$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft File: vO4SgFOJtXjDX9i0JVpggdJoP3w.mft (raw, json) Hash identifier: BIzRKuXzOT2G06z0rfzUq53ml4ZPQZ3Ph6MpApNWsco= Subject key identifier: 9E:74:5D:4B:28:3A:48:ED:73:BE:DC:F4:99:95:AA:76:4B:8F:5A:5F Authority key identifier: BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C Certificate issuer: /CN=A91B4B33/serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft Manifest number: A8 Signing time: Fri 25 Apr 2025 05:08:38 +0000 Manifest this update: Fri 25 Apr 2025 05:08:37 +0000 Manifest next update: Fri 02 May 2025 05:08:37 +0000 Files and hashes: 1: vO4SgFOJtXjDX9i0JVpggdJoP3w.crl (hash: 9P+NpVXQUIUTkXz3Nma6sLPWe2Aew7cABw1Jx7k/Kp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.crl rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C Validity Not Before: Apr 25 05:08:37 2025 GMT Not After : May 2 05:08:37 2025 GMT Subject: CN=680b18d5-8d60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:b1:c5:2d:89:5e:43:3d:d0:bc:88:c0:56: d5:e4:da:a7:30:04:3c:50:8b:29:43:0c:e6:8d:a3: 07:53:a9:f2:59:1b:82:50:b8:bc:bf:c1:9c:c9:eb: ed:9b:27:0c:86:91:2f:f1:77:23:8f:0a:7b:c4:96: 7a:e7:1e:85:a8:65:53:6e:dc:d0:ae:12:35:33:08: 84:bc:82:ca:80:7e:83:b6:8a:64:b5:ad:64:42:6d: 14:b8:89:4f:5f:ba:96:68:a8:7d:75:0c:e1:c5:78: a9:d7:04:6e:2b:a3:3e:25:95:f0:09:9f:7b:5d:1b: bd:44:1e:6c:05:bf:64:19:98:e4:a4:32:89:4a:49: ab:61:ed:42:f4:31:bf:3d:e1:af:83:10:de:de:48: 86:37:4b:8a:58:60:c7:9f:ae:32:95:05:af:35:9f: a6:75:de:d3:44:50:72:ec:b3:b7:fa:7c:5f:1f:09: 32:a5:a8:df:4d:8e:13:29:3c:52:e5:89:2b:6e:58: 16:4d:ff:e0:5e:5d:04:88:57:27:8d:41:64:df:80: 5d:ce:b7:b3:5c:88:c2:9e:b6:16:ff:4b:6e:4a:3d: 95:55:db:bd:de:d0:22:e0:10:07:5e:34:37:93:f8: 1d:b0:fe:40:ef:99:d8:3a:a3:e4:f0:be:dc:a1:71: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:74:5D:4B:28:3A:48:ED:73:BE:DC:F4:99:95:AA:76:4B:8F:5A:5F X509v3 Authority Key Identifier: keyid:BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a5:c2:ad:ac:50:44:ff:82:79:70:ee:13:5c:1b:57:16:01: 3d:0a:42:33:b4:02:f5:0f:ee:55:ba:88:cc:5c:2f:5c:1e:87: 5e:1d:c8:0a:0e:b8:7d:21:41:1e:3e:27:21:5e:bf:a0:92:77: a8:fa:fd:d5:43:e7:7d:38:a3:ae:52:19:c9:5d:cf:0d:33:c7: 65:0e:6d:27:d0:b1:ae:15:65:5e:a4:50:d4:71:c2:8d:4b:45: f9:94:87:7b:c5:cd:c3:1d:60:ac:ed:7c:87:62:15:67:9a:a8: fe:1a:9f:23:74:98:26:32:88:0e:e2:8a:f9:ef:53:62:52:0f: 46:1f:ab:e3:76:bd:eb:00:01:05:24:88:53:1e:77:b8:e2:4c: da:4b:b2:5c:f7:a2:d2:44:a9:9c:f5:ab:d6:24:cb:77:c6:13: ac:b1:26:e3:a7:58:74:39:a8:e3:ab:a1:50:53:43:3c:60:ed: 4b:64:11:9e:51:ba:da:68:f4:7a:ae:b5:77:fa:03:31:64:94: 88:96:bb:85:b4:f0:95:a8:a0:34:42:b1:45:1b:f1:1f:ff:0f: f8:39:03:5b:8a:e5:31:b1:e7:17:6d:cc:04:72:10:95:27:7a: e8:aa:e1:0d:d8:99:77:bf:86:12:62:c0:74:b4:56:0a:ef:eb: 5a:4f:62:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEJDRUUxMjgwNTM4OUI1NzhDMzVGRDhCNDI1NUE2MDgx RDI2ODNGN0MwHhcNMjUwNDI1MDUwODM3WhcNMjUwNTAyMDUwODM3WjAYMRYwFAYD VQQDEw02ODBiMThkNS04ZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd6xxS2JXkM90LyIwFbV5NqnMAQ8UIspQwzmjaMHU6nyWRuCULi8v8Gcyevt mycMhpEv8Xcjjwp7xJZ65x6FqGVTbtzQrhI1MwiEvILKgH6Dtopkta1kQm0UuIlP X7qWaKh9dQzhxXip1wRuK6M+JZXwCZ97XRu9RB5sBb9kGZjkpDKJSkmrYe1C9DG/ PeGvgxDe3kiGN0uKWGDHn64ylQWvNZ+mdd7TRFBy7LO3+nxfHwkypajfTY4TKTxS 5YkrblgWTf/gXl0EiFcnjUFk34BdzrezXIjCnrYW/0tuSj2VVdu93tAi4BAHXjQ3 k/gdsP5A75nYOqPk8L7coXE+TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ50XUso Okjtc77c9JmVqnZLj1pfMB8GA1UdIwQYMBaAFLzuEoBTibV4w1/YtCVaYIHSaD98 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8yNDRGODQ5QTIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi92TzRTZ0ZPSnRYakRYOWkwSlZwZ2dkSm9Q M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZPNFNnRk9KdFhqRFg5aTBKVnBnZ2RKb1Azdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8yNDRGODQ5QTIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi92TzRTZ0ZPSnRY akRYOWkwSlZwZ2dkSm9QM3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClpcKtrFBE/4J5cO4TXBtXFgE9CkIztAL1D+5VuojMXC9cHodeHcgK Drh9IUEePichXr+gkneo+v3VQ+d9OKOuUhnJXc8NM8dlDm0n0LGuFWVepFDUccKN S0X5lId7xc3DHWCs7XyHYhVnmqj+Gp8jdJgmMogO4or571NiUg9GH6vjdr3rAAEF JIhTHne44kzaS7Jc96LSRKmc9avWJMt3xhOssSbjp1h0Oajjq6FQU0M8YO1LZBGe UbraaPR6rrV3+gMxZJSIlruFtPCVqKA0QrFFG/Ef/w/4OQNbiuUxsecXbcwEchCV J3roquEN2Jl3v4YSYsB0tFYK7+taT2I4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:04:53 2025 by rpki-client