$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: GlHaT1k36wEaRsZhl25rjBpSV5b6EQgDSdbqEXnpedQ= Subject key identifier: EC:DE:76:CA:66:DA:22:40:9B:DE:FF:23:86:16:15:20:C7:C7:EB:66 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 365C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 365B Signing time: Fri 04 Apr 2025 14:33:15 +0000 Manifest this update: Fri 04 Apr 2025 14:33:14 +0000 Manifest next update: Fri 11 Apr 2025 14:33:14 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: 78/n9jb11Dr6uWJ1rAn4zh1FcctWT83vqXwfr6D/MRw=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13916 (0x365c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Apr 4 14:33:14 2025 GMT Not After : Apr 11 14:33:14 2025 GMT Subject: CN=67efedaa-d2f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:32:35:c7:d4:9d:91:e2:bf:eb:04:b8:72:1d: be:91:65:63:38:80:38:0a:17:4e:0c:31:41:62:f3: 8b:25:31:cb:a1:4d:6e:af:99:35:6c:89:17:47:d3: ef:2a:e5:7b:84:d2:3c:d6:fc:4b:8f:3c:c8:3d:dc: c1:21:27:76:f9:89:13:d0:ad:df:3a:2e:60:b5:07: 4c:40:47:74:03:f7:2b:bf:f6:78:6a:55:ea:f9:2f: fd:06:75:ce:cc:56:3e:0e:d8:bb:92:89:59:7a:c2: 34:2f:91:1c:54:59:de:e2:40:e7:8e:8e:13:95:97: e3:6c:e2:09:13:c4:09:2a:b7:6b:3e:cb:ed:71:48: 7a:37:64:ce:f5:d6:f9:99:d5:39:b1:80:b0:13:ad: 1e:80:bb:71:cd:65:c7:58:88:cc:db:98:23:fd:42: 84:de:fa:71:8c:91:a6:d4:c5:12:54:52:9a:4d:72: ab:d2:68:7c:b8:ed:16:1b:09:4d:d8:e1:4d:65:e6: 09:14:70:6a:52:a6:38:ab:98:24:b7:8d:17:24:bd: a7:4f:d6:33:96:38:75:8b:41:a9:bf:63:66:ad:c1: 25:12:ce:67:a4:3b:d3:c7:6c:f2:d9:13:52:e6:f0: ad:43:05:92:93:c9:01:24:bd:e5:34:bf:0b:f8:9f: 71:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:DE:76:CA:66:DA:22:40:9B:DE:FF:23:86:16:15:20:C7:C7:EB:66 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d7:77:70:ac:e6:60:19:05:c4:fa:81:af:0c:c8:3e:3d:28: 47:fd:f5:b1:b8:d5:e1:33:53:8e:8a:d5:91:c6:02:ca:05:c4: 84:b2:ef:fc:88:8e:81:c0:79:ac:42:09:5c:50:5f:a8:21:84: 99:90:3a:48:ab:7e:a5:f1:0d:e7:20:7e:b7:c5:1c:c2:a7:f0: 70:c2:5f:3e:ae:8e:71:3e:52:20:4d:d4:4a:38:e8:00:36:65: ad:e9:3e:0c:92:54:30:54:59:04:f3:47:b1:40:00:1b:5d:68: 8a:81:92:fc:f6:fc:98:ff:16:2c:5f:8a:63:26:c9:85:75:21: 5c:ee:d1:81:7e:94:49:2d:92:2e:8e:67:0b:19:26:3d:6c:69: fa:6e:97:33:42:ea:70:2e:e1:8e:91:c6:b3:b2:d9:54:a9:4f: 0e:b1:25:bd:a4:81:5b:da:e4:d3:38:90:b9:63:ad:31:40:53: 5e:22:12:f3:02:9c:6d:a2:54:de:82:00:61:b3:a3:29:6b:d5: 89:a5:c6:d7:c2:5b:de:54:d4:7f:64:7d:7e:31:1f:84:a6:06: c1:c5:36:ec:8b:6c:ff:15:8f:c0:df:e1:f0:e1:1f:df:6f:79: 74:29:b4:0e:6b:e1:aa:73:57:5f:5c:7d:24:32:9e:2e:48:00: 4c:8c:54:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwNDA0MTQzMzE0WhcNMjUwNDExMTQzMzE0WjAYMRYwFAYD VQQDEw02N2VmZWRhYS1kMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzI1x9SdkeK/6wS4ch2+kWVjOIA4ChdODDFBYvOLJTHLoU1ur5k1bIkXR9Pv KuV7hNI81vxLjzzIPdzBISd2+YkT0K3fOi5gtQdMQEd0A/crv/Z4alXq+S/9BnXO zFY+Dti7kolZesI0L5EcVFne4kDnjo4TlZfjbOIJE8QJKrdrPsvtcUh6N2TO9db5 mdU5sYCwE60egLtxzWXHWIjM25gj/UKE3vpxjJGm1MUSVFKaTXKr0mh8uO0WGwlN 2OFNZeYJFHBqUqY4q5gkt40XJL2nT9Yzljh1i0Gpv2NmrcElEs5npDvTx2zy2RNS 5vCtQwWSk8kBJL3lNL8L+J9xbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzedspm 2iJAm97/I4YWFSDHx+tmMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj13dwrOZgGQXE+oGvDMg+PShH/fWxuNXhM1OOitWRxgLKBcSEsu/8 iI6BwHmsQglcUF+oIYSZkDpIq36l8Q3nIH63xRzCp/Bwwl8+ro5xPlIgTdRKOOgA NmWt6T4MklQwVFkE80exQAAbXWiKgZL89vyY/xYsX4pjJsmFdSFc7tGBfpRJLZIu jmcLGSY9bGn6bpczQupwLuGOkcazstlUqU8OsSW9pIFb2uTTOJC5Y60xQFNeIhLz ApxtolTeggBhs6Mpa9WJpcbXwlveVNR/ZH1+MR+EpgbBxTbsi2z/FY/A3+Hw4R/f b3l0KbQOa+Gqc1dfXH0kMp4uSABMjFRG -----END CERTIFICATE-----Generated at Sat Apr 5 04:58:07 2025 by rpki-client