$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft File: mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft (raw, json) Hash identifier: qce8TZ9gIWYqaEuMgwqdvsnbzGf3vooytmVsbPQbhcc= Subject key identifier: 53:F4:AB:1C:96:7F:7D:40:77:8D:2A:64:46:06:9E:34:38:8D:90:40 Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft Manifest number: 0552 Signing time: Wed 02 Apr 2025 23:26:17 +0000 Manifest this update: Wed 02 Apr 2025 23:26:17 +0000 Manifest next update: Wed 09 Apr 2025 23:26:17 +0000 Files and hashes: 1: mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl (hash: caCeGprrWeu57Niy0scta1+3iq9RbBate+5SnpaesPQ=) 2: C4CB04C4E2A911EBB4631960C4F9AE02.roa (hash: /IQosXeTs3yKI2PYcZx2uhrQ/iH7sT08Mb2D4+fQ4bg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C Validity Not Before: Apr 2 23:26:17 2025 GMT Not After : Apr 9 23:26:17 2025 GMT Subject: CN=67edc799-5b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:6e:e6:3f:9d:0a:2e:af:e6:40:1b:62:27: 9c:4f:21:b7:99:88:2b:da:eb:20:c2:61:66:fe:e7: 3e:0a:de:ae:eb:d1:1a:8c:fa:5b:b3:59:5d:11:6d: 97:a1:85:4c:bd:e8:b2:cd:48:03:ec:0e:53:f5:3d: f6:fe:4e:01:7e:b7:a0:aa:69:f1:dd:ee:9e:9a:2f: b6:31:e4:d9:10:0e:ee:74:35:e3:aa:14:45:1c:fd: 71:1b:f9:0c:e5:08:50:a6:60:c0:99:4d:35:5b:21: ec:fb:d8:74:30:dd:11:e6:e3:e1:51:03:0a:b8:8e: cb:fa:1c:41:62:16:5d:69:d0:80:2b:52:f1:f0:73: 68:de:99:9a:7a:e6:c2:73:00:10:e3:5b:29:c5:2c: 5c:a5:07:45:bd:b8:70:76:c0:0f:73:52:55:ab:45: 94:10:ac:c3:75:09:c1:22:46:d9:52:50:68:3b:43: 69:41:25:5f:1f:d6:80:b7:89:e9:a7:58:be:76:ff: 7a:95:76:e5:93:6a:af:8e:16:05:0e:a6:ac:14:5d: f4:ec:29:aa:c3:46:9a:88:df:0b:4b:07:24:e6:55: 60:8d:8d:49:1b:f4:0b:c0:ed:f8:a5:ab:e6:cf:32: d1:40:46:f4:40:d3:5b:cf:92:b6:a1:91:47:a2:e0: 52:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F4:AB:1C:96:7F:7D:40:77:8D:2A:64:46:06:9E:34:38:8D:90:40 X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:fe:f3:5e:b7:8d:06:b1:8b:c3:89:e8:3b:26:00:ab:47:f6: 6d:68:93:f0:be:2d:3e:4e:42:00:37:e4:30:9b:ce:f6:19:a2: 00:92:e8:c0:e6:d9:a9:82:fa:ae:a0:2e:f5:6e:50:36:58:e1: 91:be:2b:4c:be:8b:71:ae:9d:6b:a7:24:36:67:92:8d:26:9b: 89:38:5f:57:be:25:86:a9:73:f0:77:3e:ba:1f:a2:f0:48:ef: e2:6f:ff:0f:f4:95:6d:80:af:0c:c3:c1:12:92:1f:25:34:f8: 24:b6:fa:19:27:b5:e4:ee:5f:29:3e:dd:82:99:d8:8c:f2:ff: 5f:58:e3:8d:65:bf:46:ba:9b:02:c4:6d:3a:33:d6:70:62:1b: 75:c2:95:c6:69:9b:af:50:ae:e8:ef:f2:ea:e0:15:10:26:da: e3:02:86:4f:d5:2f:62:9f:dc:c9:82:27:0e:7b:20:02:e8:34: ea:93:a9:6d:3e:fe:18:77:e0:97:11:75:2c:1f:e6:b6:21:e1: 17:8f:4e:8b:c0:30:1d:a1:5d:7f:f9:22:84:3a:44:dd:bc:8b: de:23:79:c6:88:51:b4:2b:ec:ba:03:cd:5e:e2:eb:79:a3:ce: a9:ec:bc:9f:82:a9:6f:cd:7c:f9:9b:df:73:a2:ad:00:9f:d5: f7:70:5c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjUwNDAyMjMyNjE3WhcNMjUwNDA5MjMyNjE3WjAYMRYwFAYD VQQDEw02N2VkYzc5OS01YjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR9u5j+dCi6v5kAbYiecTyG3mYgr2usgwmFm/uc+Ct6u69EajPpbs1ldEW2X oYVMveiyzUgD7A5T9T32/k4Bfregqmnx3e6emi+2MeTZEA7udDXjqhRFHP1xG/kM 5QhQpmDAmU01WyHs+9h0MN0R5uPhUQMKuI7L+hxBYhZdadCAK1Lx8HNo3pmaeubC cwAQ41spxSxcpQdFvbhwdsAPc1JVq0WUEKzDdQnBIkbZUlBoO0NpQSVfH9aAt4np p1i+dv96lXblk2qvjhYFDqasFF307Cmqw0aaiN8LSwck5lVgjY1JG/QLwO34pavm zzLRQEb0QNNbz5K2oZFHouBS2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFP0qxyW f31Ad40qZEYGnjQ4jZBAMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I2Qy84QjA4OTIwQUUyQTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZi eWZrQ0JZWDVwWU1tZDNQOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw/vNet40GsYvDieg7JgCrR/ZtaJPwvi0+TkIAN+Qwm872GaIAkujA 5tmpgvquoC71blA2WOGRvitMvotxrp1rpyQ2Z5KNJpuJOF9XviWGqXPwdz66H6Lw SO/ib/8P9JVtgK8Mw8ESkh8lNPgktvoZJ7Xk7l8pPt2CmdiM8v9fWOONZb9GupsC xG06M9ZwYht1wpXGaZuvUK7o7/Lq4BUQJtrjAoZP1S9in9zJgicOeyAC6DTqk6lt Pv4Yd+CXEXUsH+a2IeEXj06LwDAdoV1/+SKEOkTdvIveI3nGiFG0K+y6A81e4ut5 o86p7LyfgqlvzXz5m99zoq0An9X3cFxl -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:38 2025 by rpki-client