$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: lDSvkLrFZ2yubqo+PCDvZ/PsKGczI3ATvdYAjQsykPM= Subject key identifier: D2:74:64:B1:14:1F:F4:BD:8A:8D:58:0A:7F:63:D0:C3:D7:42:D9:49 Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: 0E Signing time: Thu 01 May 2025 07:08:50 +0000 Manifest this update: Thu 01 May 2025 07:08:50 +0000 Manifest next update: Thu 08 May 2025 07:08:50 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: Au0K2Ab2kXOgS5St6ChyXyNzn4hGJMY8UqNrknFuAnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: May 1 07:08:50 2025 GMT Not After : May 8 07:08:50 2025 GMT Subject: CN=68131e02-d6f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:21:5d:21:b9:17:d4:ed:ce:bb:32:74:b2:d8: 0a:ca:5a:f9:65:c3:9b:36:1d:72:87:49:b5:1f:23: 57:b3:16:f5:c3:c1:93:67:24:a3:52:99:d5:7a:5e: 35:24:e9:d5:c3:bd:dd:e2:5c:73:b8:9d:cf:ac:fc: c3:9b:22:3c:9d:4e:fd:fe:46:6b:38:a6:ac:9a:4a: 60:9b:70:11:43:e2:53:56:9d:7d:32:98:88:51:bd: a0:bc:ed:ea:b0:f0:3d:3d:cb:0e:c1:91:d3:4c:b4: 02:4f:bf:b4:52:ca:52:b0:46:ca:8e:65:be:d4:5f: a0:19:a8:ea:b2:ce:ac:f8:11:a5:23:de:2d:b1:fb: 22:2d:2a:91:6e:fd:1b:06:e1:db:db:99:5f:64:eb: bb:a4:f1:54:ab:74:23:90:a6:bc:fc:2f:f7:26:6d: c1:e7:53:38:7d:34:e2:7a:8a:12:ff:af:9f:59:b1: f0:44:13:61:4f:c7:32:13:c9:2b:7b:c5:08:2c:c5: c7:85:6e:9f:a7:f5:9f:af:1e:67:73:09:75:fe:f4: 9a:33:6d:3a:50:9b:f4:ed:1f:05:2a:ad:88:11:d5: 6c:d7:a2:12:66:17:32:84:92:9d:43:fe:e3:2f:03: 61:eb:50:f1:28:90:da:05:9c:ac:af:ca:a2:78:3d: 6c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:74:64:B1:14:1F:F4:BD:8A:8D:58:0A:7F:63:D0:C3:D7:42:D9:49 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ed:a1:b9:c7:17:76:51:36:b5:2c:48:c8:20:19:95:49:a2: ff:48:85:46:29:6e:6e:67:f9:bf:82:c9:46:ac:39:a9:f6:95: 6e:38:f6:b6:05:02:50:94:b9:94:2e:34:f5:46:c0:f2:74:ba: ff:f1:e4:c1:00:ab:d8:ef:08:f9:d3:ce:4f:b9:6f:1a:d2:47: 46:73:73:bd:12:3b:ba:34:d8:16:c4:f5:a1:27:f4:72:7a:dc: ec:25:36:33:86:67:63:37:60:28:ee:34:85:11:7e:2c:52:67: 46:6a:b4:d0:f2:4c:88:06:cb:7d:ee:41:25:aa:03:a0:10:8a: 06:3e:af:3d:78:c4:bb:1e:2e:fa:7a:7a:9c:3c:bc:87:da:2f: b6:7f:bb:7e:28:c9:0c:d6:4c:2b:ae:28:e6:cd:16:76:f9:70: 72:e9:cc:6a:ff:14:69:4d:34:5e:54:aa:b5:fc:9e:28:9f:cd: 7a:f2:db:5b:d0:36:0e:bb:9b:fe:d3:84:8b:a4:4b:d8:1b:f9: aa:35:a8:e5:b0:fa:fd:11:60:de:25:f9:e2:a8:c8:cf:f9:13: bb:45:03:fd:81:76:7c:e8:aa:04:c1:9e:89:c4:56:40:15:a5: 0d:86:5c:1a:40:4e:67:ed:5d:76:fd:5e:80:70:00:bc:4e:e1: 15:46:26:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTZGRjExMC8GA1UEBRMoREZDQThGREFBNUZFRjk0OEUwRUNGNkY5QzcwMzYzOUI1 NjUzOUQ5OTAeFw0yNTA1MDEwNzA4NTBaFw0yNTA1MDgwNzA4NTBaMBgxFjAUBgNV BAMTDTY4MTMxZTAyLWQ2ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwIV0huRfU7c67MnSy2ArKWvllw5s2HXKHSbUfI1ezFvXDwZNnJKNSmdV6XjUk 6dXDvd3iXHO4nc+s/MObIjydTv3+Rms4pqyaSmCbcBFD4lNWnX0ymIhRvaC87eqw 8D09yw7BkdNMtAJPv7RSylKwRsqOZb7UX6AZqOqyzqz4EaUj3i2x+yItKpFu/RsG 4dvbmV9k67uk8VSrdCOQprz8L/cmbcHnUzh9NOJ6ihL/r59ZsfBEE2FPxzITySt7 xQgsxceFbp+n9Z+vHmdzCXX+9JozbTpQm/TtHwUqrYgR1WzXohJmFzKEkp1D/uMv A2HrUPEokNoFnKyvyqJ4PWyFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0nRksRQf 9L2KjVgKf2PQw9dC2UkwHwYDVR0jBBgwFoAU38qP2qX++Ujg7Pb5xwNjm1ZTnZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxNkZGLzJEQTU1OTEyMTQx NjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5a ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhxUDJxWC0tVWpnN1BiNXh3TmptMVpUblprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx NkZGLzJEQTU1OTEyMTQxNjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVq ZzdQYjV4d05qbTFaVG5aay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKftobnHF3ZRNrUsSMggGZVJov9IhUYpbm5n+b+CyUasOan2lW449rYF AlCUuZQuNPVGwPJ0uv/x5MEAq9jvCPnTzk+5bxrSR0Zzc70SO7o02BbE9aEn9HJ6 3OwlNjOGZ2M3YCjuNIURfixSZ0ZqtNDyTIgGy33uQSWqA6AQigY+rz14xLseLvp6 epw8vIfaL7Z/u34oyQzWTCuuKObNFnb5cHLpzGr/FGlNNF5UqrX8niifzXry21vQ Ng67m/7ThIukS9gb+ao1qOWw+v0RYN4l+eKoyM/5E7tFA/2BdnzoqgTBnonEVkAV pQ2GXBpATmftXXb9XoBwALxO4RVGJqM= -----END CERTIFICATE-----Generated at Fri May 2 21:37:55 2025 by rpki-client