$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: TyYP4vCcMbrVFH3Xe5fppIWNYPCJeQmdN4Ktn55TXHg= Subject key identifier: 70:2F:F5:10:BE:ED:51:29:9D:20:59:20:E2:45:FF:DD:1A:69:9D:05 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0AC1 Signing time: Thu 24 Apr 2025 19:23:06 +0000 Manifest this update: Thu 24 Apr 2025 19:23:05 +0000 Manifest next update: Thu 01 May 2025 19:23:05 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: l5OPLoLa5SLbr9MNzCa4BPgKv/Da+vrdC0SHUeuLklk=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2777 (0xad9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Apr 24 19:23:05 2025 GMT Not After : May 1 19:23:05 2025 GMT Subject: CN=680a8f99-22c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dc:0e:03:42:66:53:69:b4:f9:c7:91:a6:4e: 2f:c5:a5:99:03:4e:7a:2c:60:8b:33:35:22:ed:49: 70:0f:c4:05:73:b9:fd:c0:02:a2:67:96:87:bb:b9: 4d:cc:69:db:77:3f:2c:f7:de:bb:72:b9:52:c4:58: e0:87:66:2e:64:e4:94:58:57:a9:39:0b:fa:34:81: 02:cc:0a:c7:04:7f:2b:b1:a1:05:d9:88:cd:ea:8d: 11:14:99:21:56:79:7c:f2:da:28:54:75:77:b4:f4: 23:03:06:7f:ce:94:a0:1a:db:06:9e:93:d7:49:82: 0f:76:8d:2b:98:7f:e8:21:15:93:5d:7e:ef:88:ca: 2a:19:bf:ec:59:e0:b9:ed:ca:58:a1:18:ba:65:b1: 5e:fb:52:05:e5:17:76:a5:26:c9:71:8b:40:b6:a0: f5:7f:8d:09:95:46:66:b1:ec:99:b3:fe:97:ba:c1: 5b:ba:cc:2b:f6:06:79:d9:33:a8:75:74:78:d1:c0: ed:04:ee:34:3d:5c:fa:c5:24:8f:15:d1:5b:18:31: 6c:b3:e2:f7:55:fe:77:b6:b5:83:bc:d9:aa:65:3b: c3:53:ac:f1:ad:61:6b:34:ed:52:ce:57:04:12:36: 13:2f:b6:17:74:0d:58:d5:d4:a0:c9:ee:27:a8:21: 14:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2F:F5:10:BE:ED:51:29:9D:20:59:20:E2:45:FF:DD:1A:69:9D:05 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b2:73:88:52:7a:3c:32:88:eb:88:79:64:f2:9e:6a:b8:c1: a3:26:be:b8:bc:a9:ce:1a:07:05:71:f1:81:b9:86:b5:89:fd: a3:4a:b0:47:b4:f1:0f:9a:9e:b1:5d:73:b6:71:00:5d:c4:7b: 38:f4:0c:97:c5:5b:89:2d:82:a3:34:4a:67:3a:92:7a:07:25: 5f:1c:99:d3:d3:d0:9e:65:cd:0c:ac:85:ae:8f:47:3a:0e:5e: 7b:7b:fd:0e:62:15:d5:95:69:46:58:43:41:e5:4e:96:fd:23: 74:77:2f:3e:76:79:90:82:48:e0:ba:f7:0d:5c:4a:cc:38:7c: e3:da:eb:2d:06:6b:cd:c3:dd:ef:1f:22:89:73:3a:7d:98:6f: 4b:5f:2d:c0:04:43:94:68:5c:e5:ea:13:d4:b1:35:07:af:91: 06:7d:3c:73:4c:17:ed:bc:a9:28:ae:e9:39:46:bc:5c:ac:08: 00:e0:78:b9:d0:56:d2:b5:bf:b0:b0:3c:f1:54:a1:02:94:bc: 7f:f6:ea:2e:85:40:b8:61:a1:78:b0:0f:0d:f8:09:98:06:05: 07:66:aa:53:c6:2a:a5:7c:3c:7f:b5:f3:66:6b:2d:87:ea:7f: aa:68:d1:2f:40:a7:50:22:a8:6e:3d:4a:a4:39:74:ae:28:1c: 51:7e:b1:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwNDI0MTkyMzA1WhcNMjUwNTAxMTkyMzA1WjAYMRYwFAYD VQQDEw02ODBhOGY5OS0yMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNwOA0JmU2m0+ceRpk4vxaWZA056LGCLMzUi7UlwD8QFc7n9wAKiZ5aHu7lN zGnbdz8s9967crlSxFjgh2YuZOSUWFepOQv6NIECzArHBH8rsaEF2YjN6o0RFJkh Vnl88tooVHV3tPQjAwZ/zpSgGtsGnpPXSYIPdo0rmH/oIRWTXX7viMoqGb/sWeC5 7cpYoRi6ZbFe+1IF5Rd2pSbJcYtAtqD1f40JlUZmseyZs/6XusFbuswr9gZ52TOo dXR40cDtBO40PVz6xSSPFdFbGDFss+L3Vf53trWDvNmqZTvDU6zxrWFrNO1SzlcE EjYTL7YXdA1Y1dSgye4nqCEUYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAv9RC+ 7VEpnSBZIOJF/90aaZ0FMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+snOIUno8MojriHlk8p5quMGjJr64vKnOGgcFcfGBuYa1if2jSrBH tPEPmp6xXXO2cQBdxHs49AyXxVuJLYKjNEpnOpJ6ByVfHJnT09CeZc0MrIWuj0c6 Dl57e/0OYhXVlWlGWENB5U6W/SN0dy8+dnmQgkjguvcNXErMOHzj2ustBmvNw93v HyKJczp9mG9LXy3ABEOUaFzl6hPUsTUHr5EGfTxzTBftvKkoruk5RrxcrAgA4Hi5 0FbStb+wsDzxVKEClLx/9uouhUC4YaF4sA8N+AmYBgUHZqpTxiqlfDx/tfNmay2H 6n+qaNEvQKdQIqhuPUqkOXSuKBxRfrEo -----END CERTIFICATE-----Generated at Sat Apr 26 04:10:19 2025 by rpki-client