$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: ROFmMXELmwurxAT2U8I7WENHT1MsIJ3mGdzw9LSc8iA= Subject key identifier: 15:6B:CA:4C:C5:E0:DA:CA:06:1B:22:A8:8E:6E:CA:F9:DD:09:4D:46 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 07AF Signing time: Fri 28 Mar 2025 21:35:41 +0000 Manifest this update: Fri 28 Mar 2025 21:35:40 +0000 Manifest next update: Fri 04 Apr 2025 21:35:40 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: qifIqGlaO1DUdPwQNFozk5EACI3wV8U82fUHK9i/vxE=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 21:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F Validity Not Before: Mar 28 21:35:40 2025 GMT Not After : Apr 4 21:35:40 2025 GMT Subject: CN=67e7162d-86e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:16:dc:3e:9f:b6:75:93:c3:23:8b:9a:46: fb:44:bc:a4:b5:0a:b1:1a:22:81:4c:34:a8:d2:19: e2:25:58:5e:ea:01:be:2b:16:2f:1f:cd:31:97:da: d3:c1:5f:00:eb:a8:9f:4f:45:af:1c:95:3d:63:df: c9:ba:6a:d3:82:14:49:b4:ab:f5:f9:47:a6:27:b8: a2:3a:da:a4:cf:f3:0d:f8:e1:9d:2d:25:63:a2:51: 2d:fb:07:4f:34:d4:e7:cd:2d:a1:c3:26:c0:6a:32: f6:9c:b8:49:ca:17:97:c8:80:9e:ad:84:33:2f:d0: 01:80:29:c4:f2:a8:ec:99:8b:98:34:e1:b2:02:04: cf:98:1e:75:77:a2:79:9a:13:87:25:bb:cb:7f:3f: 62:93:c0:e2:d0:97:c2:4c:98:3a:45:80:d2:90:81: 43:a5:b4:c1:20:74:25:85:7e:9b:51:0f:8d:df:6f: 1b:bd:2d:4c:df:f7:e5:b0:63:5e:0b:d8:a2:04:b0: d3:86:06:ab:30:04:9a:8a:6c:04:7f:23:30:96:5f: 19:2b:f2:b6:41:45:83:67:e7:ee:89:5e:71:96:56: 0b:6b:00:d9:61:f1:ab:9d:9f:30:f2:59:51:56:3a: 3a:4f:12:b5:a0:4b:dc:fb:f8:c4:d4:cd:1c:19:38: 77:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6B:CA:4C:C5:E0:DA:CA:06:1B:22:A8:8E:6E:CA:F9:DD:09:4D:46 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:61:c1:e1:14:81:05:90:87:7b:c0:2a:c5:45:64:92:eb:d9: 80:fa:7a:66:48:fb:f1:ae:1f:28:08:80:ec:1a:01:42:88:33: 40:4f:12:a3:68:ae:5d:22:57:dd:44:c4:63:5c:ed:0a:da:ad: a2:29:ac:fd:b1:30:8a:15:df:71:f5:d6:34:04:59:6c:9d:62: 82:91:a6:a6:62:70:f9:db:94:e4:1e:e0:ad:39:d1:d5:28:c4: f4:20:5c:53:f8:aa:cd:33:c9:36:53:99:ce:ee:2f:13:c7:17: e9:f5:8f:2f:95:a2:f8:a6:0f:18:ac:d0:f9:c5:87:c1:6b:7a: 05:54:f6:f6:84:6f:4d:f3:58:61:e3:a9:6f:8a:0a:9e:eb:19: 9a:73:bc:1e:0a:37:42:e1:ed:4a:93:f7:42:18:fa:bc:4e:a9: cc:67:64:e9:88:1f:c6:05:04:4d:e9:dc:ab:e5:60:25:0e:9e: 04:6b:b6:00:f1:a1:55:f0:8f:78:ea:74:21:18:da:7d:40:5a: 64:72:ab:d2:83:27:38:5b:fe:8c:bc:cc:f5:da:2d:bc:98:b6: 9f:79:99:92:ef:74:e6:02:50:27:34:25:a7:54:46:fb:ba:3e: 7c:18:90:df:99:57:0c:53:1f:cf:f0:77:cd:f6:2b:39:a7:59: c4:cd:28:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUwMzI4MjEzNTQwWhcNMjUwNDA0MjEzNTQwWjAYMRYwFAYD VQQDEw02N2U3MTYyZC04NmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxu8W3D6ftnWTwyOLmkb7RLyktQqxGiKBTDSo0hniJVhe6gG+KxYvH80xl9rT wV8A66ifT0WvHJU9Y9/JumrTghRJtKv1+UemJ7iiOtqkz/MN+OGdLSVjolEt+wdP NNTnzS2hwybAajL2nLhJyheXyICerYQzL9ABgCnE8qjsmYuYNOGyAgTPmB51d6J5 mhOHJbvLfz9ik8Di0JfCTJg6RYDSkIFDpbTBIHQlhX6bUQ+N328bvS1M3/flsGNe C9iiBLDThgarMASaimwEfyMwll8ZK/K2QUWDZ+fuiV5xllYLawDZYfGrnZ8w8llR Vjo6TxK1oEvc+/jE1M0cGTh3UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVrykzF 4NrKBhsiqI5uyvndCU1GMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2YcHhFIEFkId7wCrFRWSS69mA+npmSPvxrh8oCIDsGgFCiDNATxKj aK5dIlfdRMRjXO0K2q2iKaz9sTCKFd9x9dY0BFlsnWKCkaamYnD525TkHuCtOdHV KMT0IFxT+KrNM8k2U5nO7i8Txxfp9Y8vlaL4pg8YrND5xYfBa3oFVPb2hG9N81hh 46lvigqe6xmac7weCjdC4e1Kk/dCGPq8TqnMZ2TpiB/GBQRN6dyr5WAlDp4Ea7YA 8aFV8I946nQhGNp9QFpkcqvSgyc4W/6MvMz12i28mLafeZmS73TmAlAnNCWnVEb7 uj58GJDfmVcMUx/P8HfN9is5p1nEzSiH -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:42 2025 by rpki-client