$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft File: 4_fO9uelaeRrLZA5MitpdVMcJWY.mft (raw, json) Hash identifier: cHfkTTP9+oVZ59OVb68MaxZ4F2jGJ4/DDBdQVmvDS8Y= Subject key identifier: 4C:0B:3D:5A:88:27:07:1D:F3:A9:DC:93:E5:F9:33:C2:8F:29:4A:8F Authority key identifier: E3:F7:CE:F6:E7:A5:69:E4:6B:2D:90:39:32:2B:69:75:53:1C:25:66 Certificate issuer: /CN=A91D0077/serialNumber=E3F7CEF6E7A569E46B2D9039322B6975531C2566 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft Manifest number: 01A7 Signing time: Sat 29 Mar 2025 02:48:42 +0000 Manifest this update: Sat 29 Mar 2025 02:48:41 +0000 Manifest next update: Sat 05 Apr 2025 02:48:41 +0000 Files and hashes: 1: 4_fO9uelaeRrLZA5MitpdVMcJWY.crl (hash: I1IPaQ75SCeO0uu/xLfVlgZ+6LabSy1v+QHFRhk/ZJc=) 2: 24F87CC2810611EDA756F886C4F9AE02.roa (hash: 8hmKlSyIYm+hEMbljQN7ZPJxD7JA/JzX6lz/de7dJIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.crl rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0077 Validity Not Before: Mar 29 02:48:41 2025 GMT Not After : Apr 5 02:48:41 2025 GMT Subject: CN=67e75f89-38df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:70:b8:fa:2e:e0:f1:9d:d8:3f:5c:d6:89: d4:13:5c:2d:5e:39:c7:ff:4f:a3:2e:fd:c7:30:53: 06:a0:bb:1a:b8:1e:fd:5d:ba:0e:a2:29:0f:81:71: bf:51:8f:f2:15:ac:cf:f5:ce:5c:8e:c6:ca:9b:1a: 02:9c:5b:46:9f:fd:4f:28:f7:36:b0:49:cd:83:31: 55:93:88:fb:dd:21:9a:4f:ff:f3:9d:c2:33:27:b3: 34:01:07:df:f9:c5:2d:55:c8:b9:0d:8b:d4:39:7a: 10:7c:1b:8a:99:a0:fe:c4:e9:db:1f:40:d4:f2:77: b5:76:4e:f8:e4:11:57:6a:31:78:8a:79:ee:e4:0c: 80:74:24:09:60:9e:bd:aa:c3:a6:b6:cc:ff:af:ae: 8c:1a:e0:c0:35:08:15:99:4c:82:4e:e4:ac:8b:a4: 15:66:5b:9e:ab:97:c7:1e:84:1d:49:f6:29:56:28: 21:04:80:5d:cc:93:01:4d:ec:3c:29:99:f4:26:82: 85:bc:3d:19:cd:37:b6:06:7d:5f:25:4f:ca:22:bc: 5d:02:ff:3d:5e:70:52:a1:4d:a9:e7:cc:43:f0:e9: ee:8c:3d:89:1d:ad:55:5c:b7:d6:65:c6:19:36:40: f5:82:5d:ab:c3:e1:1e:e4:ca:7f:35:60:ae:37:f4: b1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0B:3D:5A:88:27:07:1D:F3:A9:DC:93:E5:F9:33:C2:8F:29:4A:8F X509v3 Authority Key Identifier: keyid:E3:F7:CE:F6:E7:A5:69:E4:6B:2D:90:39:32:2B:69:75:53:1C:25:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f2:c6:30:c2:e2:5c:a0:f6:39:f5:95:38:7d:e4:9b:3f:46: 93:f2:20:68:78:24:f9:3b:ef:a6:6e:9b:ad:33:7f:92:a1:ef: