$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft File: 83YJDdec9qJZrioXAgNy6eYWC7Y.mft (raw, json) Hash identifier: SxoVS0O745mfFBRSPU2SHWmXZyEtmpnyqaIA/VRfLYk= Subject key identifier: 34:BB:EC:55:DA:BF:06:85:D3:C5:45:2A:D4:3B:D8:0B:93:E2:44:4F Authority key identifier: F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 Certificate issuer: /CN=A91E8EAD/serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Certificate serial: 0970 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft Manifest number: 0968 Signing time: Thu 24 Apr 2025 20:03:52 +0000 Manifest this update: Thu 24 Apr 2025 20:03:52 +0000 Manifest next update: Thu 01 May 2025 20:03:52 +0000 Files and hashes: 1: 83YJDdec9qJZrioXAgNy6eYWC7Y.crl (hash: /ELZAQjOq5OF8kO2F0ORLKWq60OdXihVGM11oypdeLo=) 2: 16F7FB3E8FAF11EA96738C46C4F9AE02.roa (hash: FDVevWofhV4OBWCY3mCV+bPsuc2xoyahcfyBo3UC3vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8EAD, serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Validity Not Before: Apr 24 20:03:52 2025 GMT Not After : May 1 20:03:52 2025 GMT Subject: CN=680a9928-7287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:ac:26:9a:ee:ad:b6:07:5a:9f:87:ca:fa: b3:72:ed:16:b7:69:06:9c:ff:24:3e:e6:ba:21:fb: 59:6f:16:83:6d:89:14:ab:c5:37:e1:07:5c:4c:05: 42:1e:76:ce:27:fd:30:89:11:d8:68:18:7c:3a:74: e3:79:d4:a1:e1:95:fa:91:14:95:63:6f:53:26:dc: b7:31:54:df:fa:e3:13:d1:3e:bf:46:d5:1c:8c:e9: f7:9c:ca:2c:19:50:39:b5:45:9e:a3:d6:a4:ac:9c: 2d:8c:e0:0d:f9:5f:c9:41:ce:c6:8d:3c:d4:0c:80: c9:6f:66:50:d0:d0:c4:cb:4b:93:ab:f2:12:bb:b2: a6:b4:c9:c7:11:db:89:a4:fe:4e:f1:08:40:18:b7: df:bd:00:71:43:3d:a0:0e:c4:e7:f4:4a:a8:cb:e4: 73:72:c4:a9:70:8e:2c:a3:52:21:ae:16:a0:d4:04: 5a:8c:8c:1d:93:3f:dd:b7:74:15:63:3e:e4:6f:a8: f2:d1:fd:5f:27:29:f7:e0:12:37:01:c0:af:87:6b: 2f:a3:31:c8:6e:5b:9c:a7:e0:1d:bd:0b:4d:28:76: 09:d2:e5:b0:a9:c9:16:47:83:f8:0a:e0:ca:db:cf: cd:8b:e5:ba:a5:83:1c:3e:ac:7e:4c:c3:7b:a1:68: f8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BB:EC:55:DA:BF:06:85:D3:C5:45:2A:D4:3B:D8:0B:93:E2:44:4F X509v3 Authority Key Identifier: keyid:F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:47:ff:eb:5b:13:4b:db:38:f0:f3:45:b6:cc:71:74:01:6a: 5e:f1:1c:ff:cd:0f:d0:da:6e:d7:f0:cb:80:de:57:d8:ae:83: ca:08:6e:99:0b:cc:76:8b:88:23:78:e8:61:81:8e:79:c6:4b: 02:04:3d:52:a1:2c:32:35:8e:8a:3d:36:df:ce:be:13:b0:1f: 46:aa:03:18:c7:30:2e:a4:d1:d8:84:b9:3c:f3:ea:02:5c:c0: 91:0d:6b:6f:39:47:80:89:75:92:eb:61:24:ce:cd:2e:82:ee: 1e:a2:5a:d7:10:0c:d9:00:bc:d4:ba:9a:d3:6d:7a:7a:23:16: 17:d3:4a:c8:a4:6b:33:4e:a8:a8:5f:46:c8:36:22:b9:8e:ea: 0f:da:84:80:24:9f:7a:dd:b1:ea:5b:d9:7e:e8:d1:a4:41:34: 46:14:88:ab:6a:fa:fc:f1:3f:96:c9:f9:cb:a3:c9:4f:28:fa: da:1d:c4:28:e5:d7:81:28:d5:01:75:e7:13:78:26:20:ef:cf: 77:35:5d:08:38:4f:36:1d:b4:45:54:5b:f6:ff:cb:bf:19:b6: b4:37:c5:59:3d:d8:56:95:26:ff:14:f8:2a:45:fe:4f:04:7a: 65:be:a7:ef:69:51:cd:c4:c3:71:a4:a7:8d:d8:c7:a9:8f:83: c2:74:1c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThFQUQxMTAvBgNVBAUTKEYzNzYwOTBERDc5Q0Y2QTI1OUFFMkExNzAyMDM3MkU5 RTYxNjBCQjYwHhcNMjUwNDI0MjAwMzUyWhcNMjUwNTAxMjAwMzUyWjAYMRYwFAYD VQQDEw02ODBhOTkyOC03Mjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00ysJprurbYHWp+Hyvqzcu0Wt2kGnP8kPua6IftZbxaDbYkUq8U34QdcTAVC HnbOJ/0wiRHYaBh8OnTjedSh4ZX6kRSVY29TJty3MVTf+uMT0T6/RtUcjOn3nMos GVA5tUWeo9akrJwtjOAN+V/JQc7GjTzUDIDJb2ZQ0NDEy0uTq/ISu7KmtMnHEduJ pP5O8QhAGLffvQBxQz2gDsTn9Eqoy+RzcsSpcI4so1Ihrhag1ARajIwdkz/dt3QV Yz7kb6jy0f1fJyn34BI3AcCvh2svozHIblucp+AdvQtNKHYJ0uWwqckWR4P4CuDK 28/Ni+W6pYMcPqx+TMN7oWj4KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS77FXa vwaF08VFKtQ72AuT4kRPMB8GA1UdIwQYMBaAFPN2CQ3XnPaiWa4qFwIDcunmFgu2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEVBRC8zQzI0REFEMjhG QUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlxSlpyaW9YQWdOeTZlWVdD N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzWUpEZGVjOXFKWnJpb1hBZ055NmVZV0M3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEVBRC8zQzI0REFEMjhGQUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlx SlpyaW9YQWdOeTZlWVdDN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3R//rWxNL2zjw80W2zHF0AWpe8Rz/zQ/Q2m7X8MuA3lfYroPKCG6Z C8x2i4gjeOhhgY55xksCBD1SoSwyNY6KPTbfzr4TsB9GqgMYxzAupNHYhLk88+oC XMCRDWtvOUeAiXWS62Ekzs0ugu4eolrXEAzZALzUuprTbXp6IxYX00rIpGszTqio X0bINiK5juoP2oSAJJ963bHqW9l+6NGkQTRGFIiravr88T+WyfnLo8lPKPraHcQo 5deBKNUBdecTeCYg7893NV0IOE82HbRFVFv2/8u/Gba0N8VZPdhWlSb/FPgqRf5P BHplvqfvaVHNxMNxpKeN2Mepj4PCdBxX -----END CERTIFICATE-----Generated at Sat Apr 26 05:19:31 2025 by rpki-client