$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: 44Zu+H11HhPozC1vLNm9BSOvjU+sm8iEkUDUVe02LiQ= Subject key identifier: F7:1E:8A:70:F4:78:45:31:79:88:24:E8:3A:16:14:52:F5:2A:57:E1 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 4A Signing time: Fri 25 Apr 2025 06:21:48 +0000 Manifest this update: Fri 25 Apr 2025 06:21:47 +0000 Manifest next update: Fri 02 May 2025 06:21:47 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: EWgdOxLN5cR5u7gxS9587Hf+6GDuWQnZb8XZrlRlxIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Apr 25 06:21:47 2025 GMT Not After : May 2 06:21:47 2025 GMT Subject: CN=680b29fb-0ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:19:83:03:36:65:72:92:9f:8a:73:68:d0:54: 24:e5:30:e1:ff:c2:2b:3e:92:42:00:da:83:bd:bf: ea:92:83:38:0d:a1:d7:b5:fc:14:1f:11:cb:8a:21: 41:0a:a8:17:03:e6:6b:b5:4e:ec:33:07:cf:52:98: b8:96:4d:f2:e0:dd:a7:87:ab:95:82:04:9c:a7:66: ea:6f:18:96:7d:11:64:71:c4:db:76:c8:a7:5f:fd: 89:2a:25:de:68:8a:01:33:a6:8e:01:40:be:09:0d: c8:36:72:4c:ff:f9:48:4d:34:1e:40:25:f5:e6:10: 91:31:7a:42:c4:3e:1e:1c:a9:96:0f:17:70:88:4d: 3e:cd:0b:f4:fd:da:10:65:97:01:5e:f3:60:73:56: 98:9c:b3:8b:aa:95:7e:98:34:42:7c:30:6b:a6:6a: de:1e:a9:ce:37:25:6c:b8:8a:8f:0e:5a:0d:de:40: 92:10:e8:82:d1:ff:64:61:19:eb:ec:77:73:45:81: 3d:c8:fc:ef:71:29:83:9f:a0:3f:dc:e5:5e:9d:b3: 4e:d7:59:bc:ec:bc:1b:b7:e3:86:8a:a6:14:84:ae: aa:88:7d:86:37:2f:6c:fb:11:01:81:55:56:6f:45: 9d:88:52:fa:f8:dd:82:ff:7e:4d:92:6a:b2:50:92: ae:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1E:8A:70:F4:78:45:31:79:88:24:E8:3A:16:14:52:F5:2A:57:E1 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:7b:f2:24:e3:b3:5c:3e:f1:a0:0b:51:75:fa:0a:6a:f8:6a: 70:6a:50:f7:2a:4c:bd:08:a3:24:c9:dc:a1:4d:2b:20:7f:94: 1d:2a:2c:00:b6:e1:2b:32:4e:e7:ee:ea:ad:f7:4b:b2:f3:6c: 4d:ab:a3:04:76:54:c4:ed:57:a3:7a:61:75:e2:6d:d1:43:af: 3a:25:1f:3e:c7:91:b8:c0:29:60:21:ed:49:cb:88:bf:12:40: 99:ee:c0:fa:5d:3d:61:6d:20:da:5b:a6:09:21:cc:28:0b:85: 8a:5a:3e:19:59:fc:05:17:c0:91:3d:b4:e7:69:ed:59:61:87: d6:86:e0:93:74:63:65:be:67:f9:4c:dc:ad:28:02:f5:b4:04: 88:93:52:54:c1:c6:d6:ad:a0:89:f4:c8:93:01:26:c5:11:bd: 0c:2f:a2:0b:b2:b1:58:9d:50:f4:69:03:16:a1:75:ca:72:17: 65:be:72:25:0c:4d:80:28:b0:44:1c:74:3c:d2:6b:f0:b7:f1: 6e:f8:7d:b9:eb:dc:4e:72:78:7a:27:cd:21:a0:b2:6f:ca:3d: c5:fa:f1:9c:4e:64:0b:92:3e:46:05:af:52:da:be:26:91:39: 51:f3:39:0c:84:b3:7b:21:a5:20:b0:d4:47:08:d5:1a:6f:05: 2d:8f:74:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA0MjUwNjIxNDdaFw0yNTA1MDIwNjIxNDdaMBgxFjAUBgNV BAMTDTY4MGIyOWZiLTBlYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgGYMDNmVykp+Kc2jQVCTlMOH/wis+kkIA2oO9v+qSgzgNode1/BQfEcuKIUEK qBcD5mu1TuwzB89SmLiWTfLg3aeHq5WCBJynZupvGJZ9EWRxxNt2yKdf/YkqJd5o igEzpo4BQL4JDcg2ckz/+UhNNB5AJfXmEJExekLEPh4cqZYPF3CITT7NC/T92hBl lwFe82BzVpics4uqlX6YNEJ8MGumat4eqc43JWy4io8OWg3eQJIQ6ILR/2RhGevs d3NFgT3I/O9xKYOfoD/c5V6ds07XWbzsvBu344aKphSErqqIfYY3L2z7EQGBVVZv RZ2IUvr43YL/fk2SarJQkq73AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9x6KcPR4 RTF5iCToOhYUUvUqV+EwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGN78iTjs1w+8aALUXX6Cmr4anBqUPcqTL0IoyTJ3KFNKyB/lB0qLAC2 4SsyTufu6q33S7LzbE2rowR2VMTtV6N6YXXibdFDrzolHz7HkbjAKWAh7UnLiL8S QJnuwPpdPWFtINpbpgkhzCgLhYpaPhlZ/AUXwJE9tOdp7Vlhh9aG4JN0Y2W+Z/lM 3K0oAvW0BIiTUlTBxtatoIn0yJMBJsURvQwvoguysVidUPRpAxahdcpyF2W+ciUM TYAosEQcdDzSa/C38W74fbnr3E5yeHonzSGgsm/KPcX68ZxOZAuSPkYFr1LaviaR OVHzOQyEs3shpSCw1EcI1RpvBS2PdCc= -----END CERTIFICATE-----Generated at Sat Apr 26 03:55:38 2025 by rpki-client