$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft File: f30yDyoH5DPdvf4oV_XTGTVFF7k.mft (raw, json) Hash identifier: WNlhbxKnrRX1x3YaEXPXidrvSiHd9yYDeYAGvp5h8Oo= Subject key identifier: 32:BA:58:7D:46:A0:9E:53:9C:CC:6B:3B:C3:6E:77:58:68:CD:BF:75 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0BC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft Manifest number: 0BBA Signing time: Thu 24 Apr 2025 18:47:35 +0000 Manifest this update: Thu 24 Apr 2025 18:47:35 +0000 Manifest next update: Thu 01 May 2025 18:47:35 +0000 Files and hashes: 1: f30yDyoH5DPdvf4oV_XTGTVFF7k.crl (hash: sZFGdF4mziyQ1ztmaQ0RZW1drGcoKbn6mh176RPUUwQ=) 2: 800676321BD311EAA341A62DC4F9AE02.roa (hash: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B, serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Apr 24 18:47:35 2025 GMT Not After : May 1 18:47:35 2025 GMT Subject: CN=680a8747-0f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:ba:e7:33:ab:b9:aa:e8:f3:1e:ea:f1:6d: 99:48:45:f8:00:de:f7:23:3c:98:5d:b2:47:37:28: 90:c5:65:27:42:52:44:6a:c3:26:f9:9b:72:4b:8b: 78:cc:ab:21:65:f2:0f:54:e1:a7:5a:19:8f:39:8d: 9c:41:b1:7d:93:5c:98:d8:ff:d6:00:be:27:7a:fa: 01:e1:fd:5f:b9:2a:e5:27:6c:2b:43:c8:d0:5a:eb: 3d:cc:1c:ad:29:87:ba:64:17:33:be:8f:63:fb:3b: b4:44:fa:c9:5d:a7:1f:ae:f8:9f:c9:ef:8b:dc:46: 7b:2c:89:fa:29:44:ba:23:82:4d:2d:30:46:9f:52: 71:46:1b:8e:6f:03:df:0f:2e:75:e2:9a:f9:ec:32: 23:74:9f:7b:2d:e0:60:47:af:f3:0e:54:a8:af:48: 0a:eb:53:23:52:66:52:4b:67:b4:55:cf:d4:56:5b: 66:fb:8c:1b:01:39:74:3a:db:4d:2f:40:db:91:62: c6:9c:2d:87:e8:51:bc:3e:d8:be:bc:29:2f:4d:17: 5d:a8:d4:03:18:1c:bf:d0:6c:25:ba:7e:ca:9a:4e: 8d:a2:e4:1c:42:aa:6f:66:cf:4f:46:65:a8:23:4f: b0:f7:59:4a:cb:01:83:08:8e:83:d0:b0:35:4d:f9: a1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:BA:58:7D:46:A0:9E:53:9C:CC:6B:3B:C3:6E:77:58:68:CD:BF:75 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:07:41:5e:9f:5c:92:e6:a6:43:ea:25:ae:c0:4e:ef:01:2c: 50:40:08:5b:45:3e:06:20:87:4a:06:5b:fd:cf:92:b7:57:3a: b2:5f:dc:4d:81:2e:4d:71:ae:a7:65:18:73:c7:86:9d:da:f5: 79:f4:bb:0e:50:88:c7:10:ca:fd:f0:e4:09:e6:21:dc:e0:47: 1e:63:75:5a:96:c7:4f:99:54:1f:4f:ca:93:cf:78:ee:b2:1f: 61:2c:cb:70:f4:21:f8:ed:74:86:a1:6d:f1:10:65:0a:1d:c5: 9c:b8:3a:61:c9:b4:df:3b:19:ca:c1:e5:b4:37:b0:79:b2:a0: c1:20:0d:6b:28:db:84:32:a8:49:05:ac:57:7f:60:dd:b7:cd: e7:a3:58:78:57:c5:87:67:91:c8:9b:fa:75:8b:9d:eb:dc:70: 60:b5:53:32:79:43:fc:9e:a0:cf:46:ef:fe:fb:f6:7a:aa:b9: dd:57:3e:10:88:01:93:6d:7c:94:e9:22:dd:d1:d7:c1:58:60: 2d:a0:3f:24:90:dd:99:66:3e:ee:62:5e:1a:28:34:e8:d7:34: d6:b3:1f:49:79:43:63:dd:45:55:73:71:fb:a0:51:4b:55:f0: bc:c1:9f:c3:7d:df:07:bd:be:22:1f:16:8f:f4:11:e7:3a:1f: b6:7d:44:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjUwNDI0MTg0NzM1WhcNMjUwNTAxMTg0NzM1WjAYMRYwFAYD VQQDEw02ODBhODc0Ny0wZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOu65zOruaro8x7q8W2ZSEX4AN73IzyYXbJHNyiQxWUnQlJEasMm+ZtyS4t4 zKshZfIPVOGnWhmPOY2cQbF9k1yY2P/WAL4nevoB4f1fuSrlJ2wrQ8jQWus9zByt KYe6ZBczvo9j+zu0RPrJXacfrvifye+L3EZ7LIn6KUS6I4JNLTBGn1JxRhuObwPf Dy514pr57DIjdJ97LeBgR6/zDlSor0gK61MjUmZSS2e0Vc/UVltm+4wbATl0OttN L0DbkWLGnC2H6FG8Pti+vCkvTRddqNQDGBy/0Gwlun7Kmk6NouQcQqpvZs9PRmWo I0+w91lKywGDCI6D0LA1TfmhiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDK6WH1G oJ5TnMxrO8Nud1hozb91MB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODc3Qi8yNTkxMDExRTFCRDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVE UGR2ZjRvVl9YVEdUVkZGN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeB0Fen1yS5qZD6iWuwE7vASxQQAhbRT4GIIdKBlv9z5K3VzqyX9xN gS5Nca6nZRhzx4ad2vV59LsOUIjHEMr98OQJ5iHc4EceY3ValsdPmVQfT8qTz3ju sh9hLMtw9CH47XSGoW3xEGUKHcWcuDphybTfOxnKweW0N7B5sqDBIA1rKNuEMqhJ BaxXf2Ddt83no1h4V8WHZ5HIm/p1i53r3HBgtVMyeUP8nqDPRu/++/Z6qrndVz4Q iAGTbXyU6SLd0dfBWGAtoD8kkN2ZZj7uYl4aKDTo1zTWsx9JeUNj3UVVc3H7oFFL VfC8wZ/Dfd8Hvb4iHxaP9BHnOh+2fUT3 -----END CERTIFICATE-----Generated at Sat Apr 26 12:35:53 2025 by rpki-client