$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: e3BfJPIU2KohAYdSXtNzPZFI/7PKypF5Orcafi65dxQ= Subject key identifier: 41:54:14:B9:C3:D8:8C:C9:4A:F8:60:CB:51:93:04:86:47:E0:81:DB Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 0191 Signing time: Sat 29 Mar 2025 03:02:25 +0000 Manifest this update: Sat 29 Mar 2025 03:02:25 +0000 Manifest next update: Sat 05 Apr 2025 03:02:25 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: 0sjeeBn4CBPG+RdOXgpZH+wJAjiqux2ES4w8v+bisHg=) 2: B1335F1AC56A11ED9C305A33C4F9AE02.roa (hash: xgbES0ex3GdKtSSPoPs5HQUTvXl7g1+/YUUyrUA3DJY=) 3: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (hash: +RO07JHGmdi0Lx5cV1Zx6lUdug7RiXfOSxrsmEM5WK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310 Validity Not Before: Mar 29 03:02:25 2025 GMT Not After : Apr 5 03:02:25 2025 GMT Subject: CN=67e762c1-ebf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:25:ac:27:6d:f5:04:3f:89:54:ec:6b:ec:b2: df:9e:1b:4f:cb:4e:5d:ae:ff:16:69:10:f4:f8:2d: 09:71:b5:62:ee:37:de:a1:8a:01:ed:b9:b3:26:92: 61:8c:6e:ec:85:66:07:ab:70:78:4d:70:86:31:fe: 38:a2:d9:b1:5d:b3:69:87:f9:4e:79:b9:63:b3:af: 53:e6:f1:2d:ca:b9:3c:b4:ea:92:c0:0c:09:22:26: e9:bb:0c:c2:5c:6b:33:2c:77:08:f6:03:d6:e1:a5: 54:23:59:87:11:9b:71:0e:77:eb:1e:dd:24:32:dd: 3c:de:a9:1c:ec:3a:53:b9:1b:80:0d:b4:7d:00:df: 7e:77:27:f5:a1:90:52:40:61:8c:a4:13:76:44:f6: 43:6f:d3:33:49:66:cc:ac:dc:86:13:9a:59:0f:f2: 47:7e:74:2d:20:d1:b5:2e:99:da:c0:51:92:24:ca: 39:31:6f:e2:f8:10:10:ec:69:a5:9a:55:a3:35:0c: ae:90:5c:cb:d4:da:84:3d:02:02:d3:5f:01:a7:be: 7c:fa:19:1e:9e:2a:3c:5a:c7:6b:61:77:42:2b:af: bf:06:03:ab:9d:a5:97:83:bf:d8:69:2d:ea:04:d7: 09:13:81:82:33:f5:d5:55:f7:4c:9c:c6:52:12:d8: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:54:14:B9:C3:D8:8C:C9:4A:F8:60:CB:51:93:04:86:47:E0:81:DB X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:11:3c:e5:23:76:99:1c:75:02:51:e0:2c:92:78:5c:04:99: ca:67:b7:88:14:bc:29:e1:ec:ea:77:43:45:64:e1:63:38:b6: 17:fd:82:73:ee:58:e2:9b:f8:14:af:0f:5a:5d:6c:f0:d3:18: 56:f6:25:fc:b4:0e:43:5d:7d:2c:e7:6a:d2:82:e8:ba:7e:86: ff:b4:79:b3:d6:7d:b5:e1:4a:ed:d0:ab:b4:7a:f2:eb:72:d3: 86:61:9b:1a:fe:00:a0:b5:9c:ec:57:0e:84:01:ff:b9:ed:4c: 9b:b7:38:a8:7d:f3:b9:08:38:95:f3:98:bd:01:93:1a:2a:d3: ee:cf:26:53:53:a5:aa:23:ee:85:9b:e9:ea:59:be:e6:7f:14: 6a:fd:7f:62:5a:e3:5a:c6:3b:30:2d:f1:b0:fa:4a:55:f9:48: 66:f9:c4:75:ae:26:21:99:a7:82:17:81:a1:ac:65:8c:59:f5: 3b:ca:cc:7e:aa:ab:ad:39:ae:83:2d:18:ed:02:7d:a8:0a:15: 32:92:06:2f:e0:78:a5:d5:f0:a9:2b:cc:5c:da:43:ac:ed:58: 51:e4:dd:82:e4:05:59:85:26:16:66:51:54:6c:28:c8:81:24: 2a:99:fa:de:a0:00:d0:c4:be:7d:b1:13:35:11:d8:cd:a7:6f: 07:fd:00:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwMzI5MDMwMjI1WhcNMjUwNDA1MDMwMjI1WjAYMRYwFAYD VQQDEw02N2U3NjJjMS1lYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CWsJ231BD+JVOxr7LLfnhtPy05drv8WaRD0+C0JcbVi7jfeoYoB7bmzJpJh jG7shWYHq3B4TXCGMf44otmxXbNph/lOebljs69T5vEtyrk8tOqSwAwJIibpuwzC XGszLHcI9gPW4aVUI1mHEZtxDnfrHt0kMt083qkc7DpTuRuADbR9AN9+dyf1oZBS QGGMpBN2RPZDb9MzSWbMrNyGE5pZD/JHfnQtING1LpnawFGSJMo5MW/i+BAQ7Gml mlWjNQyukFzL1NqEPQIC018Bp758+hkenio8WsdrYXdCK6+/BgOrnaWXg7/YaS3q BNcJE4GCM/XVVfdMnMZSEtgJGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFUFLnD 2IzJSvhgy1GTBIZH4IHbMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrETzlI3aZHHUCUeAsknhcBJnKZ7eIFLwp4ezqd0NFZOFjOLYX/YJz 7ljim/gUrw9aXWzw0xhW9iX8tA5DXX0s52rSgui6fob/tHmz1n214Urt0Ku0evLr ctOGYZsa/gCgtZzsVw6EAf+57UybtzioffO5CDiV85i9AZMaKtPuzyZTU6WqI+6F m+nqWb7mfxRq/X9iWuNaxjswLfGw+kpV+Uhm+cR1riYhmaeCF4GhrGWMWfU7ysx+ qqutOa6DLRjtAn2oChUykgYv4Hil1fCpK8xc2kOs7VhR5N2C5AVZhSYWZlFUbCjI gSQqmfreoADQxL59sRM1EdjNp28H/QAC -----END CERTIFICATE-----Generated at Fri Apr 4 21:17:24 2025 by rpki-client