$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: AsJ2GIRpXVqjdpZ5M77bcFVDcik5eZxTOgSnZbErFHM= Subject key identifier: 45:FE:E2:B9:9D:B9:EB:1E:17:BA:AF:3D:5D:EC:CE:32:23:FB:F6:92 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 347F Signing time: Thu 24 Apr 2025 14:36:20 +0000 Manifest this update: Thu 24 Apr 2025 14:36:20 +0000 Manifest next update: Thu 01 May 2025 14:36:20 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: W0clbzw5cA219/gvF1SEZSKGeSJnZM/IBegs4dV0nYM=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: of9zh63P1E28Fw1JXMf3Mift2nJvEjjB8iXijpwTEOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Apr 24 14:36:20 2025 GMT Not After : May 1 14:36:20 2025 GMT Subject: CN=680a4c64-4f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fd:ad:36:7c:23:b6:fd:ff:95:53:cc:97:9a: fe:64:b4:84:9f:ed:ad:5c:5c:05:f7:13:c5:77:7f: da:e8:77:80:f6:5c:0b:a0:ea:a4:b8:ed:0e:db:da: f9:45:11:47:c2:ca:33:33:4e:31:4c:95:92:7d:3b: a9:88:f9:6c:13:c2:8c:d5:14:45:8d:1f:51:73:3e: ea:d1:fd:e3:c5:a4:89:8c:45:5f:a7:17:94:85:30: f5:99:51:c1:4f:03:7a:c8:b0:7b:23:b4:a3:60:19: f9:59:6a:19:81:02:23:ad:89:02:f9:b4:7f:a9:be: b9:f4:e9:3e:26:d1:00:7a:87:dc:91:dd:d9:2c:9f: 7a:e6:0f:fd:71:87:75:3d:72:8b:8c:09:fa:62:da: b9:0d:af:5c:34:2c:81:6f:4f:4f:09:f5:0a:66:a1: 4d:77:74:b2:55:2a:9b:54:e2:6a:cf:f9:da:63:6e: a6:e1:5c:bd:a6:dd:29:1a:b4:36:65:2b:22:8e:2e: 3c:85:c6:b6:6f:d6:60:14:47:a8:dc:50:37:92:a6: 9f:96:5e:e6:ee:de:01:92:5d:93:7e:2f:e9:f5:e9: 5b:d0:af:44:8f:8d:ce:f6:b0:17:77:46:02:1d:c6: 5b:55:fc:e1:2a:9d:4b:86:7f:6c:3d:aa:50:dc:4c: ae:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FE:E2:B9:9D:B9:EB:1E:17:BA:AF:3D:5D:EC:CE:32:23:FB:F6:92 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:3d:20:18:5b:04:e9:84:a5:e2:b0:f5:1a:28:64:a2:10:b0: 09:d1:fa:30:b0:1f:6f:a1:c6:0b:87:bd:6b:38:e9:b7:f9:62: 58:f3:fe:94:7f:ec:d3:6e:8f:0c:b5:64:37:c8:52:99:80:80: 67:06:c8:a7:0e:a8:21:27:fd:c6:e4:62:be:ef:ff:00:42:68: 63:3e:e6:eb:72:e9:9f:4f:7c:20:bf:76:0f:4e:f3:a9:e4:ae: 6a:24:ea:f6:ea:d1:c4:26:46:a6:75:97:8a:07:07:2d:e1:d0: 56:c3:6c:ca:56:cf:24:3b:10:ec:ea:e9:0b:7d:84:1e:4b:b1: 01:0b:7f:c7:63:66:68:87:fa:e7:5f:1d:7c:e5:60:17:1b:41: 40:ec:df:e2:c9:7e:6b:cd:8a:ab:cc:9b:24:ad:ee:31:7a:d2: ab:8d:9c:40:70:44:19:e9:15:bc:09:83:3a:49:01:f6:0a:e3: f9:c5:d8:d2:ce:61:17:ca:32:0b:93:63:88:c8:c8:fe:69:bd: 5d:3e:3f:2d:9b:be:da:35:ff:5c:1a:fe:4e:98:94:91:d2:d0: e3:c2:ce:c5:7b:af:74:26:c9:cf:46:ce:dc:d0:f4:77:0a:24: bd:60:88:18:4e:b8:5f:79:44:c4:6a:d3:d0:6c:50:c0:f7:86: 3c:d7:23:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUwNDI0MTQzNjIwWhcNMjUwNTAxMTQzNjIwWjAYMRYwFAYD VQQDEw02ODBhNGM2NC00ZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/2tNnwjtv3/lVPMl5r+ZLSEn+2tXFwF9xPFd3/a6HeA9lwLoOqkuO0O29r5 RRFHwsozM04xTJWSfTupiPlsE8KM1RRFjR9Rcz7q0f3jxaSJjEVfpxeUhTD1mVHB TwN6yLB7I7SjYBn5WWoZgQIjrYkC+bR/qb659Ok+JtEAeofckd3ZLJ965g/9cYd1 PXKLjAn6Ytq5Da9cNCyBb09PCfUKZqFNd3SyVSqbVOJqz/naY26m4Vy9pt0pGrQ2 ZSsiji48hca2b9ZgFEeo3FA3kqafll7m7t4Bkl2Tfi/p9elb0K9Ej43O9rAXd0YC HcZbVfzhKp1Lhn9sPapQ3Eyu9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEX+4rmd ueseF7qvPV3szjIj+/aSMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/PSAYWwTphKXisPUaKGSiELAJ0fowsB9vocYLh71rOOm3+WJY8/6U f+zTbo8MtWQ3yFKZgIBnBsinDqghJ/3G5GK+7/8AQmhjPubrcumfT3wgv3YPTvOp 5K5qJOr26tHEJkamdZeKBwct4dBWw2zKVs8kOxDs6ukLfYQeS7EBC3/HY2Zoh/rn Xx185WAXG0FA7N/iyX5rzYqrzJskre4xetKrjZxAcEQZ6RW8CYM6SQH2CuP5xdjS zmEXyjILk2OIyMj+ab1dPj8tm77aNf9cGv5OmJSR0tDjws7Fe690JsnPRs7c0PR3 CiS9YIgYTrhfeUTEatPQbFDA94Y81yM5 -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:12 2025 by rpki-client