$ rpki-client -vvf rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.mft File: sg6f5krzzoyYJyXQEqFCknJjzvA.mft (raw, json) Hash identifier: mRZ3SFadtVUB9MPLm88YAWuXzWLww64hNqM7MXKavew= Subject key identifier: 51:45:4E:3D:33:34:DE:16:0F:E5:C8:31:72:2B:25:02:7A:D2:D6:13 Authority key identifier: B2:0E:9F:E6:4A:F3:CE:8C:98:27:25:D0:12:A1:42:92:72:63:CE:F0 Certificate issuer: /CN=A91477C3/serialNumber=B20E9FE64AF3CE8C982725D012A142927263CEF0 Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sg6f5krzzoyYJyXQEqFCknJjzvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.mft Manifest number: 07EB Signing time: Thu 24 Apr 2025 20:51:09 +0000 Manifest this update: Thu 24 Apr 2025 20:51:09 +0000 Manifest next update: Thu 01 May 2025 20:51:09 +0000 Files and hashes: 1: sg6f5krzzoyYJyXQEqFCknJjzvA.crl (hash: eNAqKjM6B7MqANxgvkziwVyBKsouWMRd+HNThMOxCHk=) 2: 5FB89FD4DA8511EEBD7AF854C4F9AE02.roa (hash: 7JHMwVjCROL2NO+MkxXgRxb2ZHCCwLSy/kLqZ1Og33E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.crl rsync://rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sg6f5krzzoyYJyXQEqFCknJjzvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91477C3, serialNumber=B20E9FE64AF3CE8C982725D012A142927263CEF0 Validity Not Before: Apr 24 20:51:09 2025 GMT Not After : May 1 20:51:09 2025 GMT Subject: CN=680aa43d-e641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:74:b5:d3:43:09:b4:d3:ca:04:86:38:a3: ce:28:09:df:42:2b:ad:f6:6d:63:9d:7d:0f:b5:8a: 88:75:d6:82:e9:59:78:3d:76:e5:e4:72:22:da:ff: 91:1b:21:17:8a:bf:66:67:d7:06:01:fe:ac:f0:e0: ad:4e:9a:c1:04:92:2b:c3:2f:fe:d7:8e:11:36:48: f6:e8:64:cd:ad:e4:6b:63:c6:03:99:85:bd:16:4c: 34:09:2d:6c:a2:12:9c:b5:11:e1:22:4e:78:ef:91: 58:8c:b0:ad:ad:08:47:b5:e9:84:1a:ed:14:3b:ec: c5:e3:d5:35:e8:8c:3f:ba:b2:3d:f0:96:28:04:a8: 68:b4:0f:e0:c6:ff:a8:48:9f:40:77:10:b0:76:95: b7:ea:24:d5:b9:74:b4:e7:a7:fd:2f:72:8b:b6:59: d8:fa:cd:c4:a2:98:8a:28:a8:ef:59:e0:cb:62:47: 56:88:80:69:c9:d6:f5:de:74:af:27:f7:b8:77:f2: 88:e1:96:e4:a2:f1:ae:fd:c6:24:38:41:e7:d8:3e: a5:7c:a4:41:59:81:7a:76:e4:ea:8a:47:26:a4:de: ed:53:d8:40:0b:6a:84:4f:f4:c8:df:d8:ed:eb:9c: 31:27:c2:a5:0f:70:ee:8f:17:c4:a8:ee:87:61:39: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:45:4E:3D:33:34:DE:16:0F:E5:C8:31:72:2B:25:02:7A:D2:D6:13 X509v3 Authority Key Identifier: