$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: JlVwYWTZKPe/xPGgg+sYYGnK2XPWvEcd9ni7v2kXPQk= Subject key identifier: 55:3F:0A:63:F9:E3:4F:D7:E7:A3:FD:99:03:9C:A0:C7:53:8E:A3:73 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E03 Signing time: Wed 14 May 2025 17:58:25 +0000 Manifest this update: Wed 14 May 2025 17:58:24 +0000 Manifest next update: Wed 21 May 2025 17:58:24 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: WsCo8I4VStEO2OTz6eTFoNHKRDgL+H58I4IEYjYab4s=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3614 (0xe1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: May 14 17:58:24 2025 GMT Not After : May 21 17:58:24 2025 GMT Subject: CN=6824d9c1-449c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:99:4d:59:43:41:1f:5c:e7:92:09:05:43: df:0c:82:21:8c:74:86:28:0f:29:4f:16:8e:d1:db: c2:87:17:a2:98:ea:c1:77:7a:08:68:27:9e:74:e9: b9:0f:19:8c:b5:f1:64:6a:d9:05:82:23:32:05:fb: 9d:1e:cb:c7:ab:a0:84:33:c7:d7:aa:e0:2e:63:1d: 33:32:f1:d8:f1:74:dc:3d:d5:61:c3:c9:f4:91:b4: fd:20:00:be:f8:bf:35:85:0b:05:4e:9a:66:dd:d6: 2a:5f:6c:3c:a0:e7:b6:2f:32:83:ac:f9:72:f3:e7: 7f:bd:e0:9e:42:1f:c5:9c:5f:ce:71:0e:49:7d:09: 97:82:06:bc:a6:47:82:11:9b:89:b8:84:0a:80:98: dc:99:d0:8a:b5:ff:f7:2f:54:f8:8c:5c:1e:12:23: f8:3b:ff:63:4a:73:00:25:05:f3:7b:54:5f:ea:81: bb:3d:81:40:74:5a:04:02:0a:2a:a3:24:7e:af:55: 9a:a8:9a:0d:8e:d5:9c:46:a7:a2:be:ae:d3:3f:d4: e2:1e:ef:ce:6a:f0:9c:63:45:70:d3:2c:95:40:99: 35:64:be:14:5c:b4:74:2d:af:64:6f:e6:f5:23:69: 18:66:e6:4d:38:06:7b:90:01:0b:78:92:e0:9e:20: 9f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3F:0A:63:F9:E3:4F:D7:E7:A3:FD:99:03:9C:A0:C7:53:8E:A3:73 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:14:75:36:ad:b5:3b:ae:e8:5d:f8:24:24:fb:7c:d8:f3:b0: 8a:c2:a6:f1:82:fb:5d:f3:4f:63:49:25:cd:3f:7e:e3:b6:23: 26:02:6a:23:02:a0:19:88:c2:57:f7:72:68:a5:2d:c0:c2:78: f0:d2:4f:7a:78:cb:c3:18:43:07:a5:45:ca:29:72:4a:ee:5c: f0:c4:69:55:7c:72:b5:bb:0d:5a:a2:fc:c9:02:10:35:f3:65: 65:ee:bd:f4:a1:4a:06:2a:86:94:ce:62:e3:08:46:0d:7c:db: 14:25:44:43:b3:08:b4:43:f6:8c:0c:6f:bc:7f:eb:ff:2a:21: 1a:41:32:3d:2b:b7:77:df:f7:8b:36:f3:c9:a7:95:26:9f:04: 80:f6:ba:9d:ce:5d:42:45:4f:6a:08:8c:51:98:c7:41:2e:bd: b2:2d:1f:80:1e:7e:3e:07:5b:26:7f:5b:bc:e5:0d:49:5d:b7: d2:70:e5:e3:0f:34:98:30:a2:70:a4:cc:ec:5d:9b:48:21:74: c5:74:11:d8:53:5b:89:c7:9b:60:42:22:3f:f3:e2:1e:2f:0a: 32:35:e0:9b:d1:20:10:da:d0:dc:f1:c5:d8:57:64:b9:8f:b9: db:aa:f2:e3:41:f4:bf:4f:74:03:7e:16:58:df:4e:54:26:84: f7:02:9c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwNTE0MTc1ODI0WhcNMjUwNTIxMTc1ODI0WjAYMRYwFAYD VQQDEw02ODI0ZDljMS00NDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI2ZTVlDQR9c55IJBUPfDIIhjHSGKA8pTxaO0dvChxeimOrBd3oIaCeedOm5 DxmMtfFkatkFgiMyBfudHsvHq6CEM8fXquAuYx0zMvHY8XTcPdVhw8n0kbT9IAC+ +L81hQsFTppm3dYqX2w8oOe2LzKDrPly8+d/veCeQh/FnF/OcQ5JfQmXgga8pkeC EZuJuIQKgJjcmdCKtf/3L1T4jFweEiP4O/9jSnMAJQXze1Rf6oG7PYFAdFoEAgoq oyR+r1WaqJoNjtWcRqeivq7TP9TiHu/OavCcY0Vw0yyVQJk1ZL4UXLR0La9kb+b1 I2kYZuZNOAZ7kAELeJLgniCfGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFU/CmP5 40/X56P9mQOcoMdTjqNzMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDFHU2rbU7ruhd+CQk+3zY87CKwqbxgvtd809jSSXNP37jtiMmAmoj AqAZiMJX93JopS3Awnjw0k96eMvDGEMHpUXKKXJK7lzwxGlVfHK1uw1aovzJAhA1 82Vl7r30oUoGKoaUzmLjCEYNfNsUJURDswi0Q/aMDG+8f+v/KiEaQTI9K7d33/eL NvPJp5UmnwSA9rqdzl1CRU9qCIxRmMdBLr2yLR+AHn4+B1smf1u85Q1JXbfScOXj DzSYMKJwpMzsXZtIIXTFdBHYU1uJx5tgQiI/8+IeLwoyNeCb0SAQ2tDc8cXYV2S5 j7nbqvLjQfS/T3QDfhZY305UJoT3Apxm -----END CERTIFICATE-----Generated at Fri May 16 12:03:23 2025 by rpki-client