$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: lpry2NP+U818NmCoiwZ/ImZidJEoHlmZziflZPZ9RP4= Subject key identifier: 40:67:35:85:5C:52:0C:22:E5:38:42:DC:5B:A0:F8:E2:AD:16:EA:B4 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 0649 Signing time: Thu 24 Apr 2025 22:19:28 +0000 Manifest this update: Thu 24 Apr 2025 22:19:28 +0000 Manifest next update: Thu 01 May 2025 22:19:28 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: 9eXFXFInHyST3hXnzJuE/NZ1RuuKFpQzW77h1BclUPE=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Apr 24 22:19:28 2025 GMT Not After : May 1 22:19:28 2025 GMT Subject: CN=680ab8f0-f97f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:c4:20:77:14:8d:15:1a:51:3c:d1:64:f1: f9:a3:f3:84:ed:5b:d6:c7:a3:27:f0:92:3d:a6:95: e7:4c:32:88:dc:4e:4d:2a:1b:ff:66:14:a4:69:19: 86:17:de:6c:d5:f3:d9:be:32:90:67:d9:f3:a4:77: b4:99:02:72:c1:fc:40:a9:dc:05:5c:4d:2a:9f:a1: 60:33:9f:da:cc:4b:68:d4:b7:d4:83:a3:97:67:f3: 73:06:75:b6:cc:5a:9d:c1:67:a0:c9:ed:9e:fe:c4: 19:3f:79:19:66:c2:a8:6f:6e:ce:62:bc:23:ac:7a: ce:2b:29:e6:03:1e:6a:53:85:1d:7c:db:30:f0:09: aa:8e:76:72:89:9e:3d:2e:d8:7d:73:cd:9a:0e:06: f3:86:94:8b:b4:33:4e:fb:ac:28:a1:8a:de:6b:b6: df:36:6c:1e:79:72:d4:07:e6:78:fc:99:9f:c8:e9: 81:6d:3f:f2:cd:7d:df:e1:9e:fa:a5:ca:72:8a:42: ca:a6:08:d6:f0:71:c5:f8:98:b3:15:1f:e8:59:81: 71:41:57:8a:c2:3a:93:ea:ae:c8:6d:ee:13:77:74: 87:9c:43:b1:03:7a:89:fd:1e:bf:d6:07:12:9e:bb: 4b:ee:75:6d:cc:af:32:55:56:5b:bf:3f:3d:58:fa: 3f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:67:35:85:5C:52:0C:22:E5:38:42:DC:5B:A0:F8:E2:AD:16:EA:B4 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:68:c4:38:06:a9:52:02:74:5e:c6:38:7b:06:56:95:e8:6e: d2:50:f6:92:bb:ff:08:c0:0a:f8:e4:a7:fb:6e:b7:56:4d:7a: 7e:a4:84:ad:cd:58:1a:b5:5c:b9:b4:0e:1d:42:61:4d:34:e3: f0:b7:13:21:1b:0a:19:6d:0e:99:15:c3:57:e6:77:f7:53:03: b7:52:24:d3:ff:c7:c0:7a:d4:e0:0e:b3:a6:70:f5:80:fa:69: 2e:ce:1e:b9:33:06:8b:4f:18:68:88:1e:f0:c3:8b:33:d2:66: 1d:5c:1c:8b:31:eb:d6:cb:83:76:c7:6a:b6:83:34:25:b6:79: 3c:44:bd:c0:42:aa:af:a7:ac:8c:98:fe:52:36:e1:16:3b:0a: c7:dd:14:10:fc:64:fb:a2:03:6c:3e:fa:65:5f:24:6a:29:fb: ec:ba:fd:f9:a9:63:76:7d:36:17:0a:63:33:87:4b:3b:a2:f3: ab:d4:71:30:00:6e:df:e5:ee:12:a1:94:59:50:02:b9:96:85: e4:9d:83:92:d9:af:22:0a:cc:17:8d:9b:e5:11:53:28:03:4d: 0d:d2:73:38:42:35:cc:84:d5:80:99:7d:47:ac:2f:e4:cd:00: d1:bf:45:13:ef:1a:45:af:78:d5:7a:ee:60:2d:42:45:76:53: d9:93:34:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUwNDI0MjIxOTI4WhcNMjUwNTAxMjIxOTI4WjAYMRYwFAYD VQQDEw02ODBhYjhmMC1mOTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs/EIHcUjRUaUTzRZPH5o/OE7VvWx6Mn8JI9ppXnTDKI3E5NKhv/ZhSkaRmG F95s1fPZvjKQZ9nzpHe0mQJywfxAqdwFXE0qn6FgM5/azEto1LfUg6OXZ/NzBnW2 zFqdwWegye2e/sQZP3kZZsKob27OYrwjrHrOKynmAx5qU4UdfNsw8AmqjnZyiZ49 Lth9c82aDgbzhpSLtDNO+6wooYrea7bfNmweeXLUB+Z4/JmfyOmBbT/yzX3f4Z76 pcpyikLKpgjW8HHF+JizFR/oWYFxQVeKwjqT6q7Ibe4Td3SHnEOxA3qJ/R6/1gcS nrtL7nVtzK8yVVZbvz89WPo/sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBnNYVc Ugwi5ThC3Fug+OKtFuq0MB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaMQ4BqlSAnRexjh7BlaV6G7SUPaSu/8IwAr45Kf7brdWTXp+pISt zVgatVy5tA4dQmFNNOPwtxMhGwoZbQ6ZFcNX5nf3UwO3UiTT/8fAetTgDrOmcPWA +mkuzh65MwaLTxhoiB7ww4sz0mYdXByLMevWy4N2x2q2gzQltnk8RL3AQqqvp6yM mP5SNuEWOwrH3RQQ/GT7ogNsPvplXyRqKfvsuv35qWN2fTYXCmMzh0s7ovOr1HEw AG7f5e4SoZRZUAK5loXknYOS2a8iCswXjZvlEVMoA00N0nM4QjXMhNWAmX1HrC/k zQDRv0UT7xpFr3jVeu5gLUJFdlPZkzQV -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:49 2025 by rpki-client