$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: YuQbZd4HkD4PJfuw8Vefn6zspBlyMcQedq5QHU70mAs= Subject key identifier: 21:73:E3:D6:1B:7A:B7:B7:DE:08:37:11:EC:83:19:7B:1F:17:B5:51 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05B3 Signing time: Thu 24 Apr 2025 22:55:52 +0000 Manifest this update: Thu 24 Apr 2025 22:55:51 +0000 Manifest next update: Thu 01 May 2025 22:55:51 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: 3I/CmTIvtEJKgZa+Kya+i9B3VYLOfUq5scJi9P8MSDw=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: bWn5aFY6Kg9nqE6Xd5cFT5I+I/vhYdu828/JrK8jyYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Apr 24 22:55:51 2025 GMT Not After : May 1 22:55:51 2025 GMT Subject: CN=680ac177-d6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:e3:2a:a1:5b:08:c9:61:da:ee:1c:bc:2e: bf:48:d7:c1:07:48:32:e9:11:d1:91:fd:b8:bd:dd: 79:2c:36:02:e0:0a:90:b7:29:f5:d1:b6:46:df:74: 2e:ef:7f:0c:d8:6e:f0:6d:a4:18:31:b2:0d:69:4f: 85:d4:e4:64:63:c9:b9:06:4b:e3:b7:3c:3a:89:b5: da:1c:08:d3:61:4b:48:c2:39:cc:29:91:64:5d:0f: 47:40:18:7d:d0:ff:30:b0:63:b2:da:40:93:00:68: 39:20:1a:64:6e:6a:05:f0:82:8a:89:eb:54:6d:0f: b9:90:3e:ec:0f:5f:74:66:2f:28:c8:e3:7b:8f:ef: 1c:24:21:71:d6:68:97:ca:d8:76:22:59:25:bd:00: f1:7f:6a:51:0a:e5:07:fb:2c:e6:3f:61:41:3d:09: fb:3c:cd:04:56:36:25:38:27:46:0e:6b:4c:39:a3: a5:f8:dc:10:2f:2d:39:5e:e1:02:df:52:e7:bd:97: 34:53:aa:d8:c7:5b:e0:48:d0:a4:b5:e3:c7:34:12: eb:f1:4d:d6:47:79:9f:b4:ba:21:e5:64:23:33:c8: a3:8d:9e:4f:f5:1d:36:de:e3:6a:b8:bf:75:ef:59: 0f:a5:43:c8:1e:51:19:6d:39:59:e1:84:ba:7f:86: 05:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:73:E3:D6:1B:7A:B7:B7:DE:08:37:11:EC:83:19:7B:1F:17:B5:51 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d9:95:ca:bd:54:7c:c5:ae:72:e9:8a:52:53:a9:95:54:05: 5f:0f:30:59:df:c9:f2:e5:d4:d1:c0:24:96:b4:c3:76:c9:93: f3:f2:4d:ab:1f:50:57:3b:e6:58:1b:ba:bd:71:99:ad:c2:93: ac:83:9f:5a:83:c0:c7:fa:a2:91:2c:f5:aa:ca:7c:31:51:b2: 24:0c:ee:b7:74:ab:1c:2f:86:41:3b:98:b5:0c:27:e6:f6:7c: b1:e1:dc:a8:20:9f:22:08:bd:40:16:08:ba:11:6e:52:09:40: 86:1b:68:22:85:85:bb:cd:81:d7:dc:3d:74:be:85:cb:7f:18: c8:e9:fb:12:74:0e:20:fe:85:39:1b:40:3c:a3:2e:fc:59:44: 76:27:c4:97:e0:cf:32:9b:2c:2b:01:b1:89:25:a6:3c:6c:89: ac:b6:39:02:e7:98:6d:2e:e3:be:ac:68:05:a4:c4:22:48:f2: 68:7f:b6:c3:8a:b8:f8:14:10:72:0c:14:c2:92:78:72:34:6b: 0d:3f:35:07:46:25:cf:5b:07:ef:8f:97:1a:b6:1a:e7:6a:a9: 5a:28:b6:53:67:ed:62:b2:72:1e:b0:03:3a:3a:57:86:01:c4: f0:85:4b:2b:77:76:92:d8:8b:3d:f3:25:3c:ae:16:e9:5b:ff: 45:ea:4b:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwNDI0MjI1NTUxWhcNMjUwNTAxMjI1NTUxWjAYMRYwFAYD VQQDEw02ODBhYzE3Ny1kNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnPjKqFbCMlh2u4cvC6/SNfBB0gy6RHRkf24vd15LDYC4AqQtyn10bZG33Qu 738M2G7wbaQYMbINaU+F1ORkY8m5Bkvjtzw6ibXaHAjTYUtIwjnMKZFkXQ9HQBh9 0P8wsGOy2kCTAGg5IBpkbmoF8IKKietUbQ+5kD7sD190Zi8oyON7j+8cJCFx1miX yth2IlklvQDxf2pRCuUH+yzmP2FBPQn7PM0EVjYlOCdGDmtMOaOl+NwQLy05XuEC 31LnvZc0U6rYx1vgSNCktePHNBLr8U3WR3mftLoh5WQjM8ijjZ5P9R023uNquL91 71kPpUPIHlEZbTlZ4YS6f4YFxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFz49Yb ere33gg3EeyDGXsfF7VRMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr2ZXKvVR8xa5y6YpSU6mVVAVfDzBZ38ny5dTRwCSWtMN2yZPz8k2r H1BXO+ZYG7q9cZmtwpOsg59ag8DH+qKRLPWqynwxUbIkDO63dKscL4ZBO5i1DCfm 9nyx4dyoIJ8iCL1AFgi6EW5SCUCGG2gihYW7zYHX3D10voXLfxjI6fsSdA4g/oU5 G0A8oy78WUR2J8SX4M8ymywrAbGJJaY8bImstjkC55htLuO+rGgFpMQiSPJof7bD irj4FBByDBTCknhyNGsNPzUHRiXPWwfvj5cathrnaqlaKLZTZ+1isnIesAM6OleG AcTwhUsrd3aS2Is98yU8rhbpW/9F6kv4 -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:36 2025 by rpki-client