$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft File: 8goyYNssxWGzO2TeFLAR8poeJBQ.mft (raw, json) Hash identifier: 4GJXKjn/AZXRRhdrRQmPMlwXkQseGVBpHGXEO1D6Ehc= Subject key identifier: 63:EB:1E:A1:66:AF:F8:A8:0B:13:05:A8:77:50:2B:08:64:C7:D6:C7 Authority key identifier: F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 Certificate issuer: /CN=A91BD9B7/serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft Manifest number: 0521 Signing time: Thu 24 Apr 2025 23:20:00 +0000 Manifest this update: Thu 24 Apr 2025 23:20:00 +0000 Manifest next update: Thu 01 May 2025 23:20:00 +0000 Files and hashes: 1: 8goyYNssxWGzO2TeFLAR8poeJBQ.crl (hash: m7jPpvtv6mS6/Z1teVDlL0I+D/zgrqTZLR3nNXlaB5Y=) 2: 713C4814F9DC11EBA9C81A44C4F9AE02.roa (hash: CQpWK2+G2LnLlpiGc5AJJ6xJWy2B0MtLT56Nh25qbzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD9B7, serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Validity Not Before: Apr 24 23:20:00 2025 GMT Not After : May 1 23:20:00 2025 GMT Subject: CN=680ac720-1549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ef:ea:5c:f3:ea:21:98:30:ac:a4:8a:09:a2: df:34:3c:35:f0:75:4b:d1:b4:92:48:c1:08:7e:41: 68:c3:04:ac:73:93:9d:e6:bc:8c:bb:82:53:58:21: 90:05:8b:e3:2f:b0:54:f9:cb:70:18:95:8a:ff:5c: c4:5f:0f:8e:a9:c7:8a:93:e8:d8:ec:4d:24:ce:dc: 1a:c3:66:30:02:6f:1e:ce:40:54:51:d4:6f:d0:2f: 68:70:02:6c:7b:80:10:2d:80:3e:cf:45:5a:9f:7a: a8:b7:31:27:8e:ed:3f:38:80:b2:24:e6:88:ac:6f: 94:4f:73:69:c2:19:d7:28:1a:70:5d:b8:7f:65:92: 5e:e2:37:c8:a3:8e:d9:aa:12:72:6d:be:1e:9e:53: f3:38:7d:a0:ff:c4:3c:d6:f9:ec:c5:c7:4e:25:d2: 7d:ad:7c:17:90:74:ac:e2:82:71:a4:00:bf:5f:f6: 61:e3:c2:2a:ec:38:5b:5b:69:a5:3e:db:61:a1:ea: 8f:d8:b6:c4:0d:93:1a:85:f4:95:6c:06:7a:bb:65: 58:fa:cc:25:1b:09:3d:79:d5:b9:e0:55:62:14:43: f9:1b:e4:c3:c4:ed:a9:e8:67:4f:12:27:b7:22:6c: ed:1a:f2:ea:2b:ad:da:c8:fd:62:f0:f4:66:93:45: 2a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EB:1E:A1:66:AF:F8:A8:0B:13:05:A8:77:50:2B:08:64:C7:D6:C7 X509v3 Authority Key Identifier: keyid:F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d1:72:a7:f4:c0:ae:85:85:68:a1:68:89:0b:21:a6:da:43: 08:18:1f:43:51:80:a4:59:39:0d:4c:85:32:25:18:16:c0:d3: 7b:0a:09:91:29:7d:76:eb:29:5c:dd:75:a6:99:87:50:ec:22: d7:e7:91:46:c0:ba:89:0b:3f:20:af:44:9d:eb:f0:95:a2:0a: 5c:47:20:bc:a0:4d:c4:ad:4d:76:00:6b:bc:b1:4f:0d:c5:0c: 48:0f:ba:07:2b:6f:51:6c:81:23:c2:97:4c:34:5f:16:e8:23: c9:63:4d:a5:70:95:7c:e4:bf:77:47:6d:01:76:26:f7:d2:a5: c7:0a:1e:d3:c3:b1:4f:a1:94:dc:b3:28:d4:20:8e:db:49:95: 92:80:f4:40:48:0f:5a:64:90:3b:99:22:9c:14:93:8f:c0:ac: ad:8b:65:26:89:d1:9a:da:e2:ba:b0:67:55:5e:e0:2d:58:a4: 72:94:0f:d4:23:df:e3:13:46:01:4f:d1:f1:10:36:24:6c:6b: 43:c7:57:5c:cd:bb:4a:42:c2:55:ec:82:e3:3b:ff:23:4e:aa: 7d:b9:05:67:16:e1:ee:7b:bc:8c:7c:36:1e:82:64:2b:e1:9b: ee:66:0e:f2:d7:ca:4e:aa:ce:b9:49:aa:2b:1a:f4:a9:d9:98: d4:65:5f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ5QjcxMTAvBgNVBAUTKEYyMEEzMjYwREIyQ0M1NjFCMzNCNjRERTE0QjAxMUYy OUExRTI0MTQwHhcNMjUwNDI0MjMyMDAwWhcNMjUwNTAxMjMyMDAwWjAYMRYwFAYD VQQDEw02ODBhYzcyMC0xNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze/qXPPqIZgwrKSKCaLfNDw18HVL0bSSSMEIfkFowwSsc5Od5ryMu4JTWCGQ BYvjL7BU+ctwGJWK/1zEXw+OqceKk+jY7E0kztwaw2YwAm8ezkBUUdRv0C9ocAJs e4AQLYA+z0Van3qotzEnju0/OICyJOaIrG+UT3NpwhnXKBpwXbh/ZZJe4jfIo47Z qhJybb4enlPzOH2g/8Q81vnsxcdOJdJ9rXwXkHSs4oJxpAC/X/Zh48Iq7DhbW2ml PtthoeqP2LbEDZMahfSVbAZ6u2VY+swlGwk9edW54FViFEP5G+TDxO2p6GdPEie3 ImztGvLqK63ayP1i8PRmk0Uq0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPrHqFm r/ioCxMFqHdQKwhkx9bHMB8GA1UdIwQYMBaAFPIKMmDbLMVhsztk3hSwEfKaHiQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlCNy8xNDk4MDQ5OEY5 RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hXR3pPMlRlRkxBUjhwb2VK QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnb3lZTnNzeFdHek8yVGVGTEFSOHBvZUpCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDlCNy8xNDk4MDQ5OEY5RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hX R3pPMlRlRkxBUjhwb2VKQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd0XKn9MCuhYVooWiJCyGm2kMIGB9DUYCkWTkNTIUyJRgWwNN7CgmR KX126ylc3XWmmYdQ7CLX55FGwLqJCz8gr0Sd6/CVogpcRyC8oE3ErU12AGu8sU8N xQxID7oHK29RbIEjwpdMNF8W6CPJY02lcJV85L93R20Bdib30qXHCh7Tw7FPoZTc syjUII7bSZWSgPRASA9aZJA7mSKcFJOPwKyti2UmidGa2uK6sGdVXuAtWKRylA/U I9/jE0YBT9HxEDYkbGtDx1dczbtKQsJV7ILjO/8jTqp9uQVnFuHue7yMfDYegmQr 4ZvuZg7y18pOqs65SaorGvSp2ZjUZV+J -----END CERTIFICATE-----Generated at Sat Apr 26 03:55:38 2025 by rpki-client