$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: wsKdoYa6Arpj41lbAJgECvpBrAhqHL9/Xyr5HS0bHMI= Subject key identifier: F3:79:21:31:2A:AE:F6:18:F4:FB:FF:C3:16:17:8B:91:05:29:9D:B0 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07A3 Signing time: Mon 12 May 2025 21:01:11 +0000 Manifest this update: Mon 12 May 2025 21:01:10 +0000 Manifest next update: Mon 19 May 2025 21:01:10 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: 0DiNa+wDEC1XuykZWdButlZFgea4xb7lkLkuaaEMD2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: May 12 21:01:10 2025 GMT Not After : May 19 21:01:10 2025 GMT Subject: CN=68226197-9310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:c2:1f:a1:41:e2:d6:59:ce:7d:be:27:5f: e3:b9:0e:29:84:71:5c:fd:81:68:3a:1b:75:d6:85: 95:01:f5:32:ea:bf:53:19:5f:27:c2:b6:eb:5c:d4: 5c:f7:72:d5:55:52:39:0c:6e:cb:24:1b:38:01:8c: db:78:c5:6f:0f:e6:82:57:0f:d9:c5:70:5e:16:62: 8d:33:9c:0b:fe:05:7b:1e:96:65:9a:71:c7:82:11: 9c:0f:e4:f5:50:bc:30:99:52:9b:69:6d:a8:f5:4e: 39:c1:c4:8b:56:0c:a5:8d:c3:66:77:88:a3:a9:b5: c8:31:7b:f8:1a:90:48:40:80:62:36:9a:db:6a:8c: cc:95:3b:b9:70:95:c1:5e:9b:40:06:56:3b:9a:cf: 84:a0:db:d1:20:d8:d2:75:e9:79:b9:75:16:6c:13: 18:c9:68:33:45:91:d0:82:2b:df:e3:5d:87:2e:f2: c9:77:99:f1:29:68:c7:45:9a:93:00:00:52:47:9d: a2:c3:12:8f:2b:e4:04:2a:26:76:5c:97:9b:90:33: 63:7e:08:24:71:32:3c:41:a6:54:22:ba:de:65:e0: c0:a8:3e:b5:bd:cb:a3:76:8f:86:db:36:34:5a:5a: 24:fe:43:95:ee:0a:f8:ee:8f:55:7e:5e:cc:30:a5: c9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:79:21:31:2A:AE:F6:18:F4:FB:FF:C3:16:17:8B:91:05:29:9D:B0 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:e3:87:bb:ba:39:58:d1:55:3e:8a:54:7b:8a:d9:87:50:31: 8c:f4:ce:f0:57:31:13:cd:54:ea:85:5a:95:4a:af:f1:6c:d8: e3:41:b2:ed:a1:8f:1e:df:c3:62:ab:dd:2e:7d:c8:f2:11:20: 1e:86:f8:3a:96:1f:95:0a:3c:eb:a4:d2:b1:bf:0c:01:74:7c: da:f0:3c:a4:4a:9f:ec:6c:c6:b2:68:da:0c:c4:59:5d:3f:e4: 90:00:45:d2:4e:f8:d9:8e:e1:2c:98:b4:8d:b1:93:33:07:bd: 85:5b:d1:49:db:01:32:9b:01:c0:30:9c:87:6c:3e:a9:75:9c: 16:67:6b:19:7b:20:69:b9:e2:56:7a:48:7c:6e:a5:d8:b0:fc: 08:52:a2:19:81:e5:38:78:e5:c5:bd:fa:8c:d8:a3:89:b2:e2: b6:a9:ba:4e:0a:c6:49:e0:30:62:54:6c:3b:a5:75:96:a8:df: 76:61:22:af:7a:06:50:04:57:9d:15:ad:97:f4:f8:a6:50:a6: 6d:16:18:d8:e9:6d:e0:0b:4a:27:91:a8:6f:f0:cf:ce:88:0e: 98:ea:26:fe:94:d8:8e:00:d4:6b:d6:7d:e2:a7:b5:c7:da:e9: 8f:4b:d7:49:1b:7e:1a:7f:50:4b:1e:73:c0:7b:17:5c:fd:8c: 89:fd:cc:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwNTEyMjEwMTEwWhcNMjUwNTE5MjEwMTEwWjAYMRYwFAYD VQQDEw02ODIyNjE5Ny05MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvnCH6FB4tZZzn2+J1/juQ4phHFc/YFoOht11oWVAfUy6r9TGV8nwrbrXNRc 93LVVVI5DG7LJBs4AYzbeMVvD+aCVw/ZxXBeFmKNM5wL/gV7HpZlmnHHghGcD+T1 ULwwmVKbaW2o9U45wcSLVgyljcNmd4ijqbXIMXv4GpBIQIBiNprbaozMlTu5cJXB XptABlY7ms+EoNvRINjSdel5uXUWbBMYyWgzRZHQgivf412HLvLJd5nxKWjHRZqT AABSR52iwxKPK+QEKiZ2XJebkDNjfggkcTI8QaZUIrreZeDAqD61vcujdo+G2zY0 Wlok/kOV7gr47o9Vfl7MMKXJtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN5ITEq rvYY9Pv/wxYXi5EFKZ2wMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU44e7ujlY0VU+ilR7itmHUDGM9M7wVzETzVTqhVqVSq/xbNjjQbLt oY8e38Niq90ufcjyESAehvg6lh+VCjzrpNKxvwwBdHza8DykSp/sbMayaNoMxFld P+SQAEXSTvjZjuEsmLSNsZMzB72FW9FJ2wEymwHAMJyHbD6pdZwWZ2sZeyBpueJW ekh8bqXYsPwIUqIZgeU4eOXFvfqM2KOJsuK2qbpOCsZJ4DBiVGw7pXWWqN92YSKv egZQBFedFa2X9PimUKZtFhjY6W3gC0onkahv8M/OiA6Y6ib+lNiOANRr1n3ip7XH 2umPS9dJG34af1BLHnPAexdc/YyJ/cw0 -----END CERTIFICATE-----Generated at Wed May 14 18:23:22 2025 by rpki-client