df:71:ff:35:e3:51:51:5e:96:b4:0d:a9:2b:73:75:e6:9a:1b: 65:44:98:61:1d:12:da:6b:34:41:35:60:e7:59:79:26:18:97: cc:77:12:85:42:d8:e4:32:90:69:b7:89:16:3d:20:15:25:7c: e6:27:f3:6e:73:61:89:fd:aa:37:7b:9d:7c:26:c1:22:00:9e: 3a:ac:ad:5a:24:32:13:93:53:f7:bf:72:76:3c:e1:d6:29:e2: 9a:1c:2b:64:76:de:36:b4:5d:e4:44:cd:75:80:f2:e7:ed:49: 31:b2:fc:cf:a8:af:92:cf:7b:16:01:ea:ad:cd:1a:d9:9e:e4: 36:79:d5:1c:dd:21:83:78:fa:06:6e:57:3f:09:29:5b:fe:fe: 39:8b:ef:a5:e2:12:05:46:47:6b:a1:03:b3:9a:21:b0:0e:00: 57:1a:e1:2e:27:bb:cb:64:b7:56:bd:0e:e4:f4:96:4a:7d:5a: 64:4a:e5:ba:e7:34:9a:e6:d5:85:fe:8b:69:2d:60:17:35:36: ef:74:26:42:c4:c8:4c:16:52:20:f7:86:6d:11:34:07:b7:ef: 24:d2:ba:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwNzcxMTAvBgNVBAUTKEUzRjdDRUY2RTdBNTY5RTQ2QjJEOTAzOTMyMkI2OTc1 NTMxQzI1NjYwHhcNMjUwMzI5MDI0ODQxWhcNMjUwNDA1MDI0ODQxWjAYMRYwFAYD VQQDEw02N2U3NWY4OS0zOGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IxwuPou4PGd2D9c1onUE1wtXjnH/0+jLv3HMFMGoLsauB79XboOoikPgXG/ UY/yFazP9c5cjsbKmxoCnFtGn/1PKPc2sEnNgzFVk4j73SGaT//zncIzJ7M0AQff +cUtVci5DYvUOXoQfBuKmaD+xOnbH0DU8ne1dk745BFXajF4innu5AyAdCQJYJ69 qsOmtsz/r66MGuDANQgVmUyCTuSsi6QVZlueq5fHHoQdSfYpVighBIBdzJMBTew8 KZn0JoKFvD0ZzTe2Bn1fJU/KIrxdAv89XnBSoU2p58xD8OnujD2JHa1VXLfWZcYZ NkD1gl2rw+Ee5Mp/NWCuN/SxOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwLPVqI Jwcd86nck+X5M8KPKUqPMB8GA1UdIwQYMBaAFOP3zvbnpWnkay2QOTIraXVTHCVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA3Ny81MDZBRTIzMDgx MDMxMUVEQTg0N0NEODVDNEY5QUUwMi80X2ZPOXVlbGFlUnJMWkE1TWl0cGRWTWNK V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfZk85dWVsYWVSckxaQTVNaXRwZFZNY0pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA3Ny81MDZBRTIzMDgxMDMxMUVEQTg0N0NEODVDNEY5QUUwMi80X2ZPOXVlbGFl UnJMWkE1TWl0cGRWTWNKV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA48sYwwuJcoPY59ZU4feSbP0aT8iBoeCT5O++mbputM3+Soe/fcf81 41FRXpa0Dakrc3XmmhtlRJhhHRLaazRBNWDnWXkmGJfMdxKFQtjkMpBpt4kWPSAV JXzmJ/Nuc2GJ/ao3e518JsEiAJ46rK1aJDITk1P3v3J2POHWKeKaHCtkdt42tF3k RM11gPLn7UkxsvzPqK+Sz3sWAeqtzRrZnuQ2edUc3SGDePoGblc/CSlb/v45i++l 4hIFRkdroQOzmiGwDgBXGuEuJ7vLZLdWvQ7k9JZKfVpkSuW65zSa5tWF/otpLWAX NTbvdCZCxMhMFlIg94ZtETQHt+8k0rrv -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:29 2025 by rpki-client