$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: f1xGoZAu6zO6+3ttWwJv7UzZjbgffSzLlhZwF4BIYC0= Subject key identifier: 0C:F2:E8:2E:E0:8E:6C:6E:03:03:AC:4D:8B:91:32:96:45:AD:29:27 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0ED3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0EC7 Signing time: Thu 24 Apr 2025 17:39:26 +0000 Manifest this update: Thu 24 Apr 2025 17:39:25 +0000 Manifest next update: Thu 01 May 2025 17:39:25 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: nykYvMUKaJ9e6OWUAUEYPYP/BvDEwTmyWKPJljNBMy0=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: 8mq0TUcgdgyOArIdFl1Mn7GOTMSpOYLbH39QuqlMzQM=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: ZC6B1slbJ+NBUR+XleTIQLrCjIWpOaVIltQbveTaTb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3795 (0xed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Apr 24 17:39:25 2025 GMT Not After : May 1 17:39:25 2025 GMT Subject: CN=680a774d-fea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d3:51:ac:5e:7f:eb:bb:1b:86:08:cb:36:dc: 2a:2f:67:db:14:8f:bd:b3:66:1b:e9:a0:35:55:25: 18:d2:08:24:c4:30:8a:19:1c:ea:82:bf:a6:56:d7: fa:51:37:46:07:8d:39:ca:a2:9e:c2:ed:90:63:42: dd:e2:83:cc:6a:25:7f:70:c9:69:81:d9:c7:77:95: 94:71:7d:e0:86:3a:1b:93:7e:4f:19:92:d8:ce:ef: d1:db:18:24:39:fd:6e:c1:54:2c:9c:70:69:f1:fc: 14:d9:7f:08:e6:97:0d:c0:53:a5:85:68:ac:da:c0: 35:06:72:bd:a6:35:cf:61:ad:22:00:3b:95:40:98: c3:5f:91:0e:8f:13:53:54:05:1d:a8:6e:0b:ec:ff: bb:ff:ad:1f:76:e6:f0:77:c5:27:a0:e5:04:6e:15: 6f:e5:0a:7d:ae:64:d1:ee:43:8a:4c:34:d5:ee:02: 27:1f:0c:10:e3:20:cc:d2:01:d7:ab:ee:8c:12:cd: de:ff:43:24:06:67:42:1d:95:a5:c3:49:1f:11:b5: 11:11:66:b0:43:f8:73:46:34:c2:59:82:21:0a:81: db:34:28:21:21:ae:f8:66:d3:d0:e5:30:2c:53:52: 01:ed:d8:d7:f4:50:bf:a1:a8:06:95:e0:2e:12:11: 0b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F2:E8:2E:E0:8E:6C:6E:03:03:AC:4D:8B:91:32:96:45:AD:29:27 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3e:eb:e6:ec:93:75:4d:1d:d7:25:80:e2:0e:1f:df:63:45: 33:06:88:13:3a:50:f0:29:f8:7a:f9:da:f7:be:8b:6a:3f:2d: 80:e2:dc:22:15:5d:fd:2e:7c:69:05:bb:a4:36:eb:4c:05:be: 54:09:db:0d:e9:e4:32:14:63:6a:aa:6f:aa:48:c1:72:b7:b5: 69:2f:da:d8:3a:d5:c6:30:64:4f:23:f4:b8:01:ac:ef:94:04: 1e:34:58:a3:2e:b1:0c:7f:ed:2d:11:26:76:3f:6b:c0:16:f9: d2:ea:5d:5f:a5:d3:9d:ac:69:e2:38:e5:ed:db:90:ed:eb:da: 93:0e:17:ab:73:de:8d:74:eb:c5:9a:39:99:de:aa:7f:2e:c6: 67:4d:bf:89:3c:9f:87:4a:4d:50:4b:ad:18:62:b7:5a:13:28: 14:3a:ab:ba:f0:fd:3c:e5:0e:4f:5a:ac:ab:0e:c7:b4:f2:b0: e4:25:ca:61:a6:6c:12:a5:57:6a:8e:2e:c5:1a:b8:1f:6e:9c: 04:ea:fc:2e:3c:8f:7b:9b:c5:62:4f:5c:0b:04:39:77:a5:65: 60:de:3e:d4:da:15:33:0b:c9:9f:71:73:6b:e2:32:e3:c6:5f: d2:ff:6b:ce:f1:f8:70:00:7f:63:57:32:73:fa:21:49:5c:a8: ed:6a:6c:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUwNDI0MTczOTI1WhcNMjUwNTAxMTczOTI1WjAYMRYwFAYD VQQDEw02ODBhNzc0ZC1mZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29NRrF5/67sbhgjLNtwqL2fbFI+9s2Yb6aA1VSUY0ggkxDCKGRzqgr+mVtf6 UTdGB405yqKewu2QY0Ld4oPMaiV/cMlpgdnHd5WUcX3ghjobk35PGZLYzu/R2xgk Of1uwVQsnHBp8fwU2X8I5pcNwFOlhWis2sA1BnK9pjXPYa0iADuVQJjDX5EOjxNT VAUdqG4L7P+7/60fdubwd8UnoOUEbhVv5Qp9rmTR7kOKTDTV7gInHwwQ4yDM0gHX q+6MEs3e/0MkBmdCHZWlw0kfEbUREWawQ/hzRjTCWYIhCoHbNCghIa74ZtPQ5TAs U1IB7djX9FC/oagGleAuEhELpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzy6C7g jmxuAwOsTYuRMpZFrSknMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATPuvm7JN1TR3XJYDiDh/fY0UzBogTOlDwKfh6+dr3votqPy2A4twi FV39LnxpBbukNutMBb5UCdsN6eQyFGNqqm+qSMFyt7VpL9rYOtXGMGRPI/S4Aazv lAQeNFijLrEMf+0tESZ2P2vAFvnS6l1fpdOdrGniOOXt25Dt69qTDherc96NdOvF mjmZ3qp/LsZnTb+JPJ+HSk1QS60YYrdaEygUOqu68P085Q5PWqyrDse08rDkJcph pmwSpVdqji7FGrgfbpwE6vwuPI97m8ViT1wLBDl3pWVg3j7U2hUzC8mfcXNr4jLj xl/S/2vO8fhwAH9jVzJz+iFJXKjtamxV -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:22 2025 by rpki-client