$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: hqAbD1jhYw1s9sVhlLu1Zt2gGURu9EamdD3rsQXRj8g= Subject key identifier: 5E:AA:54:27:8B:0A:E2:83:20:A1:2D:FF:46:72:4A:EF:28:25:35:FB Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 0238 Signing time: Sat 05 Apr 2025 02:02:47 +0000 Manifest this update: Sat 05 Apr 2025 02:02:47 +0000 Manifest next update: Sat 12 Apr 2025 02:02:47 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: +OtJj55RKY/XpHpqOpXoOHq9DNXI+swsmvhVseXnbu0=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: Zxoh9Ofh0OWLZ5oXPc2RuTae5hFatyn/nJ6RPctUa3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753 Validity Not Before: Apr 5 02:02:47 2025 GMT Not After : Apr 12 02:02:47 2025 GMT Subject: CN=67f08f47-6cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e2:51:a4:b8:6e:6b:8d:84:e8:39:80:d2:fb: 3c:55:4a:f1:41:27:a5:fe:ae:c7:ef:38:78:b8:b7: 21:b9:0b:79:ed:c1:25:47:2f:ec:cf:ff:16:43:bd: 42:4a:20:a1:a4:50:32:3d:5b:ad:39:90:61:e5:7b: 1c:cb:b4:c4:1a:40:68:90:89:54:3d:aa:10:ea:fe: 3f:ed:65:05:4b:50:89:c8:bf:ea:5f:76:9e:21:ad: a7:d3:63:f3:32:7d:fa:a4:22:a7:1d:b9:ab:29:b7: 1b:b4:cf:45:a1:4a:a0:77:87:65:99:87:33:e7:f0: 2c:94:35:f3:12:d8:ee:3f:21:a8:fb:be:41:35:f5: c2:a1:3d:77:88:23:52:c5:67:86:a6:39:ed:4f:07: 69:3f:2e:fc:a4:46:42:0d:03:e7:6e:c0:8b:13:dc: ae:89:2c:8d:ed:0c:7e:b0:cb:3e:5b:8a:95:35:79: 1d:31:34:25:d6:bb:56:45:87:76:d2:4b:e0:40:43: ad:e3:ad:ea:fc:3a:75:6d:a8:df:32:23:1e:9b:e6: 44:57:da:7b:2e:6c:c4:f5:f1:6a:49:21:4d:13:0c: c3:20:fe:02:32:b0:77:c6:5f:23:6c:3e:c5:2f:41: a4:00:db:c5:af:12:58:d1:b3:3a:2a:68:61:f4:35: 1f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AA:54:27:8B:0A:E2:83:20:A1:2D:FF:46:72:4A:EF:28:25:35:FB X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:78:fb:1f:47:9b:b2:64:0c:2b:6d:48:1e:67:f2:d0:30:21: e0:79:0d:69:6f:9e:4c:e6:18:71:a9:66:3f:a0:4c:4d:ad:de: 85:29:a8:45:af:79:8d:ab:4a:18:07:6c:d5:15:6f:eb:86:33: d7:7d:52:89:25:ed:04:80:65:1e:c6:a5:61:08:ca:f9:0b:18: 85:52:4b:8a:15:84:3b:f5:26:1c:fb:fc:b8:d8:b7:6f:17:2a: e4:92:5a:00:5a:11:d2:1e:07:13:25:1a:dc:c6:20:f4:82:b3: cb:9d:14:b0:c3:80:09:af:26:18:fb:5e:7b:de:4d:b8:8c:51: 16:0a:ac:24:67:87:9f:a7:76:46:0e:3c:71:5b:b0:ff:ad:72: 32:35:b6:5b:46:a6:e6:00:f6:63:70:1e:26:8d:77:c7:06:51: 93:0c:db:2d:ad:8f:5c:2c:f5:b2:6f:87:9a:67:38:30:33:e8: fb:02:2b:c0:6f:b3:be:28:ba:e1:57:24:76:76:0b:58:ae:8f: a7:39:c6:8c:ba:87:b7:7c:06:b8:6c:c5:0a:b0:6a:1f:12:47: 57:5d:73:09:90:95:54:14:76:4e:d5:a4:da:85:d0:c9:b0:04: e8:58:fb:27:86:1f:f3:ce:76:96:d9:3c:a3:a3:e4:ca:1e:19: d0:53:ca:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjUwNDA1MDIwMjQ3WhcNMjUwNDEyMDIwMjQ3WjAYMRYwFAYD VQQDEw02N2YwOGY0Ny02Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreJRpLhua42E6DmA0vs8VUrxQSel/q7H7zh4uLchuQt57cElRy/sz/8WQ71C SiChpFAyPVutOZBh5Xscy7TEGkBokIlUPaoQ6v4/7WUFS1CJyL/qX3aeIa2n02Pz Mn36pCKnHbmrKbcbtM9FoUqgd4dlmYcz5/AslDXzEtjuPyGo+75BNfXCoT13iCNS xWeGpjntTwdpPy78pEZCDQPnbsCLE9yuiSyN7Qx+sMs+W4qVNXkdMTQl1rtWRYd2 0kvgQEOt463q/Dp1bajfMiMem+ZEV9p7LmzE9fFqSSFNEwzDIP4CMrB3xl8jbD7F L0GkANvFrxJY0bM6Kmhh9DUfowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6qVCeL CuKDIKEt/0ZySu8oJTX7MB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZePsfR5uyZAwrbUgeZ/LQMCHgeQ1pb55M5hhxqWY/oExNrd6FKahF r3mNq0oYB2zVFW/rhjPXfVKJJe0EgGUexqVhCMr5CxiFUkuKFYQ79SYc+/y42Ldv FyrkkloAWhHSHgcTJRrcxiD0grPLnRSww4AJryYY+1573k24jFEWCqwkZ4efp3ZG DjxxW7D/rXIyNbZbRqbmAPZjcB4mjXfHBlGTDNstrY9cLPWyb4eaZzgwM+j7AivA b7O+KLrhVyR2dgtYro+nOcaMuoe3fAa4bMUKsGofEkdXXXMJkJVUFHZO1aTahdDJ sAToWPsnhh/zznaW2Tyjo+TKHhnQU8pC -----END CERTIFICATE-----Generated at Sun Apr 6 15:27:39 2025 by rpki-client