$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: sb5riK760XF1p47lKdUNSG35GusDVzEwYPSKhssIh8c= Subject key identifier: 82:61:BB:6C:74:A7:33:B7:34:47:5A:CA:93:17:38:17:9B:0F:7B:D8 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 0386 Signing time: Thu 03 Apr 2025 00:51:22 +0000 Manifest this update: Thu 03 Apr 2025 00:51:21 +0000 Manifest next update: Thu 10 Apr 2025 00:51:21 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: gHJBW7WKr8mHiFHXZ1+4rKVoIMMmP3C0qnFNTx9/L3g=) 2: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=) 3: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9 Validity Not Before: Apr 3 00:51:21 2025 GMT Not After : Apr 10 00:51:21 2025 GMT Subject: CN=67eddb8a-1f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:43:00:db:e8:f9:b8:6b:74:cc:e4:3a:37:eb: ab:e8:dd:22:3b:cf:b1:26:43:23:4e:f7:12:f6:ef: 9b:9c:a2:c8:e3:b9:34:16:b3:9d:6b:ca:0b:4b:f8: 3f:28:1e:42:95:00:58:a3:cf:89:68:d8:ed:de:2f: 94:de:cf:6d:bb:8c:c8:72:08:a7:d7:af:16:61:cd: 15:9d:b8:2a:6c:b3:3f:b2:bb:f4:d5:85:6c:91:fe: 80:ea:11:53:7e:24:18:17:c7:31:8d:21:9c:75:fc: 71:f4:2e:e4:a7:f3:10:ec:d7:51:7e:90:f6:c3:91: 49:47:eb:ff:c3:d2:b3:ff:83:ee:69:3c:1e:a2:82: 8a:f4:cf:93:fa:64:06:04:13:c1:7a:48:30:e3:53: 40:24:c2:89:69:94:41:d8:92:fa:83:89:4a:8e:89: 11:91:99:7d:5c:d6:84:d0:d3:58:d9:ee:3f:4f:62: 7b:70:13:08:3e:09:0b:92:37:aa:d1:ba:fd:79:aa: 28:b4:70:c7:ec:0e:90:5a:6a:6d:6b:3b:b8:cc:10: c1:f3:12:ea:57:ce:47:b2:2f:74:e7:40:50:e8:67: de:76:f1:5f:84:1a:f6:65:0b:1a:10:9a:82:18:40: b5:be:6f:a9:80:1c:21:27:fd:85:2c:50:6d:3f:2a: f8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:61:BB:6C:74:A7:33:B7:34:47:5A:CA:93:17:38:17:9B:0F:7B:D8 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:04:3b:e2:81:fc:c1:0b:9e:74:11:d4:35:93:b2:16:df:53: 05:3a:61:5b:bd:ee:bf:57:c3:2b:96:43:47:43:d8:15:7c:d2: ee:c6:82:95:20:30:25:d3:52:40:a9:59:01:d8:60:8c:c2:e7: e8:36:5c:6c:d9:21:c1:f0:77:b7:d6:96:4b:ee:15:b9:f9:2a: c2:f2:ca:cd:2f:21:1e:f8:22:e0:41:ca:e6:b5:bc:21:92:9d: cb:d2:74:98:af:f6:77:1c:52:17:1b:72:dc:bc:e9:9c:97:06: 0c:e3:23:71:21:89:8c:52:71:56:6f:eb:37:9a:19:f4:a9:60: a8:8e:5b:81:f8:7f:7c:f9:4c:ea:4e:67:82:a0:15:30:59:35: 98:b8:60:9c:fa:89:1e:2f:0d:cf:de:b5:d9:5d:19:9b:1e:c7: e3:59:ca:ec:3b:00:b7:f1:3c:af:34:71:3e:bb:27:3c:63:71: b0:73:9c:65:7d:ff:a6:fc:20:b0:90:d8:c2:41:7d:3a:3f:12: 07:9c:4a:d4:7c:13:9d:6f:0d:d6:07:37:e8:60:97:32:da:d7: 94:8a:3f:b3:50:d0:6d:db:87:64:4c:ea:7b:23:59:73:b9:09: 0b:93:0a:7d:4b:73:3a:56:2e:70:61:43:c9:a0:c5:fc:a6:c1: 2f:cb:c7:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwNDAzMDA1MTIxWhcNMjUwNDEwMDA1MTIxWjAYMRYwFAYD VQQDEw02N2VkZGI4YS0xZjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEMA2+j5uGt0zOQ6N+ur6N0iO8+xJkMjTvcS9u+bnKLI47k0FrOda8oLS/g/ KB5ClQBYo8+JaNjt3i+U3s9tu4zIcgin168WYc0VnbgqbLM/srv01YVskf6A6hFT fiQYF8cxjSGcdfxx9C7kp/MQ7NdRfpD2w5FJR+v/w9Kz/4PuaTweooKK9M+T+mQG BBPBekgw41NAJMKJaZRB2JL6g4lKjokRkZl9XNaE0NNY2e4/T2J7cBMIPgkLkjeq 0br9eaootHDH7A6QWmptazu4zBDB8xLqV85Hsi9050BQ6GfedvFfhBr2ZQsaEJqC GEC1vm+pgBwhJ/2FLFBtPyr4/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJhu2x0 pzO3NEdaypMXOBebD3vYMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9BDvigfzBC550EdQ1k7IW31MFOmFbve6/V8MrlkNHQ9gVfNLuxoKV IDAl01JAqVkB2GCMwufoNlxs2SHB8He31pZL7hW5+SrC8srNLyEe+CLgQcrmtbwh kp3L0nSYr/Z3HFIXG3LcvOmclwYM4yNxIYmMUnFWb+s3mhn0qWCojluB+H98+Uzq TmeCoBUwWTWYuGCc+okeLw3P3rXZXRmbHsfjWcrsOwC38TyvNHE+uyc8Y3Gwc5xl ff+m/CCwkNjCQX06PxIHnErUfBOdbw3WBzfoYJcy2teUij+zUNBt24dkTOp7I1lz uQkLkwp9S3M6Vi5wYUPJoMX8psEvy8es -----END CERTIFICATE-----Generated at Fri Apr 4 22:37:02 2025 by rpki-client