$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: giq8g+98hnIfSGPiet1vkbQMMhALJzNsK8Mqo0RWNOY= Subject key identifier: DA:7D:CE:8F:75:DA:B6:C4:FC:74:48:02:B5:76:B6:76:C4:82:63:C6 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0DF9 Signing time: Thu 24 Apr 2025 17:49:33 +0000 Manifest this update: Thu 24 Apr 2025 17:49:32 +0000 Manifest next update: Thu 01 May 2025 17:49:32 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: X3EJbqqhFypcy2Sml5I1vpmYTGBi+sfUOq8hh9QIG+s=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3604 (0xe14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Apr 24 17:49:32 2025 GMT Not After : May 1 17:49:32 2025 GMT Subject: CN=680a79ac-cc32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:83:e2:36:26:8c:1a:4e:95:82:b5:c5:76:9a: fa:a2:fd:f1:74:42:6e:79:64:e2:fb:c2:a1:a0:c0: e0:80:86:10:d1:d9:d9:fc:81:f4:69:98:00:80:51: 8a:e8:6c:90:b4:18:a7:65:61:55:95:f7:8f:bd:12: eb:70:01:3f:cb:40:f7:26:87:62:0c:59:6b:c0:c2: a0:87:8c:6d:fe:fd:6a:74:d5:75:2c:ef:40:76:91: ee:5b:6f:01:7e:21:e6:4e:ba:93:b9:8f:1f:4b:52: 70:94:e4:6f:2f:85:06:3f:7b:4d:50:ab:91:af:e3: ea:82:71:ba:7a:13:c9:8c:ef:1d:de:d9:82:8c:e7: 45:25:fc:2f:bf:99:61:2a:83:8d:6b:a2:bb:eb:8f: 57:14:c1:25:87:07:5b:0a:87:e9:d8:3e:51:f1:cb: 89:51:7c:37:f0:25:cf:dc:52:b2:23:bf:1b:fa:b9: cd:c8:57:e4:db:2d:27:06:85:80:a4:19:54:7f:7c: dd:1d:73:f8:b6:24:0f:34:04:e4:76:a2:93:47:04: 50:1a:8b:69:a4:28:58:19:b6:30:2b:29:f4:07:8c: 6e:61:2e:32:c8:c7:7a:b4:90:46:04:77:73:d1:62: 1d:f7:28:70:84:a2:df:71:96:91:74:07:d9:27:9d: 8d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7D:CE:8F:75:DA:B6:C4:FC:74:48:02:B5:76:B6:76:C4:82:63:C6 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bd:98:43:3f:f7:e3:d6:cf:b4:0c:6d:a0:6b:50:99:16:ea: 38:68:cc:ca:66:1c:c8:cc:a3:50:22:ec:7d:4c:b4:65:20:5f: 84:b3:e9:bf:95:dd:09:c7:15:a6:8f:ff:43:d8:4c:b3:25:80: be:48:56:95:e7:7c:f3:d4:ee:10:4f:52:2d:3d:7b:d4:ea:a3: 3f:93:5b:eb:10:32:40:df:6e:51:61:6a:22:90:6c:07:e1:0c: 9d:5e:85:53:30:93:4d:23:ac:7d:83:c7:5c:2e:bb:93:9b:e3: cf:c9:83:65:52:7a:59:78:9e:62:ff:cf:dd:08:04:1d:a4:12: 9a:45:15:0e:b3:7b:a6:27:bb:ea:ff:9a:c6:b6:44:aa:4b:ef: 4d:18:c6:86:37:5e:88:ea:c4:18:f0:5c:1e:44:5f:81:70:63: 24:c0:49:69:41:aa:c6:05:6d:13:0a:41:b8:a6:7d:70:c8:15: 8b:27:ad:38:8a:69:41:af:dc:03:a3:fe:e0:84:3e:a9:c6:43: 7a:4e:37:2a:fa:5e:0f:29:bd:ac:48:3c:aa:0f:49:83:43:1b: a3:42:a2:bb:97:14:3c:fd:81:77:01:5f:1b:6e:24:38:ac:21: 23:0d:9d:28:d7:9c:2e:10:76:9b:3f:b5:6b:d4:f4:18:03:6f: 97:1d:db:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwNDI0MTc0OTMyWhcNMjUwNTAxMTc0OTMyWjAYMRYwFAYD VQQDEw02ODBhNzlhYy1jYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IPiNiaMGk6VgrXFdpr6ov3xdEJueWTi+8KhoMDggIYQ0dnZ/IH0aZgAgFGK 6GyQtBinZWFVlfePvRLrcAE/y0D3JodiDFlrwMKgh4xt/v1qdNV1LO9AdpHuW28B fiHmTrqTuY8fS1JwlORvL4UGP3tNUKuRr+PqgnG6ehPJjO8d3tmCjOdFJfwvv5lh KoONa6K7649XFMElhwdbCofp2D5R8cuJUXw38CXP3FKyI78b+rnNyFfk2y0nBoWA pBlUf3zdHXP4tiQPNATkdqKTRwRQGotppChYGbYwKyn0B4xuYS4yyMd6tJBGBHdz 0WId9yhwhKLfcZaRdAfZJ52NrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNp9zo91 2rbE/HRIArV2tnbEgmPGMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNvZhDP/fj1s+0DG2ga1CZFuo4aMzKZhzIzKNQIux9TLRlIF+Es+m/ ld0JxxWmj/9D2EyzJYC+SFaV53zz1O4QT1ItPXvU6qM/k1vrEDJA325RYWoikGwH 4QydXoVTMJNNI6x9g8dcLruTm+PPyYNlUnpZeJ5i/8/dCAQdpBKaRRUOs3umJ7vq /5rGtkSqS+9NGMaGN16I6sQY8FweRF+BcGMkwElpQarGBW0TCkG4pn1wyBWLJ604 imlBr9wDo/7ghD6pxkN6Tjcq+l4PKb2sSDyqD0mDQxujQqK7lxQ8/YF3AV8bbiQ4 rCEjDZ0o15wuEHabP7Vr1PQYA2+XHdt0 -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:08 2025 by rpki-client