$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft File: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft (raw, json) Hash identifier: vaqUbYzhaWR+Sxg/VY4Px05yEgiBv/8F2G0FQ7a75NQ= Subject key identifier: 9F:17:B7:CB:16:E5:1C:0A:FE:34:AB:C3:37:0A:2A:47:52:C3:C7:74 Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 0AB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft Manifest number: 0AAB Signing time: Thu 24 Apr 2025 19:24:32 +0000 Manifest this update: Thu 24 Apr 2025 19:24:31 +0000 Manifest next update: Thu 01 May 2025 19:24:31 +0000 Files and hashes: 1: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl (hash: hHerVYLLyoqk36O3suX5j2qqiQhMigvHLCxFcwXvXyg=) 2: EF44A44E51EB11EABC11800DC4F9AE02.roa (hash: wVjOHBRTAFBzywxmlgqw2C8A1H3crVXb96hs+TBB5RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2742 (0xab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378, serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Apr 24 19:24:31 2025 GMT Not After : May 1 19:24:31 2025 GMT Subject: CN=680a8fef-d89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:17:99:2d:b8:0e:35:e5:44:9a:ce:ce:1e:e8: 6b:f5:f0:97:45:ea:36:1f:68:43:bf:9a:90:8b:e2: c9:57:58:18:90:b1:ab:e6:cd:bc:85:85:6b:6b:b7: 49:b4:e4:10:3f:6b:d8:e6:e7:92:25:d2:2b:9d:98: ea:3a:66:e9:2b:e4:aa:8a:ac:a6:9d:9d:25:86:4a: c3:6f:2f:4f:4b:f5:c2:60:19:45:17:0a:07:94:bc: e7:fa:cd:6d:3f:31:a2:d0:3c:fb:78:33:22:43:7f: bc:1f:89:ec:46:9b:ce:91:28:6d:fd:92:0f:54:96: bc:dc:95:45:c9:93:dc:60:bf:ea:4e:f4:37:5f:9d: f6:fe:72:d1:05:3b:65:9c:aa:1b:64:c0:12:b2:97: 2c:98:6e:3f:ec:3c:0c:2d:64:76:8d:53:a2:7a:4c: 48:5e:18:59:0e:69:c4:35:14:c2:9d:4a:d9:29:03: e8:ea:09:7f:cb:4a:a3:f6:d3:54:76:0e:20:df:4f: fd:da:ad:bc:f9:a8:e9:8e:cc:45:3c:ba:5e:0d:f0: a5:b1:7e:0d:45:24:9f:02:71:0d:b7:d9:42:fd:c9: 6c:e1:6b:0f:fe:f4:19:7d:e0:a0:f5:de:96:c2:1d: a4:6b:ac:06:d2:4b:e9:24:17:af:82:7f:e5:a8:ef: db:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:17:B7:CB:16:E5:1C:0A:FE:34:AB:C3:37:0A:2A:47:52:C3:C7:74 X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:0d:7c:4c:63:a3:04:7e:c4:c5:31:a5:e6:4c:56:a2:17:4d: 39:c2:07:55:6d:8e:c7:f1:cb:dc:07:ee:b4:d6:8e:39:be:a6: a5:fe:03:49:c5:7d:b5:74:f1:b7:21:70:b4:a1:dc:89:15:81: d8:b6:19:a6:da:71:cf:df:08:3b:ee:b8:9b:b5:f1:02:e0:58: 62:3a:f8:1c:6b:bb:7d:2f:00:8c:b8:49:a5:96:b7:54:5b:34: 76:51:01:76:64:b2:4d:7c:8f:21:2b:d6:c1:fe:bb:2f:d7:3e: 69:81:53:d6:43:88:f5:cc:ef:53:41:9a:5b:86:6b:9b:77:fd: 1c:31:d5:2d:a2:ba:75:72:8f:2e:b4:b3:94:e3:83:42:ba:86: 8d:49:a3:42:17:ba:a4:2e:c3:b5:79:fe:5f:e5:1d:3d:43:92: 04:a3:b3:bb:f4:53:17:39:ea:99:61:d6:39:07:f2:9c:40:a4: 03:c4:ec:53:91:34:f3:6f:27:16:97:bc:5d:26:23:ed:66:7b: c2:cd:8f:d6:ff:93:cc:ee:3a:4e:d3:88:fd:74:47:aa:b1:65: 65:1a:5a:4c:9b:ac:e1:79:80:f3:fb:8e:31:01:32:9b:e5:c6: be:eb:a4:40:76:0e:f3:e4:66:cf:8a:f7:e9:af:0b:c4:23:d6: 0d:f2:c4:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjUwNDI0MTkyNDMxWhcNMjUwNTAxMTkyNDMxWjAYMRYwFAYD VQQDEw02ODBhOGZlZi1kODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxeZLbgONeVEms7OHuhr9fCXReo2H2hDv5qQi+LJV1gYkLGr5s28hYVra7dJ tOQQP2vY5ueSJdIrnZjqOmbpK+SqiqymnZ0lhkrDby9PS/XCYBlFFwoHlLzn+s1t PzGi0Dz7eDMiQ3+8H4nsRpvOkSht/ZIPVJa83JVFyZPcYL/qTvQ3X532/nLRBTtl nKobZMASspcsmG4/7DwMLWR2jVOiekxIXhhZDmnENRTCnUrZKQPo6gl/y0qj9tNU dg4g30/92q28+ajpjsxFPLpeDfClsX4NRSSfAnENt9lC/cls4WsP/vQZfeCg9d6W wh2ka6wG0kvpJBevgn/lqO/b2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8Xt8sW 5RwK/jSrwzcKKkdSw8d0MB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM3OC82MzJGQThDRTUxRUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJM d2h0bmo1R0k3TTVkdk4xTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1DXxMY6MEfsTFMaXmTFaiF005wgdVbY7H8cvcB+601o45vqal/gNJ xX21dPG3IXC0odyJFYHYthmm2nHP3wg77ribtfEC4FhiOvgca7t9LwCMuEmllrdU WzR2UQF2ZLJNfI8hK9bB/rsv1z5pgVPWQ4j1zO9TQZpbhmubd/0cMdUtorp1co8u tLOU44NCuoaNSaNCF7qkLsO1ef5f5R09Q5IEo7O79FMXOeqZYdY5B/KcQKQDxOxT kTTzbycWl7xdJiPtZnvCzY/W/5PM7jpO04j9dEeqsWVlGlpMm6zheYDz+44xATKb 5ca+66RAdg7z5GbPivfprwvEI9YN8sRK -----END CERTIFICATE-----Generated at Sat Apr 26 03:42:17 2025 by rpki-client