$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft File: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft (raw, json) Hash identifier: hku1B26Of55P1zLtZxjPK4481wOk3e1bW8SultTNf1o= Subject key identifier: 8D:43:17:04:EC:79:B8:CC:BC:9F:AE:56:49:C3:D4:72:E2:CB:26:48 Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0A79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft Manifest number: 0A73 Signing time: Thu 24 Apr 2025 19:30:49 +0000 Manifest this update: Thu 24 Apr 2025 19:30:49 +0000 Manifest next update: Thu 01 May 2025 19:30:49 +0000 Files and hashes: 1: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl (hash: BjbjPwXrKj5VRMVjB24ndSa6nj5GY7ZaaK4sMrO8/2A=) 2: A7D265605BB411EAB5B9A73BC4F9AE02.roa (hash: wRiU0pz+/rk6H4beDLKQQM79S2Mgy7c+Kq9SVKFoW2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2681 (0xa79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Apr 24 19:30:49 2025 GMT Not After : May 1 19:30:49 2025 GMT Subject: CN=680a9169-cb5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:88:7b:fc:ff:f5:e9:7d:ea:c6:8c:e0:4e: 0d:d0:fb:07:e0:69:04:ba:6e:26:c9:3c:9e:55:aa: 3a:1e:f2:c6:bd:b0:a9:dd:31:8c:6e:08:4b:a0:88: 44:cc:d2:7a:3e:31:ef:34:ee:f7:ef:49:fd:ea:ee: 7e:75:3d:3a:7d:61:a9:9e:65:c8:8b:62:83:c9:00: a9:33:ed:f1:56:fb:d0:ae:c2:3b:a3:0d:37:84:68: 0c:5e:10:45:ab:93:44:d0:77:08:dd:b8:66:64:ed: da:b7:a6:31:7e:5d:69:ec:bb:ec:ad:1c:d8:6e:1b: 40:41:12:5c:3f:c0:bf:73:2d:d1:85:29:b8:50:8b: b9:50:d7:48:d1:31:8d:43:d3:5a:31:ef:95:e2:fa: ff:ef:81:2e:5f:de:27:f5:69:b1:e7:27:55:d7:a3: e8:14:37:52:6e:8b:1a:ed:d3:92:b9:67:30:20:c2: 04:a8:a1:e8:0b:57:75:82:72:a3:19:ea:c2:6d:7b: 87:a4:b3:2f:e5:35:46:2d:b4:59:e6:eb:e0:0e:5d: 99:81:09:2b:cf:86:32:88:b5:c4:d0:88:ae:74:dc: 66:b5:54:8f:ab:e6:89:3f:37:1b:41:5d:a7:8a:1a: 16:e1:9f:43:2f:aa:84:9b:a8:54:5b:91:21:4f:fc: f9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:43:17:04:EC:79:B8:CC:BC:9F:AE:56:49:C3:D4:72:E2:CB:26:48 X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:c8:05:30:ae:6d:88:b8:78:5c:30:cb:09:09:6f:b2:6c:73: 50:c0:bc:41:6a:79:b6:8b:f2:b8:18:e8:ab:a6:94:54:7c:26: f1:ba:2a:93:12:59:22:24:f9:67:57:c9:93:8c:0d:e6:2d:f9: cd:e3:a0:6b:2a:53:cd:1e:61:fd:56:cb:37:4c:55:fa:a9:cd: 74:37:6c:d1:09:da:59:44:28:02:31:b6:ab:75:8f:f8:4e:78: 46:2a:59:c3:bb:fe:f8:42:c7:ea:39:35:e6:0c:fa:a1:03:ed: 54:13:bf:cc:91:51:5e:d4:9c:65:5e:46:27:29:7e:dc:1f:d5: 34:02:69:30:64:4f:89:5a:cd:23:f6:7b:8c:c4:d4:5a:1f:8a: cf:d5:13:0c:50:7f:28:78:09:ab:2b:17:b2:f1:47:d5:5e:80: f8:50:ea:18:fb:57:c3:88:20:9f:6d:90:da:a0:05:b8:4b:c4: 74:e6:a9:92:09:2a:5e:16:65:7a:d3:f1:a1:25:95:d2:a2:7b: ea:8d:4f:ab:6e:24:64:54:13:51:62:44:ed:20:b9:4a:96:2d: dd:db:fb:65:9a:50:e8:94:1d:7b:0c:d6:b0:86:44:64:dd:06: aa:c3:76:01:3a:69:b1:5f:0b:93:ac:62:25:b4:a5:96:be:13: b2:be:7a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUwNDI0MTkzMDQ5WhcNMjUwNTAxMTkzMDQ5WjAYMRYwFAYD VQQDEw02ODBhOTE2OS1jYjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrSIe/z/9el96saM4E4N0PsH4GkEum4myTyeVao6HvLGvbCp3TGMbghLoIhE zNJ6PjHvNO7370n96u5+dT06fWGpnmXIi2KDyQCpM+3xVvvQrsI7ow03hGgMXhBF q5NE0HcI3bhmZO3at6Yxfl1p7LvsrRzYbhtAQRJcP8C/cy3RhSm4UIu5UNdI0TGN Q9NaMe+V4vr/74EuX94n9Wmx5ydV16PoFDdSbosa7dOSuWcwIMIEqKHoC1d1gnKj GerCbXuHpLMv5TVGLbRZ5uvgDl2ZgQkrz4YyiLXE0IiudNxmtVSPq+aJPzcbQV2n ihoW4Z9DL6qEm6hUW5EhT/z5qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1DFwTs ebjMvJ+uVknD1HLiyyZIMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDRFMy8xNDgzQkQzNjVCQjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8w eXhKQi1DODd6QTZITGtzNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1yAUwrm2IuHhcMMsJCW+ybHNQwLxBanm2i/K4GOirppRUfCbxuiqT ElkiJPlnV8mTjA3mLfnN46BrKlPNHmH9Vss3TFX6qc10N2zRCdpZRCgCMbardY/4 TnhGKlnDu/74QsfqOTXmDPqhA+1UE7/MkVFe1JxlXkYnKX7cH9U0AmkwZE+JWs0j 9nuMxNRaH4rP1RMMUH8oeAmrKxey8UfVXoD4UOoY+1fDiCCfbZDaoAW4S8R05qmS CSpeFmV60/GhJZXSonvqjU+rbiRkVBNRYkTtILlKli3d2/tlmlDolB17DNawhkRk 3Qaqw3YBOmmxXwuTrGIltKWWvhOyvnov -----END CERTIFICATE-----Generated at Sat Apr 26 17:15:43 2025 by rpki-client