$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: e1aj8FLMLY+z/uCwWrIeGI/uhsg9t9xFEcYHE2EzUjQ= Subject key identifier: 97:B7:2F:5B:9C:FA:18:49:16:CE:D1:F8:06:58:FA:1A:CD:12:E2:CE Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0DEF Signing time: Fri 04 Apr 2025 17:58:42 +0000 Manifest this update: Fri 04 Apr 2025 17:58:42 +0000 Manifest next update: Fri 11 Apr 2025 17:58:41 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: z5uBc07j/TecPlPj7pd4442OcbG1JfsBhT1oyfT7TCE=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04 Validity Not Before: Apr 4 17:58:42 2025 GMT Not After : Apr 11 17:58:41 2025 GMT Subject: CN=67f01dd2-fee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2e:a5:90:2f:f3:61:a2:ec:b0:5d:c7:5f:51: 2c:73:da:64:e0:48:d6:ec:ce:0b:a3:a5:f7:6d:14: de:47:c8:0a:f0:5f:83:02:a1:46:28:9a:f0:ff:c6: b3:8c:9f:f9:4f:70:a0:21:65:4e:08:74:d6:6f:36: 6c:3b:ee:08:98:7e:3f:d6:c1:6c:ef:41:73:29:31: d1:fb:df:8a:b0:67:8c:07:ef:e9:49:19:cd:bb:f0: 68:0b:e4:0f:f2:e1:a6:e9:ed:f8:eb:be:cc:0f:24: 4b:c6:63:bd:5f:e9:a5:05:6f:d9:e4:6a:b5:b2:1c: 50:36:8a:37:18:da:08:1a:55:b2:b3:31:7e:23:e2: 01:08:72:88:58:c0:98:83:82:ec:9c:17:92:1c:b0: 71:27:87:db:ae:f3:4a:5a:d8:74:56:f3:e7:87:67: 01:14:9f:ad:3f:6c:a0:05:93:40:39:de:bd:e7:63: 54:39:fa:58:61:78:af:4a:e3:fb:1f:70:cc:4d:d0: a1:c3:00:2f:76:a1:6a:e9:dc:2b:2f:f4:95:6b:8c: e5:0b:43:c8:6f:0a:a5:6f:b9:8f:cf:8d:2b:fc:31: 6d:09:ca:fe:d9:bb:1c:3e:28:3c:67:2c:df:47:c4: 0f:9b:0b:57:6f:88:f7:25:a7:6b:61:2a:a7:64:4f: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B7:2F:5B:9C:FA:18:49:16:CE:D1:F8:06:58:FA:1A:CD:12:E2:CE X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:c9:40:05:10:3c:05:64:89:6a:24:30:e2:f8:c2:98:f6:46: ff:9f:dd:fe:bc:d4:22:d1:e1:52:ff:80:4b:21:39:47:f3:a1: 95:78:ca:72:52:11:69:44:cf:db:3a:eb:01:a7:7a:52:18:6c: aa:3f:db:c5:82:80:d0:c5:78:e1:88:4f:57:4c:a4:80:e0:90: 2b:4f:a3:ec:c2:2e:ff:e9:5d:36:0d:2f:f7:eb:53:88:dc:a1: ab:ef:01:fc:c0:b7:35:a7:13:36:ba:90:a0:db:f8:a7:7a:10: 24:e0:1f:e0:c8:45:42:21:83:6c:4f:b6:1d:76:e3:2f:95:18: 14:89:e5:d4:e2:01:21:2e:7c:6b:67:5c:cf:de:f4:1a:84:af: db:0f:14:47:da:a5:9a:21:68:e2:fa:e9:81:70:a7:89:c0:82: b4:d3:a3:b6:42:9f:58:63:c8:f9:9c:c7:1c:d0:1b:a5:7f:bd: 56:12:67:9b:ef:79:52:6d:4d:6a:1a:f2:0e:8d:39:51:cb:ee: d1:38:03:7a:a9:d6:1d:28:45:3b:a6:91:4d:56:b9:43:f7:79: 50:87:10:15:77:81:9f:44:4a:e0:43:5d:e5:6d:52:35:ec:07: 90:25:84:51:3f:3f:c7:fc:ab:68:36:e4:27:9c:49:f0:21:6f: 11:57:38:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwNDA0MTc1ODQyWhcNMjUwNDExMTc1ODQxWjAYMRYwFAYD VQQDEw02N2YwMWRkMi1mZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAly6lkC/zYaLssF3HX1Esc9pk4EjW7M4Lo6X3bRTeR8gK8F+DAqFGKJrw/8az jJ/5T3CgIWVOCHTWbzZsO+4ImH4/1sFs70FzKTHR+9+KsGeMB+/pSRnNu/BoC+QP 8uGm6e34677MDyRLxmO9X+mlBW/Z5Gq1shxQNoo3GNoIGlWyszF+I+IBCHKIWMCY g4LsnBeSHLBxJ4fbrvNKWth0VvPnh2cBFJ+tP2ygBZNAOd6952NUOfpYYXivSuP7 H3DMTdChwwAvdqFq6dwrL/SVa4zlC0PIbwqlb7mPz40r/DFtCcr+2bscPig8Zyzf R8QPmwtXb4j3JadrYSqnZE9S4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe3L1uc +hhJFs7R+AZY+hrNEuLOMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2yUAFEDwFZIlqJDDi+MKY9kb/n93+vNQi0eFS/4BLITlH86GVeMpy UhFpRM/bOusBp3pSGGyqP9vFgoDQxXjhiE9XTKSA4JArT6Pswi7/6V02DS/361OI 3KGr7wH8wLc1pxM2upCg2/inehAk4B/gyEVCIYNsT7YdduMvlRgUieXU4gEhLnxr Z1zP3vQahK/bDxRH2qWaIWji+umBcKeJwIK006O2Qp9YY8j5nMcc0Bulf71WEmeb 73lSbU1qGvIOjTlRy+7ROAN6qdYdKEU7ppFNVrlD93lQhxAVd4GfRErgQ13lbVI1 7AeQJYRRPz/H/KtoNuQnnEnwIW8RVzg3 -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:03 2025 by rpki-client