$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft File: 7Y9dbJv8FI96u3CMUpHThHgcYf0.mft (raw, json) Hash identifier: 6HknP2qfQIdY4z6IuqoBRRxcMtOYueNdEJkgU8n2bYE= Subject key identifier: CB:D9:94:75:E9:93:5C:7E:D1:E7:F0:BF:FE:70:40:C6:73:02:76:D4 Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft Manifest number: 016D Signing time: Sat 05 Apr 2025 03:27:33 +0000 Manifest this update: Sat 05 Apr 2025 03:27:32 +0000 Manifest next update: Sat 12 Apr 2025 03:27:32 +0000 Files and hashes: 1: 7Y9dbJv8FI96u3CMUpHThHgcYf0.crl (hash: Vg15P/BIQz+D9dkYhuiC+P3aGlIDD4o4lAUTOmdtcTY=) 2: C1A71866107011F0B7E3BD43C4F9AE02.roa (hash: wmYE1DOeurwMU8z5c8sb3DA2t7m2jcCHFtUBIh7ZTgw=) 3: E7B6C4DA685E11EFB77BDE0CC4F9AE02.roa (hash: 0tzqO1CmigPSpz/MhhBtA7Y+BKnfbYyMKy+tv5IkgiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA Validity Not Before: Apr 5 03:27:32 2025 GMT Not After : Apr 12 03:27:32 2025 GMT Subject: CN=67f0a325-8947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:39:75:26:41:e5:a8:b7:ea:d1:ad:70:b9:86: b3:9b:35:ff:80:58:64:38:61:9c:f7:c9:c8:0a:8e: a9:0d:10:26:35:53:d1:fe:f8:74:1d:14:b4:ef:66: ea:61:fb:6a:22:fd:68:09:37:1f:13:14:1c:b5:5d: 74:45:91:f4:2e:30:be:3e:24:e5:38:91:68:05:95: d8:35:c7:92:92:b6:75:52:c5:0a:99:cf:5e:8a:6f: 35:d5:52:ed:33:76:5f:15:b2:ae:03:f2:f5:58:85: 9a:d5:95:f3:e2:14:e9:73:0a:fd:a2:b9:ff:56:f6: bf:8a:d1:c9:18:9d:40:9c:d0:c0:9d:00:72:d1:82: 56:e0:a7:5a:21:82:43:f9:fd:c6:a9:e9:d0:cc:51: c3:3f:61:8d:9c:46:ba:43:d4:f1:ed:16:a0:80:56: db:51:7a:5c:51:a3:1e:cb:aa:47:a2:6e:a9:1e:2b: 97:7c:09:0c:34:38:c5:c5:9a:74:fc:4e:a7:ee:d5: cf:8c:02:df:e9:fe:46:e5:71:70:df:dd:95:b3:1b: 0b:36:d2:0c:21:aa:f1:af:29:6a:61:b3:6e:aa:e6: 98:74:67:85:72:bf:1f:6d:f5:5e:52:ff:21:e4:37: 9b:be:e0:4d:04:39:58:fe:98:53:eb:71:5a:dc:c1: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D9:94:75:E9:93:5C:7E:D1:E7:F0:BF:FE:70:40:C6:73:02:76:D4 X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d8:fa:84:e8:40:41:ae:ee:43:ad:39:02:0a:74:0c:2d:80: 4d:36:b4:73:6f:8b:d2:a3:41:10:c3:be:78:92:ab:e7:bf:71: 72:b5:0c:2a:09:c7:5b:ca:8f:21:81:90:3d:64:02:28:f7:50: 20:17:95:b1:37:63:cb:56:ce:e5:37:21:08:94:02:b9:d2:a3: 1c:03:5e:5e:ed:da:0e:a1:9f:49:a2:e3:70:88:35:d7:ff:f9: 38:7b:00:c6:7e:87:17:91:a5:1d:5a:8d:dc:e7:51:be:5f:62: 20:ee:ff:cb:dc:7f:35:f8:3b:ca:e1:85:26:ba:d6:5c:ba:6b: e9:4a:3f:8b:56:59:68:ff:68:81:2f:b9:a0:9a:74:70:54:9f: b0:49:6c:f8:6c:78:fb:b3:7f:a7:84:f0:07:67:70:0d:60:e5: 42:bd:95:a9:be:a4:36:88:da:84:a2:a0:75:fc:79:dd:e2:02: bc:98:ef:2b:25:2d:34:25:5e:1e:6a:cf:b8:1b:c5:96:02:bf: 3b:cd:2f:7a:0b:1a:c7:a4:66:b5:cb:a5:00:17:06:3b:89:1c: c5:af:59:c7:eb:a2:81:58:fe:1f:5c:bf:81:f4:3c:81:d6:bc: 56:a6:87:e2:04:e8:b5:4e:d9:d1:cb:4c:de:4c:64:eb:92:41: c7:bb:94:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjUwNDA1MDMyNzMyWhcNMjUwNDEyMDMyNzMyWjAYMRYwFAYD VQQDEw02N2YwYTMyNS04OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujl1JkHlqLfq0a1wuYazmzX/gFhkOGGc98nICo6pDRAmNVPR/vh0HRS072bq YftqIv1oCTcfExQctV10RZH0LjC+PiTlOJFoBZXYNceSkrZ1UsUKmc9eim811VLt M3ZfFbKuA/L1WIWa1ZXz4hTpcwr9orn/Vva/itHJGJ1AnNDAnQBy0YJW4KdaIYJD +f3GqenQzFHDP2GNnEa6Q9Tx7RaggFbbUXpcUaMey6pHom6pHiuXfAkMNDjFxZp0 /E6n7tXPjALf6f5G5XFw392VsxsLNtIMIarxrylqYbNuquaYdGeFcr8fbfVeUv8h 5DebvuBNBDlY/phT63Fa3MHhkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvZlHXp k1x+0efwv/5wQMZzAnbUMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTBBQS84MkJCQjU1MjAwM0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJ OTZ1M0NNVXBIVGhIZ2NZZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj2PqE6EBBru5DrTkCCnQMLYBNNrRzb4vSo0EQw754kqvnv3FytQwq Ccdbyo8hgZA9ZAIo91AgF5WxN2PLVs7lNyEIlAK50qMcA15e7doOoZ9JouNwiDXX //k4ewDGfocXkaUdWo3c51G+X2Ig7v/L3H81+DvK4YUmutZcumvpSj+LVllo/2iB L7mgmnRwVJ+wSWz4bHj7s3+nhPAHZ3ANYOVCvZWpvqQ2iNqEoqB1/Hnd4gK8mO8r JS00JV4eas+4G8WWAr87zS96CxrHpGa1y6UAFwY7iRzFr1nH66KBWP4fXL+B9DyB 1rxWpofiBOi1TtnRy0zeTGTrkkHHu5TB -----END CERTIFICATE-----Generated at Sat Apr 5 19:18:11 2025 by rpki-client