$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft File: MLwu5bdWT-D98gDnibI6LA2OkiQ.mft (raw, json) Hash identifier: b0wFNPIFOs43vYIMsefMERz5d4DNSYiJuvhFezeeVvk= Subject key identifier: BC:59:9C:84:7E:A8:A5:0A:5F:21:59:EB:32:3B:0B:D8:A6:33:12:B7 Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0C43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft Manifest number: 0C3D Signing time: Thu 24 Apr 2025 18:19:51 +0000 Manifest this update: Thu 24 Apr 2025 18:19:50 +0000 Manifest next update: Thu 01 May 2025 18:19:50 +0000 Files and hashes: 1: MLwu5bdWT-D98gDnibI6LA2OkiQ.crl (hash: RGNEWCPEa8w6QDMRZclpnmhAhDP31HQah23XspuNeHo=) 2: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (hash: olNlCN64bLbPObiQcnjy8ZCy31CgqZyVDz4boAZyKow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: Apr 24 18:19:50 2025 GMT Not After : May 1 18:19:50 2025 GMT Subject: CN=680a80c6-9b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:00:45:26:df:9c:30:54:b8:53:53:93:24: 40:6c:04:df:a1:39:fa:5c:e9:36:ea:08:65:c1:87: b6:e1:60:d6:50:11:7d:5a:42:68:66:ca:30:b9:52: b2:1e:29:c6:a1:b1:e3:2d:e5:38:de:80:65:55:99: 96:38:f8:d3:e2:2a:e2:8c:b8:89:46:7e:34:84:1b: 54:e0:08:47:ad:51:0e:41:78:04:21:a6:df:d6:32: 85:62:70:e8:d6:4b:0a:e9:0b:c9:5e:cd:12:7a:16: 3a:da:0e:dc:c5:5e:bf:59:d0:f2:b6:d3:01:dc:0d: db:b1:4a:14:dc:bc:68:1f:c0:29:02:d6:5a:54:6e: 0f:4e:8d:7a:f8:95:7f:00:78:d5:e3:c3:a9:53:9e: eb:8a:62:ab:90:4e:51:5b:f1:ab:dd:12:1c:5a:b2: 4d:b3:11:00:6c:4b:d7:ee:a4:37:6d:dc:01:51:64: 2b:43:ea:46:c6:56:46:aa:ee:9d:4b:4a:ea:f0:c3: 60:e9:e8:73:16:fc:55:fd:63:49:f1:cd:17:8a:46: 10:4a:84:66:5e:3a:dc:42:7b:24:8b:e2:ba:f2:2c: 6d:41:d0:f0:dd:fd:3e:e9:aa:2b:70:d3:2f:81:a9: 3a:6d:39:0e:03:56:cf:13:7f:25:5a:54:bd:e2:6b: c0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:59:9C:84:7E:A8:A5:0A:5F:21:59:EB:32:3B:0B:D8:A6:33:12:B7 X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:53:64:48:08:6b:76:3c:d2:c0:45:bd:ee:d0:ea:0a:0d:58: b1:51:0a:05:57:54:47:70:0a:3c:ab:a1:67:a9:00:03:fd:22: 37:83:d9:e7:87:30:77:8a:6d:99:1e:2d:c2:01:e8:ba:2e:fc: 13:8a:57:60:57:bd:1c:6d:e6:e2:1b:8d:81:ba:c4:42:97:ec: 9f:51:6f:38:96:20:cb:4a:fe:e3:7b:7e:84:e3:d2:62:c7:6b: 95:f1:45:14:df:7a:22:1b:4c:ef:51:e4:bf:b9:aa:73:96:57: db:ee:a9:6c:ad:96:c8:b2:64:0a:89:d1:9f:4c:83:c5:57:88: 2b:9e:fe:cd:d9:2b:ff:c8:42:f5:2e:33:6e:e0:b8:3f:c5:c9: b1:4c:77:e6:5d:92:cf:0c:2d:8e:b4:2e:16:78:07:5c:00:51: 30:a2:2e:5f:06:89:92:37:ef:81:31:d9:0b:d0:aa:e4:01:b0: ca:d8:6a:c7:53:fd:6d:05:d4:f2:ad:b0:e8:9d:4a:55:89:aa: 45:81:c2:bd:65:21:04:45:46:25:17:ea:9d:54:0e:85:e5:77: c7:42:cf:75:f2:e2:95:36:9b:62:d7:d1:41:18:29:83:0a:de: 64:2b:b3:8c:69:e5:74:49:81:9e:84:c3:c2:6a:82:0e:39:25: dd:dc:dc:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUwNDI0MTgxOTUwWhcNMjUwNTAxMTgxOTUwWjAYMRYwFAYD VQQDEw02ODBhODBjNi05YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrYARSbfnDBUuFNTkyRAbATfoTn6XOk26ghlwYe24WDWUBF9WkJoZsowuVKy HinGobHjLeU43oBlVZmWOPjT4irijLiJRn40hBtU4AhHrVEOQXgEIabf1jKFYnDo 1ksK6QvJXs0SehY62g7cxV6/WdDyttMB3A3bsUoU3LxoH8ApAtZaVG4PTo16+JV/ AHjV48OpU57rimKrkE5RW/Gr3RIcWrJNsxEAbEvX7qQ3bdwBUWQrQ+pGxlZGqu6d S0rq8MNg6ehzFvxV/WNJ8c0XikYQSoRmXjrcQnski+K68ixtQdDw3f0+6aorcNMv gak6bTkOA1bPE38lWlS94mvAbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxZnIR+ qKUKXyFZ6zI7C9imMxK3MB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FDNy9DMTM5REFCQTAyMkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1Qt RDk4Z0RuaWJJNkxBMk9raVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxU2RICGt2PNLARb3u0OoKDVixUQoFV1RHcAo8q6FnqQAD/SI3g9nn hzB3im2ZHi3CAei6LvwTildgV70cbebiG42BusRCl+yfUW84liDLSv7je36E49Ji x2uV8UUU33oiG0zvUeS/uapzllfb7qlsrZbIsmQKidGfTIPFV4grnv7N2Sv/yEL1 LjNu4Lg/xcmxTHfmXZLPDC2OtC4WeAdcAFEwoi5fBomSN++BMdkL0KrkAbDK2GrH U/1tBdTyrbDonUpViapFgcK9ZSEERUYlF+qdVA6F5XfHQs918uKVNpti19FBGCmD Ct5kK7OMaeV0SYGehMPCaoIOOSXd3Nx9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:50 2025 by rpki-client