$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: pR793ARMVP+wfR67ainWoyFFqzVnBXdaewhWY5AHXIM= Subject key identifier: 68:48:24:31:FE:3C:1F:DC:5F:74:62:F2:CC:B1:F4:D9:D7:51:28:47 Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 09A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 099F Signing time: Fri 28 Mar 2025 20:19:51 +0000 Manifest this update: Fri 28 Mar 2025 20:19:50 +0000 Manifest next update: Fri 04 Apr 2025 20:19:50 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: SZtZjCpkHUxsFbRlVA9s1hy+MVVMbPMFanKqKfD/1xw=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2470 (0x9a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1 Validity Not Before: Mar 28 20:19:50 2025 GMT Not After : Apr 4 20:19:50 2025 GMT Subject: CN=67e70467-901b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:de:e5:a7:d0:d0:08:8a:7c:bd:a9:03:19: 88:bb:3f:1e:f8:c8:3c:83:71:9d:41:e1:c1:90:13: d5:5e:bb:f0:d5:1e:03:d2:05:d1:64:79:95:ea:21: df:e9:4b:da:d0:ce:f9:2e:9b:c2:fe:d4:54:a8:7c: f2:64:da:12:4a:6f:57:d0:e5:49:80:4e:26:93:7b: 7d:52:20:18:d8:95:2c:dc:5d:c8:74:58:97:73:db: c2:0a:93:76:09:82:77:44:e5:5e:f6:93:f8:50:0c: bf:4e:00:72:de:58:be:38:ad:c7:88:d6:f0:af:5f: 8b:ff:f2:d7:41:44:57:ba:17:de:fc:d9:a3:af:c3: 0e:b9:07:b2:aa:ba:e5:a7:8c:6f:4c:2c:f6:66:06: 00:88:0a:31:e2:42:38:cd:18:aa:50:ec:98:77:ed: 5d:4d:ba:ad:50:8a:48:62:c6:da:17:d1:b0:22:81: 78:0c:ad:5e:ca:97:bf:83:88:c0:0d:b5:5e:c8:b8: 82:46:46:19:a8:26:c4:b3:13:ca:64:d7:9a:4c:bb: ef:e1:4e:08:83:32:99:4a:a6:b5:64:fe:79:8f:85: 13:75:d7:03:86:8d:0b:4c:24:54:19:b8:ba:0b:fb: d8:a0:27:0c:a5:fa:6c:ae:cf:01:98:e8:b1:2e:e4: da:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:48:24:31:FE:3C:1F:DC:5F:74:62:F2:CC:B1:F4:D9:D7:51:28:47 X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9c:24:64:73:5e:6a:bf:37:0d:c7:ae:5b:54:92:4d:8c:b4: 84:40:c0:e6:20:35:99:f2:8b:ec:51:a3:12:67:39:ba:c4:13: 79:dc:10:c7:8e:c7:ab:e1:c4:dc:0d:67:e7:7d:0c:7a:93:72: 4b:46:c8:b8:94:68:36:42:68:79:96:ad:ae:27:76:df:aa:db: e0:90:39:27:85:34:3f:22:43:e8:16:e5:ad:d3:45:bb:2e:16: 41:bd:01:10:8a:79:4b:45:80:2a:e4:9b:5f:75:73:63:64:ef: c7:c7:c1:31:46:24:46:d4:40:48:f1:07:6b:a6:bc:0d:36:6d: db:4a:4a:d0:1c:75:d0:2d:71:2b:82:98:dd:b5:97:ba:73:0b: 74:b6:99:94:58:f5:ee:7e:d8:9f:c8:54:70:ee:fe:0e:63:c4: 50:3b:2e:fb:67:e5:2e:ae:75:d5:3a:24:66:c6:c6:c0:70:80: 0c:a2:7b:44:26:9d:6a:bb:11:b0:39:d1:af:d6:c6:86:b1:7f: aa:6e:a9:92:6a:0c:91:7e:8c:0d:4c:b0:0c:8a:86:3b:fb:5b: be:36:38:1a:e7:8c:06:1b:4d:c7:50:ed:d6:14:11:3f:5f:c6: a5:94:1d:7d:d0:fe:17:eb:55:9a:95:1d:e9:87:06:51:8b:45: 5b:0a:24:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwMzI4MjAxOTUwWhcNMjUwNDA0MjAxOTUwWjAYMRYwFAYD VQQDEw02N2U3MDQ2Ny05MDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxHe5afQ0AiKfL2pAxmIuz8e+Mg8g3GdQeHBkBPVXrvw1R4D0gXRZHmV6iHf 6Uva0M75LpvC/tRUqHzyZNoSSm9X0OVJgE4mk3t9UiAY2JUs3F3IdFiXc9vCCpN2 CYJ3ROVe9pP4UAy/TgBy3li+OK3HiNbwr1+L//LXQURXuhfe/Nmjr8MOuQeyqrrl p4xvTCz2ZgYAiAox4kI4zRiqUOyYd+1dTbqtUIpIYsbaF9GwIoF4DK1eype/g4jA DbVeyLiCRkYZqCbEsxPKZNeaTLvv4U4IgzKZSqa1ZP55j4UTddcDho0LTCRUGbi6 C/vYoCcMpfpsrs8BmOixLuTaqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhIJDH+ PB/cX3Ri8syx9NnXUShHMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9nCRkc15qvzcNx65bVJJNjLSEQMDmIDWZ8ovsUaMSZzm6xBN53BDH jser4cTcDWfnfQx6k3JLRsi4lGg2Qmh5lq2uJ3bfqtvgkDknhTQ/IkPoFuWt00W7 LhZBvQEQinlLRYAq5JtfdXNjZO/Hx8ExRiRG1EBI8QdrprwNNm3bSkrQHHXQLXEr gpjdtZe6cwt0tpmUWPXuftifyFRw7v4OY8RQOy77Z+UurnXVOiRmxsbAcIAMontE Jp1quxGwOdGv1saGsX+qbqmSagyRfowNTLAMioY7+1u+Njga54wGG03HUO3WFBE/ X8allB190P4X61WalR3phwZRi0VbCiTZ -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:54 2025 by rpki-client