$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: YGcHfSjmSdq0fdHUq7CTeIuB4XMNBUoT4PUj+dP1h/c= Subject key identifier: FB:CC:BC:B9:AD:7F:85:3C:EC:25:B2:AC:F5:1B:09:19:A2:E8:BF:87 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 20F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 20E9 Signing time: Thu 24 Apr 2025 15:57:54 +0000 Manifest this update: Thu 24 Apr 2025 15:57:53 +0000 Manifest next update: Thu 01 May 2025 15:57:53 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: aP9YHuLzCrAHR6JDu/U3mFFyXMx/IiSOoK43BxCdOpM=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: BjqwppR+NMle1n/1OCoqadfW2SGArIC17ShPvDamqQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8437 (0x20f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E, serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: Apr 24 15:57:53 2025 GMT Not After : May 1 15:57:53 2025 GMT Subject: CN=680a5f81-fde4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:f8:3e:0f:a2:b6:90:56:33:0f:aa:81:d8: 74:f4:37:37:67:7f:ac:33:2e:33:40:0e:90:25:17: eb:c3:2e:0c:a5:a2:33:5b:bb:5f:f9:74:e6:90:8e: 11:21:8c:8a:c6:b2:3f:a3:27:b3:f6:ea:fd:35:ef: 85:9e:71:b2:0d:c4:3c:0b:c4:02:9c:f5:e4:34:ba: 8d:7d:38:d0:2d:f8:3e:c1:3c:a2:a3:d0:f4:11:85: 8a:cf:70:57:ba:b3:00:a8:77:83:d5:87:c3:d3:29: 50:78:a7:62:c1:67:33:85:39:36:cf:85:72:21:c9: c3:b9:8c:e0:0b:0f:dd:00:a8:1e:83:b6:b0:53:45: 7b:8c:2d:d3:31:46:1f:65:7b:14:27:41:ed:30:37: 24:8a:4e:44:0a:93:48:ac:ed:7a:a8:cc:9e:6d:eb: d4:44:56:dc:4a:76:f7:59:b5:8b:7f:8b:24:f0:5f: cb:02:0d:5a:85:e7:e0:ff:c3:6d:21:24:78:4e:2e: a8:6a:6c:67:dc:48:fd:e4:d9:c8:d1:3a:4e:a0:17: c0:d1:71:c1:da:5a:e9:24:6e:e0:83:70:b3:f4:07: c3:e1:4b:ea:3d:8b:63:97:51:5f:73:06:de:02:50: ee:d7:2d:29:72:15:e8:8d:5d:73:be:cf:a8:32:69: 2d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CC:BC:B9:AD:7F:85:3C:EC:25:B2:AC:F5:1B:09:19:A2:E8:BF:87 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7e:e6:be:89:05:29:1e:68:e3:27:00:e4:00:9f:dd:41:b1: 72:a2:97:c9:c2:95:84:0e:91:d0:77:18:ca:b9:f8:6e:2d:3d: fa:97:da:13:b4:b0:0a:7a:fb:38:b4:05:27:a5:b2:48:74:9d: 06:d0:7b:75:32:da:be:5c:91:6c:9c:9f:83:1f:4e:d6:9b:18: 50:69:b2:a5:8b:76:69:35:fb:ef:e9:0e:7f:de:ab:14:d4:15: f1:d2:20:60:bb:06:ae:ab:c6:85:85:84:02:27:4d:9f:70:39: 09:c5:98:c3:42:05:53:b2:b3:80:66:9c:ca:fc:47:53:c9:db: b3:d7:2f:40:35:12:2e:6c:05:5b:f9:b6:b7:f0:a9:dd:16:87: 50:b7:15:88:42:14:41:54:56:ed:bc:65:be:52:8c:fc:a1:d8: bc:13:c9:d0:8c:92:11:d0:5c:f6:40:d0:ff:c4:65:fb:6b:68: de:6a:be:90:1c:76:5d:a4:d7:cd:8c:45:60:9a:8c:68:f2:4c: f0:6f:ea:f0:02:17:d4:6f:b6:56:17:10:e6:9e:c1:9a:bb:49: 87:01:6d:be:8a:4b:cf:e8:00:27:e1:95:da:3d:28:a5:19:ca: 78:ad:5b:20:0c:c6:62:d2:54:35:1b:b3:ef:f1:eb:3b:01:19: 69:65:82:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjUwNDI0MTU1NzUzWhcNMjUwNTAxMTU1NzUzWjAYMRYwFAYD VQQDEw02ODBhNWY4MS1mZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYn4Pg+itpBWMw+qgdh09Dc3Z3+sMy4zQA6QJRfrwy4MpaIzW7tf+XTmkI4R IYyKxrI/oyez9ur9Ne+FnnGyDcQ8C8QCnPXkNLqNfTjQLfg+wTyio9D0EYWKz3BX urMAqHeD1YfD0ylQeKdiwWczhTk2z4VyIcnDuYzgCw/dAKgeg7awU0V7jC3TMUYf ZXsUJ0HtMDckik5ECpNIrO16qMyebevURFbcSnb3WbWLf4sk8F/LAg1ahefg/8Nt ISR4Ti6oamxn3Ej95NnI0TpOoBfA0XHB2lrpJG7gg3Cz9AfD4UvqPYtjl1Ffcwbe AlDu1y0pchXojV1zvs+oMmktAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvMvLmt f4U87CWyrPUbCRmi6L+HMB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEfua+iQUpHmjjJwDkAJ/dQbFyopfJwpWEDpHQdxjKufhuLT36l9oT tLAKevs4tAUnpbJIdJ0G0Ht1Mtq+XJFsnJ+DH07WmxhQabKli3ZpNfvv6Q5/3qsU 1BXx0iBguwauq8aFhYQCJ02fcDkJxZjDQgVTsrOAZpzK/EdTyduz1y9ANRIubAVb +ba38KndFodQtxWIQhRBVFbtvGW+Uoz8odi8E8nQjJIR0Fz2QND/xGX7a2jear6Q HHZdpNfNjEVgmoxo8kzwb+rwAhfUb7ZWFxDmnsGau0mHAW2+ikvP6AAn4ZXaPSil Gcp4rVsgDMZi0lQ1G7Pv8es7ARlpZYKk -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:23 2025 by rpki-client