$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: C1wF5kNsZb/QFdhelYZCcf4fWu9S2AmpZPygakxozRY= Subject key identifier: DE:67:1B:A8:91:70:FE:F0:8A:79:6E:BF:DA:B9:D0:5A:92:9C:4B:81 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 0C Signing time: Mon 21 Apr 2025 06:56:09 +0000 Manifest this update: Mon 21 Apr 2025 06:56:08 +0000 Manifest next update: Mon 28 Apr 2025 06:56:08 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: q4nhd/lhUqPX58OPvM4ZOnF8az9Gl55uOTL/L7gswik=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: ctz1y0Mr+YfqZCN/LBNWAf/NG7xW8jY2ZkFpiLOFBtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Apr 21 06:56:08 2025 GMT Not After : Apr 28 06:56:08 2025 GMT Subject: CN=6805ec09-4153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5a:3b:08:58:79:88:25:ad:d4:a8:ac:a2:97: 91:46:0c:00:68:51:87:c7:43:ee:0f:fd:4b:da:3b: 31:90:84:98:7e:7e:e1:95:8f:e1:97:81:ea:dc:ec: 3d:aa:31:78:16:2c:e7:a6:11:d5:39:85:30:b8:7d: 1c:05:4e:6f:3d:be:a4:46:6d:a8:04:c5:98:8a:bc: f9:f7:a4:d5:09:9f:49:20:61:5d:77:f9:1f:fa:43: c0:e9:fb:71:05:71:50:a9:9b:9c:63:8a:6a:aa:54: 75:5d:e2:53:0c:17:de:94:ab:4f:96:83:a6:32:59: 3b:c2:a3:41:2e:f1:df:f1:f4:69:55:4a:34:e5:bc: 5e:72:bc:aa:dc:f1:12:c5:57:b7:09:9f:86:6e:46: fc:97:e7:bf:93:61:cd:57:cc:b9:cd:f2:04:ca:3d: bf:66:ae:80:e1:4f:94:9e:d1:0f:94:dd:b0:13:10: 3a:1e:a9:f5:66:31:0b:08:cb:75:c7:af:8e:f9:aa: fc:91:d0:19:c0:a7:39:08:8b:1a:3f:75:f2:36:59: 77:4b:55:0a:b4:b0:ab:d7:fe:d0:a9:07:30:ff:0f: 20:4e:a0:9b:5d:dc:53:53:19:93:0b:88:b1:30:d1: 27:06:c2:2f:ff:f6:30:84:a6:a0:d9:90:a5:1b:2e: fd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:67:1B:A8:91:70:FE:F0:8A:79:6E:BF:DA:B9:D0:5A:92:9C:4B:81 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:db:d7:9a:20:a7:b9:d4:75:76:d2:15:8d:94:f2:1a:54:d8: 63:6c:19:62:48:12:e2:72:eb:69:75:29:c0:a0:2a:95:1f:61: 16:69:29:e5:6b:b4:42:47:e5:aa:5e:36:e8:ea:e3:90:49:ce: be:bc:12:cf:82:4e:df:a6:d1:1c:9d:de:b6:6f:0f:d9:6e:79: 03:a6:1c:61:98:60:5b:cc:0f:ae:fb:12:bf:0a:bd:78:10:d5: 72:79:51:b4:85:94:7d:c4:e0:45:3f:fc:e8:04:d0:07:88:01: d8:23:9f:a9:25:7b:ac:9c:ee:6a:f3:30:11:e1:d2:82:e7:e5: c2:4d:77:7f:7f:1e:2d:59:16:de:58:8b:8a:01:db:02:94:7c: 2e:dc:ae:15:09:60:39:fd:f6:2d:05:93:f5:8d:11:59:5d:d7: 30:17:01:71:c5:4e:51:fb:f9:d1:8d:57:28:c4:82:5d:89:8f: fd:11:14:71:f7:9b:8a:1e:42:2c:00:9b:44:4d:cf:68:cb:68: 45:d9:c7:6a:50:5b:73:75:87:07:ea:5a:be:11:35:35:97:ac: 6a:ce:b3:34:3a:be:98:08:2d:91:c4:21:e2:df:d3:61:23:ca: db:bc:d6:1d:1e:d6:84:b2:4c:69:2c:e2:82:76:f2:f1:62:85: e0:de:e4:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA0MjEwNjU2MDhaFw0yNTA0MjgwNjU2MDhaMBgxFjAUBgNV BAMTDTY4MDVlYzA5LTQxNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLWjsIWHmIJa3UqKyil5FGDABoUYfHQ+4P/UvaOzGQhJh+fuGVj+GXgerc7D2q MXgWLOemEdU5hTC4fRwFTm89vqRGbagExZiKvPn3pNUJn0kgYV13+R/6Q8Dp+3EF cVCpm5xjimqqVHVd4lMMF96Uq0+Wg6YyWTvCo0Eu8d/x9GlVSjTlvF5yvKrc8RLF V7cJn4ZuRvyX57+TYc1XzLnN8gTKPb9mroDhT5Se0Q+U3bATEDoeqfVmMQsIy3XH r475qvyR0BnApzkIixo/dfI2WXdLVQq0sKvX/tCpBzD/DyBOoJtd3FNTGZMLiLEw 0ScGwi//9jCEpqDZkKUbLv2TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3mcbqJFw /vCKeW6/2rnQWpKcS4EwHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIbb15ogp7nUdXbSFY2U8hpU2GNsGWJIEuJy62l1KcCgKpUfYRZpKeVr tEJH5apeNujq45BJzr68Es+CTt+m0Ryd3rZvD9lueQOmHGGYYFvMD677Er8KvXgQ 1XJ5UbSFlH3E4EU//OgE0AeIAdgjn6kle6yc7mrzMBHh0oLn5cJNd39/Hi1ZFt5Y i4oB2wKUfC7crhUJYDn99i0Fk/WNEVld1zAXAXHFTlH7+dGNVyjEgl2Jj/0RFHH3 m4oeQiwAm0RNz2jLaEXZx2pQW3N1hwfqWr4RNTWXrGrOszQ6vpgILZHEIeLf02Ej ytu81h0e1oSyTGks4oJ28vFiheDe5OM= -----END CERTIFICATE-----Generated at Mon Apr 21 10:51:41 2025 by rpki-client