$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: 5w1U3WwLvYIvpzbXwoGnWdIz3oKQ0+d/Xbng5JuIzoA= Subject key identifier: E3:6F:D4:02:E4:E6:93:F5:BA:56:BE:1B:3C:2B:9D:08:EC:28:A3:97 Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: 44 Signing time: Sat 29 Mar 2025 06:44:20 +0000 Manifest this update: Sat 29 Mar 2025 06:44:19 +0000 Manifest next update: Sat 05 Apr 2025 06:44:19 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: wJStoJFwSdp+b6urdJyYn9ioa723NL+XkK55kGCp6hk=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC Validity Not Before: Mar 29 06:44:19 2025 GMT Not After : Apr 5 06:44:19 2025 GMT Subject: CN=67e796c3-cb35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:58:6f:5b:c0:79:91:6b:86:a3:cf:dc:e5: bd:2d:a5:08:5a:e8:5b:7a:c5:0f:3e:23:a9:ec:46: 6c:5a:f1:fc:b8:a8:36:8a:23:fa:a4:ca:de:d6:40: 74:89:40:21:6b:c4:38:93:39:f5:02:49:10:cf:6c: a0:08:f7:73:13:77:88:1c:63:30:ef:17:12:f7:62: 73:17:45:75:2e:d1:1d:a6:2f:7a:9f:f2:6a:85:65: 9b:f3:0b:b7:32:84:3c:d2:fc:2f:f4:58:22:55:33: 22:79:a9:31:a8:b5:96:db:f2:d4:01:34:46:58:b7: e6:f5:0f:58:3f:47:56:dd:5a:11:f9:27:ad:a2:3d: dc:60:58:4e:dc:89:64:15:f5:8d:a0:bc:15:5b:75: f9:a4:60:85:5b:ce:b0:fc:c6:15:c2:ce:06:58:1b: b2:16:15:1b:80:51:0c:48:73:a7:6e:5e:8d:8c:85: 8d:77:00:9d:29:2c:1e:72:14:b8:5e:58:d3:04:0a: 49:a2:86:25:fd:bf:c4:bf:92:88:ba:ea:ef:5f:13: ce:fa:0d:44:d2:6e:ee:67:a4:a9:c1:c5:fe:48:a2: 01:43:ac:fb:4c:f5:97:ac:da:7c:e0:db:12:91:46: 1c:fa:ab:2b:fb:9c:78:d7:c7:bf:82:a2:6a:6b:23: b7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:6F:D4:02:E4:E6:93:F5:BA:56:BE:1B:3C:2B:9D:08:EC:28:A3:97 X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:98:8d:f6:ec:c5:b7:85:43:d3:8b:27:fb:4c:76:91:5b:75: df:89:d0:91:d7:3f:a8:87:b3:42:29:27:92:af:60:a0:d8:64: 6a:a8:55:07:0a:7b:1e:22:86:08:34:b0:af:66:3e:0e:b7:36: f2:46:a6:a7:ab:b2:db:8a:08:ce:cb:7a:31:17:b7:bb:7e:51: b5:9e:d1:64:50:82:f0:71:89:22:c6:c4:18:08:7f:42:72:db: 7a:63:3e:3f:5d:5f:75:17:a9:2c:0d:44:4e:4f:b0:70:8a:be: 41:78:c4:c2:68:9c:5c:45:29:f2:75:ba:df:f0:22:c6:73:a4: 23:10:0c:48:bb:26:dc:af:d3:6c:fd:11:e6:8d:d9:3b:8d:84: 71:19:33:fc:9d:e7:29:69:64:91:f2:d7:bd:c5:6b:d8:36:3a: 05:92:46:5b:78:bb:66:a0:9f:0b:19:25:18:a6:17:f3:2c:0f: bf:ab:d4:e5:1d:34:ec:fa:ce:23:7d:57:98:5f:73:ab:83:87: d8:86:aa:9e:74:af:1c:f0:db:bf:66:98:09:61:e2:ea:f7:2f: 1e:f1:e5:cc:4e:38:91:91:47:a2:58:22:07:0c:f1:7d:65:59: 40:43:36:00:29:49:31:2b:d7:61:2d:4f:85:15:a7:6a:69:b1: d9:5c:89:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDlCQzExMC8GA1UEBRMoMDFGMDVDN0VBNUYyQTJFREZDMTgzODk3RjU4MzU5ODJC MkNGMDNCRjAeFw0yNTAzMjkwNjQ0MTlaFw0yNTA0MDUwNjQ0MTlaMBgxFjAUBgNV BAMTDTY3ZTc5NmMzLWNiMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoS1hvW8B5kWuGo8/c5b0tpQha6Ft6xQ8+I6nsRmxa8fy4qDaKI/qkyt7WQHSJ QCFrxDiTOfUCSRDPbKAI93MTd4gcYzDvFxL3YnMXRXUu0R2mL3qf8mqFZZvzC7cy hDzS/C/0WCJVMyJ5qTGotZbb8tQBNEZYt+b1D1g/R1bdWhH5J62iPdxgWE7ciWQV 9Y2gvBVbdfmkYIVbzrD8xhXCzgZYG7IWFRuAUQxIc6duXo2MhY13AJ0pLB5yFLhe WNMECkmihiX9v8S/koi66u9fE876DUTSbu5npKnBxf5IogFDrPtM9Zes2nzg2xKR Rhz6qyv7nHjXx7+ComprI7eXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU42/UAuTm k/W6Vr4bPCudCOwoo5cwHwYDVR0jBBgwFoAUAfBcfqXyou38GDiX9YNZgrLPA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwOUJDL0QzNUIwODJFQTcw NzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWZCY2ZxWHlvdTM4R0RpWDlZTlpnckxQQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw OUJDL0QzNUIwODJFQTcwNzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3Uz OEdEaVg5WU5aZ3JMUEE3OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH2YjfbsxbeFQ9OLJ/tMdpFbdd+J0JHXP6iHs0IpJ5KvYKDYZGqoVQcK ex4ihgg0sK9mPg63NvJGpqerstuKCM7LejEXt7t+UbWe0WRQgvBxiSLGxBgIf0Jy 23pjPj9dX3UXqSwNRE5PsHCKvkF4xMJonFxFKfJ1ut/wIsZzpCMQDEi7Jtyv02z9 EeaN2TuNhHEZM/yd5ylpZJHy173Fa9g2OgWSRlt4u2agnwsZJRimF/MsD7+r1OUd NOz6ziN9V5hfc6uDh9iGqp50rxzw279mmAlh4ur3Lx7x5cxOOJGRR6JYIgcM8X1l WUBDNgApSTEr12EtT4UVp2ppsdlciRY= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:52 2025 by rpki-client