$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: k2BeMmpIP1xeCHah/TjGJABMDomxkkh5fK+VO4aOUDY= Subject key identifier: 4F:B2:33:C9:91:65:31:15:C5:8B:2D:F4:9C:22:C5:1B:AD:83:19:26 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0B6B Signing time: Thu 24 Apr 2025 18:59:15 +0000 Manifest this update: Thu 24 Apr 2025 18:59:15 +0000 Manifest next update: Thu 01 May 2025 18:59:15 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: IwHbCDX0vz1k+BItn/YvDTAVzNufHD+R01zZCas5reA=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Apr 24 18:59:15 2025 GMT Not After : May 1 18:59:15 2025 GMT Subject: CN=680a8a03-cc31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:cf:82:25:69:c1:27:9c:d4:70:7e:19:d8: 4c:0e:17:a5:ab:5d:d9:86:64:82:22:c8:11:c1:3a: 8c:0e:82:ee:eb:28:c7:4d:01:b0:54:4a:09:5f:57: 29:21:17:2e:40:23:bc:40:4b:0f:5b:b8:ab:a1:11: 83:5b:7b:04:93:c2:57:0c:28:95:6d:28:6f:61:2b: 8d:ad:e5:e2:ef:bc:87:a8:c5:62:a3:6e:2f:6b:2b: 47:50:25:b6:f7:4a:c0:4c:ee:59:6f:df:06:5b:51: fc:fe:52:0f:2f:b6:35:92:b5:d2:35:c4:28:85:f9: 40:15:42:74:51:54:22:37:d8:08:20:dd:1c:7c:cd: f7:3f:e6:aa:62:62:47:c5:6c:29:8e:dd:d7:10:6f: 4b:68:08:35:8c:7e:6b:39:03:78:db:56:5a:99:fb: 80:29:66:6f:a2:c0:4e:fc:4f:6b:9d:eb:0d:67:2a: 5e:7f:a0:68:8f:fa:cc:a0:ca:9d:98:01:e2:91:ba: 05:83:97:16:06:67:fe:c2:5e:b7:c5:ab:ba:15:8a: 7b:65:ee:78:9c:45:ca:db:86:d1:75:2a:f9:4f:e1: 4c:73:92:0f:63:4b:44:89:c1:7c:2f:e7:39:d8:c7: b0:59:42:9d:fc:07:bd:31:d0:c0:46:42:67:10:b3: ec:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B2:33:C9:91:65:31:15:C5:8B:2D:F4:9C:22:C5:1B:AD:83:19:26 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:73:9b:ae:81:20:80:fc:a4:fb:38:b9:d3:2d:c9:05:fb:31: 66:8a:db:2d:79:43:8c:87:28:72:62:ff:cd:6c:4a:d8:e3:7c: c9:3d:a3:da:9f:20:97:1a:40:15:67:3b:96:cc:2b:8e:70:48: db:8f:62:2d:84:44:1c:a1:27:90:1b:f3:8d:4e:8a:74:4e:6b: d2:2c:05:75:46:b0:5a:33:0f:6a:13:a3:0e:7a:84:c1:be:d3: 68:6c:ae:ea:a6:52:0f:3d:66:6d:17:12:dd:99:fc:dd:cf:86: 87:d1:be:18:1b:0d:a1:3d:79:be:8e:60:ad:88:f4:a6:4e:79: 7a:75:cc:07:28:a3:55:2c:ba:39:8a:55:8a:9a:bb:79:58:d3: 4c:64:61:5b:20:97:d6:05:18:49:da:d5:5b:b8:d2:69:f5:38: b1:f3:4c:c1:0d:15:13:65:e6:08:4b:6d:dd:99:f7:ad:a7:af: ce:20:e4:e5:de:4f:5c:14:26:27:0e:c6:81:72:f8:c7:77:94: 11:46:7d:da:d2:3e:7a:f3:22:9e:42:5e:1a:51:6a:52:12:fb: 11:9a:4e:65:26:62:e9:0a:55:05:8d:ec:b0:9e:d2:68:05:f0: 2e:bb:f9:13:79:fa:c8:89:f9:2a:cf:e7:2b:68:f7:27:52:4a: fb:bc:7e:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUwNDI0MTg1OTE1WhcNMjUwNTAxMTg1OTE1WjAYMRYwFAYD VQQDEw02ODBhOGEwMy1jYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB7PgiVpwSec1HB+GdhMDhelq13ZhmSCIsgRwTqMDoLu6yjHTQGwVEoJX1cp IRcuQCO8QEsPW7iroRGDW3sEk8JXDCiVbShvYSuNreXi77yHqMVio24vaytHUCW2 90rATO5Zb98GW1H8/lIPL7Y1krXSNcQohflAFUJ0UVQiN9gIIN0cfM33P+aqYmJH xWwpjt3XEG9LaAg1jH5rOQN421ZamfuAKWZvosBO/E9rnesNZypef6Boj/rMoMqd mAHikboFg5cWBmf+wl63xau6FYp7Ze54nEXK24bRdSr5T+FMc5IPY0tEicF8L+c5 2MewWUKd/Ae9MdDARkJnELPsmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+yM8mR ZTEVxYst9JwixRutgxkmMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjc5uugSCA/KT7OLnTLckF+zFmitsteUOMhyhyYv/NbErY43zJPaPa nyCXGkAVZzuWzCuOcEjbj2IthEQcoSeQG/ONTop0TmvSLAV1RrBaMw9qE6MOeoTB vtNobK7qplIPPWZtFxLdmfzdz4aH0b4YGw2hPXm+jmCtiPSmTnl6dcwHKKNVLLo5 ilWKmrt5WNNMZGFbIJfWBRhJ2tVbuNJp9Tix80zBDRUTZeYIS23dmfetp6/OIOTl 3k9cFCYnDsaBcvjHd5QRRn3a0j568yKeQl4aUWpSEvsRmk5lJmLpClUFjeywntJo BfAuu/kTefrIifkqz+craPcnUkr7vH6v -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:19 2025 by rpki-client