$ rpki-client -vvf rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft File: Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft (raw, json) Hash identifier: /jeOUopwDSSLslS0Q/Dbj6nV0HslKpwY/89VwaGEG6k= Subject key identifier: 46:CD:7B:D9:84:03:50:9D:17:EC:C8:C5:C8:70:E0:9F:4D:D6:14:28 Authority key identifier: 49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF Certificate issuer: /CN=A91947C4/serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft Manifest number: 0128 Signing time: Fri 25 Apr 2025 03:45:45 +0000 Manifest this update: Fri 25 Apr 2025 03:45:45 +0000 Manifest next update: Fri 02 May 2025 03:45:45 +0000 Files and hashes: 1: Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl (hash: PUanmBpPm98j9RXjMSTIhP9QJakLi2m4juG0PnnTQs4=) 2: 08181C0C646D11EE82448758C4F9AE02.roa (hash: aw8y769dbHtoKJEd8vQWlpw8CKdXEBliY+eMjR7xPWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91947C4, serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Validity Not Before: Apr 25 03:45:45 2025 GMT Not After : May 2 03:45:45 2025 GMT Subject: CN=680b0569-38db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:90:46:02:ec:7a:19:43:34:ec:8a:40:8a:a7: 48:ca:55:54:30:ba:f7:c3:8c:24:7c:c5:43:21:ce: 11:5f:5d:2b:af:83:9d:46:5a:8e:c0:d4:c5:26:39: 92:78:49:af:4c:2f:68:17:3c:6f:94:33:50:1b:d1: d9:10:cb:d6:a8:f8:49:72:a5:5b:62:c9:13:b6:cf: f6:96:04:f2:11:02:bf:31:3c:c7:89:00:cd:e3:df: 4a:e7:5e:7a:45:54:a1:da:81:de:1c:80:37:12:09: a4:43:45:c6:1e:d1:e8:a4:af:0b:f0:56:e0:8c:69: da:8d:9c:2d:e2:e1:99:c6:df:d0:59:20:24:f2:ce: 0a:a9:a6:5c:f2:d6:a9:97:50:38:9a:94:1f:d6:e5: 2e:1c:d1:ae:1b:0d:7d:55:e8:4d:0b:f1:c4:f3:e2: 04:53:43:c3:b3:ac:61:f6:75:dd:61:a0:8b:a4:a6: 50:40:19:e4:bc:94:2c:ae:06:aa:0c:4c:38:d0:4d: 19:a0:52:a4:39:a4:bd:43:37:96:85:d7:b7:c8:84: ef:ec:92:e8:b0:49:86:02:fd:1a:97:c9:1a:2d:6f: 50:8e:b3:36:58:89:18:ab:18:dd:92:03:20:b7:9d: c9:e1:53:ba:68:a4:ab:5d:bc:68:50:83:92:dd:de: cc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CD:7B:D9:84:03:50:9D:17:EC:C8:C5:C8:70:E0:9F:4D:D6:14:28 X509v3 Authority Key Identifier: keyid:49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:48:b4:40:6e:92:d2:c4:c8:0c:e0:ca:3a:3f:39:f8:cc:3e: 80:d2:b5:74:e7:39:0b:f8:cf:66:b8:53:77:c9:0f:fe:1c:e1: 99:67:02:b1:e4:ca:aa:26:36:d8:c5:f4:e2:9b:e0:9a:5a:b7: dc:8f:01:54:6f:a4:44:89:6c:82:92:1b:45:ea:b5:bd:fb:24: 0c:d0:96:65:46:a9:b9:d6:ce:af:99:5d:6c:27:e5:5a:4d:ca: 6d:7d:65:39:20:82:50:5a:3e:ea:36:81:e6:0d:3d:18:af:26: 49:c3:3a:bd:11:82:72:ec:5f:36:6e:69:e2:22:4a:e7:fe:04: 91:13:a9:39:97:6d:da:79:be:05:1a:2a:62:9b:e6:f7:19:a3: 9d:8d:65:80:63:9d:95:86:8b:4b:7a:a4:09:9c:94:db:64:64: 87:a0:b7:75:59:97:7d:aa:4c:59:b5:8f:84:ea:e1:02:18:73: 82:03:59:19:5a:5d:9f:ef:af:00:d9:63:de:b5:70:c5:3e:d4: 28:d3:e3:b8:16:2a:84:fe:d7:c3:e0:73:ec:df:95:95:66:da: da:ad:de:27:ef:9c:5c:36:6e:c7:e1:06:29:a7:cc:b9:b9:f7: 29:18:bb:0e:41:1e:a2:c2:1a:68:85:2d:69:97:41:ba:f1:63: 44:f1:c3:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3QzQxMTAvBgNVBAUTKDQ5REI2MUZGMDNDNTUxNjc5NUNGNzg1MDlFQTM3QTA2 MEY0NTQ3QkYwHhcNMjUwNDI1MDM0NTQ1WhcNMjUwNTAyMDM0NTQ1WjAYMRYwFAYD VQQDEw02ODBiMDU2OS0zOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7pBGAux6GUM07IpAiqdIylVUMLr3w4wkfMVDIc4RX10rr4OdRlqOwNTFJjmS eEmvTC9oFzxvlDNQG9HZEMvWqPhJcqVbYskTts/2lgTyEQK/MTzHiQDN499K5156 RVSh2oHeHIA3EgmkQ0XGHtHopK8L8FbgjGnajZwt4uGZxt/QWSAk8s4KqaZc8tap l1A4mpQf1uUuHNGuGw19VehNC/HE8+IEU0PDs6xh9nXdYaCLpKZQQBnkvJQsrgaq DEw40E0ZoFKkOaS9QzeWhde3yITv7JLosEmGAv0al8kaLW9QjrM2WIkYqxjdkgMg t53J4VO6aKSrXbxoUIOS3d7MiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbNe9mE A1CdF+zIxchw4J9N1hQoMB8GA1UdIwQYMBaAFEnbYf8DxVFnlc94UJ6jegYPRUe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDdDNC81OTVCRTgyQzYz NUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVXZVZ6M2hRbnFONkJnOUZS NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkdGhfd1BGVVdlVnozaFFucU42Qmc5RlI3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDdDNC81OTVCRTgyQzYzNUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVX ZVZ6M2hRbnFONkJnOUZSNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRSLRAbpLSxMgM4Mo6Pzn4zD6A0rV05zkL+M9muFN3yQ/+HOGZZwKx 5MqqJjbYxfTim+CaWrfcjwFUb6REiWyCkhtF6rW9+yQM0JZlRqm51s6vmV1sJ+Va TcptfWU5IIJQWj7qNoHmDT0YryZJwzq9EYJy7F82bmniIkrn/gSRE6k5l23aeb4F Gipim+b3GaOdjWWAY52VhotLeqQJnJTbZGSHoLd1WZd9qkxZtY+E6uECGHOCA1kZ Wl2f768A2WPetXDFPtQo0+O4FiqE/tfD4HPs35WVZtrard4n75xcNm7H4QYpp8y5 ufcpGLsOQR6iwhpohS1pl0G68WNE8cOl -----END CERTIFICATE-----Generated at Sat Apr 26 19:07:27 2025 by rpki-client