$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: FL+l1lE/sv8mol7D8OuHRx9ssLnHdhccZMFLbMo52lM= Subject key identifier: 88:74:ED:BA:7E:B4:B1:1E:E5:35:F3:0B:15:57:7B:38:C2:E0:1B:CC Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0179 Signing time: Sat 05 Apr 2025 03:12:07 +0000 Manifest this update: Sat 05 Apr 2025 03:12:07 +0000 Manifest next update: Sat 12 Apr 2025 03:12:06 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: rzQghGoTCg5m7rTREGUaVyDdaGqMZEwBCl1/M1U91P8=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389 Validity Not Before: Apr 5 03:12:07 2025 GMT Not After : Apr 12 03:12:06 2025 GMT Subject: CN=67f09f87-aab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:18:75:d5:ba:a5:98:2e:46:be:c2:f0:2a: 8c:66:9a:00:3c:86:e8:4e:56:5e:e8:26:3d:52:57: 98:49:32:35:88:dc:98:3f:4c:0a:45:10:4e:ad:5e: 8b:d3:91:59:61:a0:d8:fd:80:fa:92:16:c7:7e:58: 7d:2f:72:fc:41:df:de:ca:e8:d4:01:03:7a:3a:fd: 51:0b:92:d1:12:06:42:3f:0c:20:90:d0:6c:fd:f8: 26:d9:62:87:1c:0d:b5:fa:60:dd:56:b7:77:3a:5e: 83:a5:e8:e4:7e:5f:47:65:81:15:c5:e2:6b:3e:4c: 7f:a2:31:1c:19:39:3c:df:6b:60:48:ec:e0:34:e7: 9c:de:41:5b:76:3d:0c:9b:ce:3e:be:cc:96:64:d5: 2b:be:39:68:39:4f:12:65:da:19:dd:aa:d5:3a:f3: e8:a1:e3:8e:22:8a:b6:64:56:72:0d:bc:0c:06:c4: 78:ca:4c:ad:4f:f2:2e:41:3e:91:a2:3a:0d:21:1d: 2f:d5:76:cc:5a:b6:7a:5a:0c:9d:08:15:b9:f7:99: 74:38:cf:59:89:05:ad:93:ea:6d:22:cc:eb:e1:e3: 07:d9:34:e2:c9:4d:85:c5:a1:70:82:18:36:ed:bc: 26:65:fa:1b:a4:9c:63:16:ec:70:a6:af:0e:4e:a6: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:74:ED:BA:7E:B4:B1:1E:E5:35:F3:0B:15:57:7B:38:C2:E0:1B:CC X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:23:70:33:8e:12:9a:56:a3:3b:4d:9f:50:a0:f8:d4:2c:33: cd:ed:64:c0:6b:23:10:e7:72:3a:de:60:13:0e:a0:ff:b1:47: e6:7c:7b:a5:cb:0b:fc:b0:45:01:4d:ce:9d:20:3c:85:78:f8: fd:77:fc:dc:16:6f:65:90:9c:01:e1:4d:83:20:43:06:4d:cd: 82:42:34:6b:60:c9:b8:1d:4b:83:5f:ba:09:a0:3a:00:14:60: ba:c0:11:bd:81:13:ce:08:6a:17:30:e2:95:d2:3b:03:14:b7: b3:7e:df:99:14:ef:1c:7f:ad:ee:9c:20:88:56:11:97:ee:f1: a4:ab:19:91:13:2c:ec:d4:b0:bc:f1:26:b8:ec:a9:8c:e6:b6: e4:8b:d4:b8:90:61:33:20:27:cf:f1:6f:36:ad:ab:e3:4d:66: 33:6c:53:b7:90:45:e7:44:c9:48:4d:f0:c5:11:f9:30:2a:b3: b3:0f:1a:3b:35:55:8d:48:7b:13:b1:a7:fa:ba:57:6d:1d:08: c5:03:bc:3e:a2:a1:dd:b7:28:0b:16:c9:b0:e3:49:51:08:42: b8:fa:71:1d:2c:f4:37:b2:b8:1d:e9:0c:4c:3d:9c:ad:07:80: d3:36:aa:1d:ff:66:1e:bd:b9:c8:45:0f:14:22:f6:3f:70:2c: a1:2e:b7:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNDA1MDMxMjA3WhcNMjUwNDEyMDMxMjA2WjAYMRYwFAYD VQQDEw02N2YwOWY4Ny1hYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+AYddW6pZguRr7C8CqMZpoAPIboTlZe6CY9UleYSTI1iNyYP0wKRRBOrV6L 05FZYaDY/YD6khbHflh9L3L8Qd/eyujUAQN6Ov1RC5LREgZCPwwgkNBs/fgm2WKH HA21+mDdVrd3Ol6Dpejkfl9HZYEVxeJrPkx/ojEcGTk832tgSOzgNOec3kFbdj0M m84+vsyWZNUrvjloOU8SZdoZ3arVOvPooeOOIoq2ZFZyDbwMBsR4ykytT/IuQT6R ojoNIR0v1XbMWrZ6WgydCBW595l0OM9ZiQWtk+ptIszr4eMH2TTiyU2FxaFwghg2 7bwmZfobpJxjFuxwpq8OTqblcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIh07bp+ tLEe5TXzCxVXezjC4BvMMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8I3AzjhKaVqM7TZ9QoPjULDPN7WTAayMQ53I63mATDqD/sUfmfHul ywv8sEUBTc6dIDyFePj9d/zcFm9lkJwB4U2DIEMGTc2CQjRrYMm4HUuDX7oJoDoA FGC6wBG9gRPOCGoXMOKV0jsDFLezft+ZFO8cf63unCCIVhGX7vGkqxmREyzs1LC8 8Sa47KmM5rbki9S4kGEzICfP8W82ravjTWYzbFO3kEXnRMlITfDFEfkwKrOzDxo7 NVWNSHsTsaf6uldtHQjFA7w+oqHdtygLFsmw40lRCEK4+nEdLPQ3srgd6QxMPZyt B4DTNqod/2YevbnIRQ8UIvY/cCyhLrde -----END CERTIFICATE-----Generated at Sat Apr 5 19:26:07 2025 by rpki-client