$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: W/99wqNclkAHc3r4hx3AR/ky3Ow4ZBCcr/EuGXQhcT8= Subject key identifier: BD:A6:EF:F8:EB:90:F1:F1:BD:8F:96:80:BC:C5:9B:57:0F:AB:EE:97 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 08C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08C2 Signing time: Thu 24 Apr 2025 20:20:46 +0000 Manifest this update: Thu 24 Apr 2025 20:20:46 +0000 Manifest next update: Thu 01 May 2025 20:20:46 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: ufD3pe1XdI/BpJr80q1xJy/ZZBB3Himfqtm8jp53WNI=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2248 (0x8c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Apr 24 20:20:46 2025 GMT Not After : May 1 20:20:46 2025 GMT Subject: CN=680a9d1e-e275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:41:34:53:f7:5c:16:7b:66:69:0c:4b:4e:ce: f0:33:75:67:52:a1:69:a1:c8:ad:b8:22:16:d6:7a: df:59:9f:26:a7:de:10:2d:bd:43:4e:80:50:b2:19: 42:09:52:0d:eb:bd:5b:a1:77:7c:e7:8d:a8:8b:31: e5:ca:e4:de:d9:c2:5e:48:13:aa:fd:15:b9:39:0d: a2:2d:7c:59:06:31:2e:0c:23:3d:3c:5a:79:b3:e4: 1a:cd:27:60:71:24:d2:cc:bf:89:33:19:81:77:5f: a1:2c:8f:0b:eb:b0:07:02:28:c3:31:a3:1f:d1:c7: b3:fb:c9:e1:9e:94:43:ca:d9:14:ed:7d:e6:c5:3c: 99:5c:9a:54:12:69:0f:6b:18:58:cc:a0:25:b1:be: 2d:40:d0:c5:d6:1d:9b:2f:b6:eb:88:ff:5c:f7:53: 35:d4:c7:11:71:5c:cf:ca:de:e9:77:65:f0:77:21: 06:22:5d:ab:ef:ad:50:23:ad:3f:7e:83:d7:d9:6f: 5d:04:54:96:8b:a6:e3:ea:60:1c:5c:6b:1b:2a:0a: 88:02:d0:d8:a2:f6:1a:81:33:08:81:b0:ac:48:0c: 38:23:36:91:30:71:d3:aa:6a:49:51:c0:f4:31:93: d9:4c:38:c9:70:e9:51:19:81:e8:6d:b5:c0:86:51: f0:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A6:EF:F8:EB:90:F1:F1:BD:8F:96:80:BC:C5:9B:57:0F:AB:EE:97 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:94:56:58:b2:40:14:c6:8b:f4:88:f5:fd:28:fe:84:49:76: 07:06:ac:95:80:19:02:97:be:a3:d5:a7:fc:ff:9e:55:cd:06: 2e:db:2e:e0:f2:90:05:50:ac:9f:66:f8:64:d3:7b:9c:04:36: f1:45:90:fe:19:48:eb:d2:9b:9c:b5:91:29:2d:ad:00:e1:2c: 93:bc:62:c4:56:66:e1:74:2c:36:a0:4e:5b:24:60:78:22:94: f9:18:9a:76:9a:10:ff:4e:ae:a9:b0:53:f4:53:73:fd:cf:6c: d3:d9:41:7e:1d:e3:f5:68:b1:62:c1:30:57:5f:1f:2f:fc:c2: cc:a0:d4:3f:07:0f:82:a4:44:35:82:ec:f8:dd:11:1a:39:9d: ea:cb:12:8b:7a:65:43:f7:83:f0:d1:c2:d6:6a:fb:38:30:8f: c5:3a:06:c3:59:16:f7:38:0a:7d:04:72:29:e1:94:63:ab:3f: b0:d0:60:2f:58:67:e7:53:5e:89:bd:5b:bd:07:1f:68:4b:1d: de:0d:29:c9:bf:1c:04:84:65:f8:f5:ef:9f:e3:c0:a8:19:81: 8f:cb:7e:b0:87:57:aa:ad:91:b4:68:50:84:40:c9:04:aa:2d: ae:36:39:ad:b2:74:6e:62:db:10:9a:37:db:92:7c:9e:2f:f1: 68:62:51:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwNDI0MjAyMDQ2WhcNMjUwNTAxMjAyMDQ2WjAYMRYwFAYD VQQDEw02ODBhOWQxZS1lMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kE0U/dcFntmaQxLTs7wM3VnUqFpocituCIW1nrfWZ8mp94QLb1DToBQshlC CVIN671boXd8542oizHlyuTe2cJeSBOq/RW5OQ2iLXxZBjEuDCM9PFp5s+QazSdg cSTSzL+JMxmBd1+hLI8L67AHAijDMaMf0cez+8nhnpRDytkU7X3mxTyZXJpUEmkP axhYzKAlsb4tQNDF1h2bL7briP9c91M11McRcVzPyt7pd2XwdyEGIl2r761QI60/ foPX2W9dBFSWi6bj6mAcXGsbKgqIAtDYovYagTMIgbCsSAw4IzaRMHHTqmpJUcD0 MZPZTDjJcOlRGYHobbXAhlHw+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2m7/jr kPHxvY+WgLzFm1cPq+6XMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWlFZYskAUxov0iPX9KP6ESXYHBqyVgBkCl76j1af8/55VzQYu2y7g 8pAFUKyfZvhk03ucBDbxRZD+GUjr0puctZEpLa0A4SyTvGLEVmbhdCw2oE5bJGB4 IpT5GJp2mhD/Tq6psFP0U3P9z2zT2UF+HeP1aLFiwTBXXx8v/MLMoNQ/Bw+CpEQ1 guz43REaOZ3qyxKLemVD94Pw0cLWavs4MI/FOgbDWRb3OAp9BHIp4ZRjqz+w0GAv WGfnU16JvVu9Bx9oSx3eDSnJvxwEhGX49e+f48CoGYGPy36wh1eqrZG0aFCEQMkE qi2uNjmtsnRuYtsQmjfbknyeL/FoYlF9 -----END CERTIFICATE-----Generated at Sat Apr 26 14:54:16 2025 by rpki-client