$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: 0kHdYX9nkLUQihiPRvUtOudTL8i5wATuU18IG9BBu7s= Subject key identifier: 30:8C:8F:A4:F3:32:BC:D2:73:06:E9:41:5E:08:7C:45:53:AE:77:09 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 0101 Signing time: Thu 03 Apr 2025 04:18:59 +0000 Manifest this update: Thu 03 Apr 2025 04:18:58 +0000 Manifest next update: Thu 10 Apr 2025 04:18:58 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: ZBnerflPyfCzpYr0VhJNvFha4DQT+USnXvSlaf/UWb0=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: WhOLdJmONFcVyaVlMrHX886HXRKh0RLcsl55SUDqRa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524 Validity Not Before: Apr 3 04:18:58 2025 GMT Not After : Apr 10 04:18:58 2025 GMT Subject: CN=67ee0c33-ff5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:da:c9:3a:19:f5:20:71:a6:a1:52:e3:02: a2:53:0c:de:0e:67:27:9a:39:0e:32:1e:ff:b2:bc: a1:3a:cf:38:02:2b:d4:9e:d4:d8:b0:24:a5:bb:ce: e4:15:f6:cd:15:9b:8a:e7:fe:0f:9d:12:39:e5:a2: 02:ad:bc:d2:1e:ae:13:3b:15:ce:df:5d:5c:a0:5e: 81:01:86:3a:21:ad:97:29:82:40:df:83:3e:cc:ed: af:fb:56:bd:40:f0:b7:e6:12:44:c0:50:ee:f5:82: 2e:4b:77:76:c1:03:cf:1b:30:6f:5b:5c:e6:8b:c1: 0a:d8:94:01:53:d6:23:66:aa:d2:1f:9b:d5:d2:ce: f7:e5:4f:cd:a9:e7:36:41:2e:16:14:3a:c2:f0:6f: ed:1f:ef:f2:69:48:ae:ca:69:cd:8a:d7:22:40:74: 6c:c5:2e:d9:0d:49:8b:36:50:24:f5:d7:46:33:83: 1c:1d:d8:90:77:d4:1d:0d:d6:1a:3a:73:8c:6f:3a: 21:22:a6:45:fb:aa:21:8f:37:cf:03:ff:d0:e4:c6: 3e:40:52:4c:f2:91:be:a7:6d:64:7c:54:f3:bd:b1: a6:b9:56:f2:d0:59:e8:98:5b:45:9c:c9:b4:ec:f8: 56:df:ff:f4:54:32:54:50:96:ff:12:43:bc:3a:f8: ec:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8C:8F:A4:F3:32:BC:D2:73:06:E9:41:5E:08:7C:45:53:AE:77:09 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:28:99:58:e6:fe:07:b9:fb:b5:90:83:d3:10:d7:59:06:0d: fd:39:4d:80:5a:af:c2:14:26:66:39:98:e7:93:43:72:23:9b: 35:18:79:c5:45:4a:15:f3:de:a9:11:3c:43:5d:92:ef:f8:50: 13:e9:35:b7:b7:1b:44:51:6b:5c:0a:31:8b:28:19:3b:d9:63: 66:86:3c:57:21:e1:96:cb:06:a7:ed:24:64:f1:2f:f9:e5:7b: 1a:ed:0a:20:83:5f:81:6d:82:f6:a6:c4:1f:25:86:ed:97:c2: ce:12:c8:59:f0:84:8b:e4:ee:4e:89:7a:7a:77:c1:dd:52:e3: 3c:68:a4:29:ae:da:4e:40:ad:de:96:4f:52:79:90:e8:43:c3: dd:82:e7:a8:52:50:b7:f6:e5:45:8b:7a:81:9a:e8:f3:3b:ee: 3d:c4:13:84:a2:f7:f8:ae:df:72:c4:7f:28:60:a7:34:4f:1e: cf:00:1f:8d:c7:d6:24:e4:b9:0a:a8:0b:f5:4f:38:1b:fc:72: 95:cb:5e:c2:89:23:ed:46:02:d3:48:98:a3:cd:57:3d:07:73: 38:75:c8:fe:74:3c:f6:52:f4:b0:d3:34:0e:95:8b:e3:c9:85: 27:7a:b9:2b:2d:a1:42:17:ff:34:ba:89:5e:3e:8f:b5:b8:39: a1:57:bf:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwNDAzMDQxODU4WhcNMjUwNDEwMDQxODU4WjAYMRYwFAYD VQQDEw02N2VlMGMzMy1mZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uDayToZ9SBxpqFS4wKiUwzeDmcnmjkOMh7/sryhOs84AivUntTYsCSlu87k FfbNFZuK5/4PnRI55aICrbzSHq4TOxXO311coF6BAYY6Ia2XKYJA34M+zO2v+1a9 QPC35hJEwFDu9YIuS3d2wQPPGzBvW1zmi8EK2JQBU9YjZqrSH5vV0s735U/Nqec2 QS4WFDrC8G/tH+/yaUiuymnNitciQHRsxS7ZDUmLNlAk9ddGM4McHdiQd9QdDdYa OnOMbzohIqZF+6ohjzfPA//Q5MY+QFJM8pG+p21kfFTzvbGmuVby0FnomFtFnMm0 7PhW3//0VDJUUJb/EkO8Ovjs3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCMj6Tz MrzScwbpQV4IfEVTrncJMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhKJlY5v4Hufu1kIPTENdZBg39OU2AWq/CFCZmOZjnk0NyI5s1GHnF RUoV896pETxDXZLv+FAT6TW3txtEUWtcCjGLKBk72WNmhjxXIeGWywan7SRk8S/5 5Xsa7Qogg1+BbYL2psQfJYbtl8LOEshZ8ISL5O5OiXp6d8HdUuM8aKQprtpOQK3e lk9SeZDoQ8PdgueoUlC39uVFi3qBmujzO+49xBOEovf4rt9yxH8oYKc0Tx7PAB+N x9Yk5LkKqAv1Tzgb/HKVy17CiSPtRgLTSJijzVc9B3M4dcj+dDz2UvSw0zQOlYvj yYUnerkrLaFCF/80uolePo+1uDmhV79z -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:55 2025 by rpki-client