$ rpki-client -vvf rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft File: I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft (raw, json) Hash identifier: ykJnmP0BrKMwRBS3/e+PstY3+qt5JUi6wn2SLBNPbfw= Subject key identifier: 33:94:19:D5:3E:32:C7:8E:6C:52:1D:87:B3:B0:46:78:20:8D:3F:57 Authority key identifier: 23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 Certificate issuer: /CN=A91122B3/serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft Manifest number: 75 Signing time: Sat 29 Mar 2025 06:06:08 +0000 Manifest this update: Sat 29 Mar 2025 06:06:08 +0000 Manifest next update: Sat 05 Apr 2025 06:06:08 +0000 Files and hashes: 1: I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl (hash: C3m3GzPBcHaikT4Wn3J4mLJp+/D++nxgfttt1N52PHE=) 2: AA5E96065B9F11EF9F1B175DC4F9AE02.roa (hash: /YYAM/ja0JhV/6iA5BWq6W3oPILiMBn35Hx66aO0FaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91122B3 Validity Not Before: Mar 29 06:06:08 2025 GMT Not After : Apr 5 06:06:08 2025 GMT Subject: CN=67e78dd0-3ca2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:76:b6:42:54:f7:cf:b9:9e:22:1f:c9:51:de: b9:e2:bb:84:77:10:2d:6c:d2:1b:2d:86:7a:32:23: 89:ef:ca:4b:04:8e:ed:b6:53:5c:3c:73:7d:2b:ed: 5d:5c:5b:6a:3d:b4:c8:1a:67:06:d7:98:66:e2:07: 16:79:81:29:cf:49:8e:97:96:ff:3e:4a:b7:25:ac: 69:6e:7c:a8:37:cf:bd:3b:d2:64:69:fc:51:da:58: 62:0f:0d:f8:a3:13:b4:c0:6d:f2:6a:41:2a:b5:07: 22:c2:d1:21:d8:4f:e3:74:c3:6c:32:73:00:dc:20: 43:4f:3e:13:37:8a:27:16:a9:e8:4a:bf:02:49:93: 44:2a:e5:77:82:9a:35:56:0a:64:1f:cb:21:67:b5: eb:e3:0e:19:da:0c:ac:1d:81:c9:5f:61:20:df:13: ab:45:5e:4a:ca:f5:90:31:4b:db:5e:6e:85:7e:61: 9b:2c:ee:5d:68:d7:05:c3:f9:80:76:a1:00:6c:17: 37:7f:06:f0:d0:64:db:19:8b:84:d8:78:66:31:22: 34:fd:8a:8f:82:ee:d4:3c:d1:eb:ed:2e:9a:10:f3: 83:e7:16:7a:e7:4a:47:20:56:0b:58:55:57:f6:16: bd:40:4a:2a:4f:bb:1a:59:77:72:3a:c1:d8:53:48: f6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:94:19:D5:3E:32:C7:8E:6C:52:1D:87:B3:B0:46:78:20:8D:3F:57 X509v3 Authority Key Identifier: keyid:23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:62:0d:37:d9:4f:aa:95:35:58:5d:2b:8e:4f:d7:ce:de:c9: 15:8a:9e:3c:72:e4:3c:d0:22:8d:7c:b7:f3:e5:5d:0a:86:d6: 67:18:39:60:fe:5c:8a:f1:e8:c7:06:97:9c:13:c4:42:4e:71: 80:34:f1:0e:9c:7b:da:59:80:2a:e4:43:56:a9:ea:2b:c6:9c: 99:45:97:8f:b1:dd:73:8b:69:ba:23:e0:c2:c7:ea:8b:a0:11: fd:55:c7:24:ab:e5:a0:67:53:e1:20:a5:fb:82:c8:b0:27:b7: 34:2d:33:0c:9d:8e:9c:60:e5:4d:f8:e7:04:79:53:28:d5:4d: ae:70:73:3b:18:1f:bb:9d:4d:6b:e7:0b:23:b6:a5:72:bf:b0: 1d:d2:2f:44:21:69:c8:30:5b:7d:b4:f1:3d:e3:93:9e:63:fb: 50:c1:b8:8d:46:8f:8a:13:d2:c4:2e:22:bd:f0:0a:07:df:15: 12:07:52:15:22:31:b3:a2:7b:dc:a5:8e:7d:65:61:f1:2d:30: 0c:a8:ae:49:73:b8:92:98:88:7a:9f:13:cf:22:55:77:fb:33: 39:44:36:3c:c0:a4:ec:af:52:48:0d:e6:c5:78:88:fc:96:a5: 48:0c:98:02:e9:fd:1b:40:46:30:29:a1:6e:bf:af:25:d2:0b: d9:6b:ee:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MjJCMzExMC8GA1UEBRMoMjNDMEIyRDdBQ0UxMDlEM0RGRTgzQUVCRUYyRUEzMTQ5 QzVDQUMxNzAeFw0yNTAzMjkwNjA2MDhaFw0yNTA0MDUwNjA2MDhaMBgxFjAUBgNV BAMTDTY3ZTc4ZGQwLTNjYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7drZCVPfPuZ4iH8lR3rniu4R3EC1s0hsthnoyI4nvyksEju22U1w8c30r7V1c W2o9tMgaZwbXmGbiBxZ5gSnPSY6Xlv8+SrclrGlufKg3z7070mRp/FHaWGIPDfij E7TAbfJqQSq1ByLC0SHYT+N0w2wycwDcIENPPhM3iicWqehKvwJJk0Qq5XeCmjVW CmQfyyFntevjDhnaDKwdgclfYSDfE6tFXkrK9ZAxS9teboV+YZss7l1o1wXD+YB2 oQBsFzd/BvDQZNsZi4TYeGYxIjT9io+C7tQ80evtLpoQ84PnFnrnSkcgVgtYVVf2 Fr1ASipPuxpZd3I6wdhTSPZFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM5QZ1T4y x45sUh2Hs7BGeCCNP1cwHwYDVR0jBBgwFoAUI8Cy16zhCdPf6Drr7y6jFJxcrBcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyMkIzLzVFNEQ0NzYyNUI5 RjExRUZBMTRCQkI1Q0M0RjlBRTAyL0k4Q3kxNnpoQ2RQZjZEcnI3eTZqRkp4Y3JC Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSThDeTE2emhDZFBmNkRycjd5NmpGSnhjckJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy MkIzLzVFNEQ0NzYyNUI5RjExRUZBMTRCQkI1Q0M0RjlBRTAyL0k4Q3kxNnpoQ2RQ ZjZEcnI3eTZqRkp4Y3JCYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhiDTfZT6qVNVhdK45P187eyRWKnjxy5DzQIo18t/PlXQqG1mcYOWD+ XIrx6McGl5wTxEJOcYA08Q6ce9pZgCrkQ1ap6ivGnJlFl4+x3XOLaboj4MLH6oug Ef1VxySr5aBnU+EgpfuCyLAntzQtMwydjpxg5U345wR5UyjVTa5wczsYH7udTWvn CyO2pXK/sB3SL0QhacgwW3208T3jk55j+1DBuI1Gj4oT0sQuIr3wCgffFRIHUhUi MbOie9yljn1lYfEtMAyorklzuJKYiHqfE88iVXf7MzlENjzApOyvUkgN5sV4iPyW pUgMmALp/RtARjApoW6/ryXSC9lr7mU= -----END CERTIFICATE-----Generated at Fri Apr 4 21:17:22 2025 by rpki-client