:4f:d6:62:87:a8:ef:2c:d1:10:2e: b3:04:d2:4e:54:a9:b7:c5:9d:c7:10:22:97:49:b8: d5:4e:b5:16:86:01:cb:f5:af:78:19:5e:ac:b0:d6: 38:32:a1:c3:5f:40:46:f0:fe:32:bc:15:64:91:e5: a8:82:d3:67:02:69:27:08:6b:cd:59:93:45:d4:7f: 49:7a:00:64:ba:89:19:f1:8a:60:d6:4a:51:33:0e: b7:46:54:cf:ed:de:f0:53:59:82:75:85:c6:19:93: 93:0e:f3:33:9e:58:0e:c1:b8:13:32:a7:8c:d2:f2: 4f:c8:a2:85:bb:8d:d2:bb:4a:75:91:f6:fb:5a:02: 17:fe:07:87:72:7f:d8:5f:8e:3e:40:bd:c1:d9:b1: e5:2c:f6:f4:25:d2:f4:79:d1:a0:24:23:ed:f7:9c: b7:ae:0f:84:52:99:35:1c:81:5f:04:60:9e:34:58: 9a:f3:6f:11:94:57:9f:19:ce:52:29:a8:76:e5:22: ee:35:7d:ab:de:c2:ed:f8:84:c3:02:13:3b:e2:d0: 6e:a1:b7:d1:fe:5b:6e:26:ea:db:44:da:f2:4a:53: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D6:33:3F:3E:3B:DF:C4:2F:19:4A:35:7A:62:5E:A2:9D:8F:22:CF X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:53:f2:ec:e3:40:56:92:3b:3c:40:13:f4:1a:77:16:2c:18: 19:9c:0a:06:e1:36:de:43:6e:91:73:5c:29:9b:39:56:a7:01: cd:01:6b:67:62:13:85:88:ab:1a:6c:cb:c0:4d:0c:b2:9a:31: 36:03:f8:6f:3b:1a:9d:c7:5e:f6:de:d9:7e:33:fb:1c:ce:6b: ca:d5:1c:fc:ca:7c:62:06:6a:a3:e5:b3:49:61:d8:20:c4:4a: 9d:85:b3:fe:b2:e9:db:54:56:83:dc:6f:f3:f1:73:78:cb:62: a9:ba:9e:96:d5:6d:0b:fb:0c:6c:a5:9a:95:aa:b5:a6:73:22: f4:e0:a6:66:f7:c3:b0:c3:28:11:dc:a1:7f:bc:31:87:f1:d7: c7:3d:4c:f2:70:94:fb:3a:d9:4b:21:50:3c:32:3a:8e:1b:92: 07:37:53:c4:6e:03:ed:54:21:cf:05:c0:00:25:13:ee:35:c3: 44:88:db:bc:9c:51:81:7c:f8:36:86:e3:a4:cf:2b:ba:af:01: 31:41:3c:af:6e:0f:64:d5:c3:5c:2b:40:86:27:bd:55:db:43: 07:29:76:e9:1d:81:07:3a:11:ca:d6:7a:81:ae:de:b1:fa:ab: 79:8e:82:b5:60:d9:b3:6b:8e:7a:7c:2a:69:94:ae:59:46:9a: 48:45:62:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwMzI5MDE0OTQwWhcNMjUwNDA1MDE0OTQwWjAYMRYwFAYD VQQDEw02N2U3NTFiNC0xOTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY467Ce6KYUpLd4eBHCR4k0+hTa9UBxsq/6viStk6FuwIk/WYoeo7yzREC6z BNJOVKm3xZ3HECKXSbjVTrUWhgHL9a94GV6ssNY4MqHDX0BG8P4yvBVkkeWogtNn AmknCGvNWZNF1H9JegBkuokZ8Ypg1kpRMw63RlTP7d7wU1mCdYXGGZOTDvMznlgO wbgTMqeM0vJPyKKFu43Su0p1kfb7WgIX/geHcn/YX44+QL3B2bHlLPb0JdL0edGg JCPt95y3rg+EUpk1HIFfBGCeNFia828RlFefGc5SKah25SLuNX2r3sLt+ITDAhM7 4tBuobfR/ltuJurbRNrySlPmdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHWMz8+ O9/ELxlKNXpiXqKdjyLPMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLU/Ls40BWkjs8QBP0GncWLBgZnAoG4TbeQ26Rc1wpmzlWpwHNAWtn YhOFiKsabMvATQyymjE2A/hvOxqdx1723tl+M/sczmvK1Rz8ynxiBmqj5bNJYdgg xEqdhbP+sunbVFaD3G/z8XN4y2Kpup6W1W0L+wxspZqVqrWmcyL04KZm98OwwygR 3KF/vDGH8dfHPUzycJT7OtlLIVA8MjqOG5IHN1PEbgPtVCHPBcAAJRPuNcNEiNu8 nFGBfPg2huOkzyu6rwExQTyvbg9k1cNcK0CGJ71V20MHKXbpHYEHOhHK1nqBrt6x +qt5joK1YNmza456fCpplK5ZRppIRWJ6 -----END CERTIFICATE-----Generated at Fri Apr 4 21:51:51 2025 by rpki-client