keyid:B2:0E:9F:E6:4A:F3:CE:8C:98:27:25:D0:12:A1:42:92:72:63:CE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sg6f5krzzoyYJyXQEqFCknJjzvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91477C3/5DA48C20E76E11EA8142A839C4F9AE02/sg6f5krzzoyYJyXQEqFCknJjzvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:93:ea:58:e5:8b:f3:35:f5:9f:59:7a:d1:ba:57:10:4a:e5: b9:31:c7:39:7d:b4:5d:1e:84:bb:3b:08:72:6b:3f:69:68:63: 30:a2:1d:dc:27:ee:0c:84:e2:e8:8f:d3:5b:09:9b:48:eb:38: a6:97:07:4d:b8:c4:fd:b9:3a:e1:76:7d:36:4f:bd:ba:27:b7: ae:ad:08:f7:07:20:7c:99:c4:b8:48:63:19:b0:1a:bb:d0:ef: 51:14:15:6c:99:2a:8b:2e:d9:c0:a7:f9:08:c1:3b:90:78:c3: 9a:6e:91:01:f4:5a:3f:e3:9f:1f:ad:9f:ab:e6:76:6f:60:b5: 30:71:de:61:32:a8:0a:b7:75:8b:5c:fa:4e:94:54:8a:30:50: 22:6a:86:06:09:ae:00:c9:24:1b:41:0b:34:a3:e9:37:de:a1: dd:0c:16:c7:5f:9e:69:59:a5:ab:19:8a:77:3e:17:98:ce:fa: aa:0b:91:60:7d:d7:d3:9c:37:ec:86:ac:65:c6:4a:6a:fb:b6: 09:f1:27:4f:75:89:b0:2b:5a:e7:ed:81:f5:ec:1e:3c:46:3e: 73:c7:db:1c:81:ed:d6:18:f5:d2:cf:ea:e2:da:67:c2:fe:16: 95:25:94:f9:3f:4a:cb:bb:d5:6d:ca:61:20:e8:58:f4:b9:46: d3:30:62:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc3QzMxMTAvBgNVBAUTKEIyMEU5RkU2NEFGM0NFOEM5ODI3MjVEMDEyQTE0Mjky NzI2M0NFRjAwHhcNMjUwNDI0MjA1MTA5WhcNMjUwNTAxMjA1MTA5WjAYMRYwFAYD VQQDEw02ODBhYTQzZC1lNjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaZ0tdNDCbTTygSGOKPOKAnfQiut9m1jnX0PtYqIddaC6Vl4PXbl5HIi2v+R GyEXir9mZ9cGAf6s8OCtTprBBJIrwy/+144RNkj26GTNreRrY8YDmYW9Fkw0CS1s ohKctRHhIk5475FYjLCtrQhHtemEGu0UO+zF49U16Iw/urI98JYoBKhotA/gxv+o SJ9AdxCwdpW36iTVuXS056f9L3KLtlnY+s3EopiKKKjvWeDLYkdWiIBpydb13nSv J/e4d/KI4ZbkovGu/cYkOEHn2D6lfKRBWYF6duTqikcmpN7tU9hAC2qET/TI39jt 65wxJ8KlD3DujxfEqO6HYTnwpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFFTj0z NN4WD+XIMXIrJQJ60tYTMB8GA1UdIwQYMBaAFLIOn+ZK886MmCcl0BKhQpJyY87w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzdDMy81REE0OEMyMEU3 NkUxMUVBODE0MkE4MzlDNEY5QUUwMi9zZzZmNWtyenpveVlKeVhRRXFGQ2tuSmp6 dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnNmY1a3J6em95WUp5WFFFcUZDa25Kanp2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzdDMy81REE0OEMyMEU3NkUxMUVBODE0MkE4MzlDNEY5QUUwMi9zZzZmNWtyenpv eVlKeVhRRXFGQ2tuSmp6dkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUk+pY5YvzNfWfWXrRulcQSuW5Mcc5fbRdHoS7Owhyaz9paGMwoh3c J+4MhOLoj9NbCZtI6zimlwdNuMT9uTrhdn02T726J7eurQj3ByB8mcS4SGMZsBq7 0O9RFBVsmSqLLtnAp/kIwTuQeMOabpEB9Fo/458frZ+r5nZvYLUwcd5hMqgKt3WL XPpOlFSKMFAiaoYGCa4AySQbQQs0o+k33qHdDBbHX55pWaWrGYp3PheYzvqqC5Fg fdfTnDfshqxlxkpq+7YJ8SdPdYmwK1rn7YH17B48Rj5zx9scge3WGPXSz+ri2mfC /haVJZT5P0rLu9VtymEg6Fj0uUbTMGJ+ -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:26 2025 by rpki-client