$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: y9Xnul6NnYzMr2nYg1HmWcHkjj9ReJ+t2pKgnNQMmTY= Subject key identifier: D1:46:4C:A0:77:D1:B4:CF:74:ED:82:88:1E:DF:F1:F0:22:B1:D8:0E Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: 58 Signing time: Fri 25 Apr 2025 06:10:18 +0000 Manifest this update: Fri 25 Apr 2025 06:10:17 +0000 Manifest next update: Fri 02 May 2025 06:10:17 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: 3rwDva93QeSOEdrg0OSzq3DttwTQQZh20kIhSwhb8M0=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: +tAlw28NvGVDo5cCezaQKFVIMHfW8hqdMwBD9HYIeLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Apr 25 06:10:17 2025 GMT Not After : May 2 06:10:17 2025 GMT Subject: CN=680b274a-2fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ae:5d:7c:05:05:d8:65:c8:a7:f8:40:1d:f3: e5:79:b0:66:d7:59:8c:f7:b4:38:4a:60:50:40:12: a4:63:f1:eb:3c:d5:50:86:ef:4e:c0:3f:81:4f:f3: 51:95:ff:49:a4:55:79:07:e4:d4:28:19:4c:8a:a4: b3:29:4c:75:9a:61:57:fb:fb:b9:55:6c:50:6f:10: 4c:32:7d:66:6b:72:55:ea:71:43:3d:b2:8b:8f:66: 9e:1a:90:3c:db:b8:12:09:44:70:25:df:b6:b1:15: 34:19:a1:28:f5:bd:f5:a1:0c:cd:8e:68:14:27:9f: 49:fe:2f:65:94:a0:12:d4:e8:e5:b7:a1:0c:40:6f: 56:c2:a8:c2:3f:fb:bf:b7:4e:9c:75:75:e7:43:8a: 9b:6e:bb:f8:09:76:39:6b:9e:d7:fa:d9:31:27:18: 6c:59:07:5f:a4:c7:66:ec:6e:7a:ac:45:ed:82:91: fd:7e:ae:ca:ef:e7:e6:3b:6b:9b:43:79:49:10:b2: 72:4c:d4:5b:27:f9:c4:b8:4f:a2:ea:c6:d7:c4:e3: a9:3a:91:06:9f:e3:b8:80:b3:42:9e:7e:e2:3a:e2: 91:95:aa:f8:b0:93:62:a6:01:78:37:0c:29:d2:6c: 30:c9:30:a6:51:90:aa:7d:9d:42:60:ee:b8:d8:e0: 3b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:46:4C:A0:77:D1:B4:CF:74:ED:82:88:1E:DF:F1:F0:22:B1:D8:0E X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7e:bd:f4:26:83:be:68:84:c8:48:f2:27:56:e8:95:65:74: cb:e0:40:0b:ad:f7:20:1f:01:cf:58:d6:20:0c:3b:f2:e1:c6: d9:1d:c2:71:5d:5d:d7:7a:24:5f:c4:0e:d3:92:92:8f:58:e8: 39:05:8b:5d:69:85:62:e3:11:73:1c:d4:bd:cd:8a:dd:59:05: 7d:04:c7:08:fa:3c:58:eb:d9:db:9e:0d:3a:d2:cf:8a:62:26: 4e:23:e6:41:10:07:d1:21:cc:ff:12:ff:3e:2a:83:ff:06:7f: 05:41:d4:0c:91:a2:ae:20:11:4e:58:cc:58:47:25:22:fd:ce: d6:1f:30:1b:fe:01:ee:c3:55:2a:3c:7f:c5:2c:38:df:ee:b3: dc:12:cb:13:0b:1b:bb:1c:61:b2:dc:88:6d:72:cf:3e:45:31: 3a:6f:1e:4b:dc:c7:2a:59:30:31:e0:76:44:b3:5c:78:a5:2a: bc:6c:4c:74:30:99:67:bf:6c:e1:94:a3:9b:d9:74:7c:14:e7: 56:e3:0d:a1:95:d8:18:25:0f:5c:77:dd:38:d0:6d:0c:7f:4f: 93:f1:7f:54:c1:e6:70:3e:7a:ff:9d:2d:25:f3:65:56:ed:df: a8:b8:06:d9:14:b7:45:a0:1a:e6:77:2f:47:9d:68:a4:99:ba: 2a:e8:4a:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNTA0MjUwNjEwMTdaFw0yNTA1MDIwNjEwMTdaMBgxFjAUBgNV BAMTDTY4MGIyNzRhLTJmZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdrl18BQXYZcin+EAd8+V5sGbXWYz3tDhKYFBAEqRj8es81VCG707AP4FP81GV /0mkVXkH5NQoGUyKpLMpTHWaYVf7+7lVbFBvEEwyfWZrclXqcUM9souPZp4akDzb uBIJRHAl37axFTQZoSj1vfWhDM2OaBQnn0n+L2WUoBLU6OW3oQxAb1bCqMI/+7+3 Tpx1dedDiptuu/gJdjlrntf62TEnGGxZB1+kx2bsbnqsRe2Ckf1+rsrv5+Y7a5tD eUkQsnJM1Fsn+cS4T6LqxtfE46k6kQaf47iAs0KefuI64pGVqviwk2KmAXg3DCnS bDDJMKZRkKp9nUJg7rjY4DvtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0UZMoHfR tM907YKIHt/x8CKx2A4wHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB OTQxLzlCM0QyNTQ4QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQ TmxxZ1FTNVRlRDZSMUlSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB1+vfQmg75ohMhI8idW6JVldMvgQAut9yAfAc9Y1iAMO/LhxtkdwnFd Xdd6JF/EDtOSko9Y6DkFi11phWLjEXMc1L3Nit1ZBX0Exwj6PFjr2dueDTrSz4pi Jk4j5kEQB9EhzP8S/z4qg/8GfwVB1AyRoq4gEU5YzFhHJSL9ztYfMBv+Ae7DVSo8 f8UsON/us9wSyxMLG7scYbLciG1yzz5FMTpvHkvcxypZMDHgdkSzXHilKrxsTHQw mWe/bOGUo5vZdHwU51bjDaGV2BglD1x33TjQbQx/T5Pxf1TB5nA+ev+dLSXzZVbt 36i4BtkUt0WgGuZ3L0edaKSZuiroSk4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:51 2025 by rpki-client