$ rpki-client -vvf rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft File: T191psKYj1i2AwEqjbRFofN9XXI.mft (raw, json) Hash identifier: re3zm3eSBihxdtgR2yyigeUE795f5/S9zcrqiDfWV+g= Subject key identifier: B0:3B:E9:85:D6:A7:0B:0C:79:77:B4:FE:8B:AA:F1:72:C8:D6:B9:8D Authority key identifier: 4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72 Certificate issuer: /CN=A914C3FB/serialNumber=4F5F75A6C2988F58B603012A8DB445A1F37D5D72 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft Manifest number: 0B Signing time: Sat 05 Apr 2025 07:29:00 +0000 Manifest this update: Sat 05 Apr 2025 07:29:00 +0000 Manifest next update: Sat 12 Apr 2025 07:29:00 +0000 Files and hashes: 1: T191psKYj1i2AwEqjbRFofN9XXI.crl (hash: x7QUOfXa1FG6UQc9MLO7Z8D5BvTYJagZLo0P3u4ryIg=) 2: 41E7BB1C0BA211F08457541BC4F9AE02.roa (hash: SLWKUoxyCCrW041ENZCKTkuF3OJqQTSoY0CsLhDIP04=) 3: 426BCB780BA211F08457541BC4F9AE02.roa (hash: u7O3FF9kpzwjobo755EoRFgx1pFaBs9MURnDVMTexT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.crl rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C3FB Validity Not Before: Apr 5 07:29:00 2025 GMT Not After : Apr 12 07:29:00 2025 GMT Subject: CN=67f0dbbc-d360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:78:a1:96:1d:e1:dd:0f:29:4a:ec:34:63:cf: 6d:9d:3f:b1:fc:0a:39:33:62:b1:8b:a8:6e:bf:36: 09:6e:5d:ad:1e:c3:cf:dd:d7:22:22:21:58:65:ab: 4a:b0:b3:aa:0d:a1:b7:8a:4e:cc:6f:2e:85:28:9e: b2:97:b4:00:1c:cc:d5:df:6e:15:09:43:1c:82:10: 57:4d:2d:1e:70:71:14:0b:f1:5f:12:0c:e7:9d:e3: d3:97:6c:9a:fb:c3:18:31:4c:9c:3a:8e:d2:9f:1b: 19:49:22:74:37:b4:ee:9a:78:5f:42:e2:64:cc:6c: a7:ba:00:2b:0b:3b:9a:ef:0b:11:0e:6a:80:f9:de: 80:1e:bf:dd:63:81:96:bb:9c:a8:e5:4f:05:9e:49: 0a:45:8e:4d:23:70:85:c4:5f:c5:b1:ba:57:19:95: dc:71:55:84:c1:e1:69:d1:08:1f:bd:49:66:7b:9e: b2:91:94:2f:a5:b9:46:ce:70:d3:f2:33:8c:8a:bb: 23:4e:85:df:b5:e1:a6:1f:ff:03:91:b2:e1:30:5f: 4d:7d:e2:ad:01:06:54:8c:0d:86:cd:99:79:97:24: 6f:71:f5:a5:74:4f:45:9c:da:6c:23:8f:89:1b:e1: e3:58:d3:9d:da:97:03:17:7d:94:db:d2:bb:d4:15: de:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3B:E9:85:D6:A7:0B:0C:79:77:B4:FE:8B:AA:F1:72:C8:D6:B9:8D X509v3 Authority Key Identifier: keyid:4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ea:2d:75:b6:c1:cd:1d:51:0f:e0:72:60:b9:4f:40:47:d5: 83:fc:96:e4:40:ea:5b:c6:a2:d1:97:be:6d:6d:ed:76:27:0b: 39:cb:4a:83:d5:18:f8:95:d8:a3:ba:27:90:c4:33:b2:7e:00: 25:78:64:0b:12:83:bf:4c:c9:ca:30:09:b7:9c:1f:5d:cf:1e: b6:d8:7d:80:bd:76:b4:72:ea:6e:61:b0:0b:06:de:47:a2:7f: a2:cd:e8:bc:d8:57:d5:92:1b:ab:1c:8a:6c:89:ae:1e:9e:f7: 5d:7d:b7:d5:4c:07:11:61:7d:f0:9d:96:b8:14:f9:06:ff:7d: 64:b6:6f:8a:22:f9:74:38:a6:b5:5a:59:c6:7e:67:d4:f7:bf: f1:9d:6f:7b:c3:93:4c:c7:70:21:57:26:19:d5:67:28:0a:69: c0:2a:86:52:26:c5:3b:22:1f:e8:d6:6a:3b:f3:fc:36:a5:50: 59:75:e1:2b:eb:38:fc:96:fe:c3:6c:15:e7:13:d2:a5:7b:d2: 04:2c:2e:7f:78:aa:ca:82:c6:75:e5:4f:60:33:5f:08:c2:cf: 89:47:9d:ae:84:f0:e8:fe:29:d1:5b:e7:68:ae:87:ec:59:b7: 59:f9:92:1e:88:ca:74:07:27:90:de:4b:63:a4:f4:8f:e8:6b: 5d:21:c5:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QzNGQjExMC8GA1UEBRMoNEY1Rjc1QTZDMjk4OEY1OEI2MDMwMTJBOERCNDQ1QTFG MzdENUQ3MjAeFw0yNTA0MDUwNzI5MDBaFw0yNTA0MTIwNzI5MDBaMBgxFjAUBgNV BAMTDTY3ZjBkYmJjLWQzNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNeKGWHeHdDylK7DRjz22dP7H8CjkzYrGLqG6/NgluXa0ew8/d1yIiIVhlq0qw s6oNobeKTsxvLoUonrKXtAAczNXfbhUJQxyCEFdNLR5wcRQL8V8SDOed49OXbJr7 wxgxTJw6jtKfGxlJInQ3tO6aeF9C4mTMbKe6ACsLO5rvCxEOaoD53oAev91jgZa7 nKjlTwWeSQpFjk0jcIXEX8WxulcZldxxVYTB4WnRCB+9SWZ7nrKRlC+luUbOcNPy M4yKuyNOhd+14aYf/wORsuEwX0194q0BBlSMDYbNmXmXJG9x9aV0T0Wc2mwjj4kb 4eNY053alwMXfZTb0rvUFd7dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsDvphdan Cwx5d7T+i6rxcsjWuY0wHwYDVR0jBBgwFoAUT191psKYj1i2AwEqjbRFofN9XXIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDM0ZCLzcwMTc4MjE2MEJB MTExRjA4RUZFRDIxOUM0RjlBRTAyL1QxOTFwc0tZajFpMkF3RXFqYlJGb2ZOOVhY SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDE5MXBzS1lqMWkyQXdFcWpiUkZvZk45WFhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRD M0ZCLzcwMTc4MjE2MEJBMTExRjA4RUZFRDIxOUM0RjlBRTAyL1QxOTFwc0tZajFp MkF3RXFqYlJGb2ZOOVhYSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKrqLXW2wc0dUQ/gcmC5T0BH1YP8luRA6lvGotGXvm1t7XYnCznLSoPV GPiV2KO6J5DEM7J+ACV4ZAsSg79MycowCbecH13PHrbYfYC9drRy6m5hsAsG3kei f6LN6LzYV9WSG6scimyJrh6e9119t9VMBxFhffCdlrgU+Qb/fWS2b4oi+XQ4prVa WcZ+Z9T3v/Gdb3vDk0zHcCFXJhnVZygKacAqhlImxTsiH+jWajvz/DalUFl14Svr OPyW/sNsFecT0qV70gQsLn94qsqCxnXlT2AzXwjCz4lHna6E8Oj+KdFb52iuh+xZ t1n5kh6IynQHJ5DeS2Ok9I/oa10hxSw= -----END CERTIFICATE-----Generated at Sat Apr 5 13:38:21 2025 by rpki-client