$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: PGiiuPmNO63fpOj+GZuoT0nv0zKg3WU+fFaTBDN0ByI= Subject key identifier: CB:CF:2C:BE:D5:3D:D1:DC:2E:79:09:B9:91:E8:F2:D2:88:2F:E3:9A Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 014B Signing time: Sat 29 Mar 2025 03:39:52 +0000 Manifest this update: Sat 29 Mar 2025 03:39:51 +0000 Manifest next update: Sat 05 Apr 2025 03:39:51 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: Ol8Te1xpWaIOyUnuitJ+q/qDchSYybybZ8vxQaDe/0I=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: LEuGWO/AHJLUDwLeABLdjtuQr5+JNGq1678nn2RoAyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED Validity Not Before: Mar 29 03:39:51 2025 GMT Not After : Apr 5 03:39:51 2025 GMT Subject: CN=67e76b88-8e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:67:70:92:4d:6d:03:ff:6c:de:64:43:d7:af: d9:4d:7a:a3:e5:49:2e:81:2d:c0:b0:53:4d:46:42: 34:bc:3b:a6:6a:40:21:cd:be:1f:84:7d:6e:89:20: fe:93:24:d2:0c:f4:3e:ec:ea:b8:7a:08:f2:1e:04: 20:3f:52:29:7c:5a:88:ff:e7:83:ab:ee:5d:95:85: ce:40:dd:5f:74:17:4a:37:43:6e:c0:93:9e:05:1e: 5d:c1:dd:f7:f2:4d:05:cd:bc:60:cc:07:6f:7c:ba: 78:e5:39:fc:6e:27:1d:a3:48:04:23:7d:eb:bb:bd: b6:86:a9:d4:cb:71:e7:68:66:74:0b:41:78:09:c2: f7:f6:2a:04:29:10:58:89:07:4c:d1:be:0f:14:22: 55:13:92:ab:dd:63:74:9b:ab:85:38:5a:31:ff:1f: 75:e6:c6:92:6f:13:62:f0:96:56:3d:55:96:81:76: 8d:a0:09:98:c9:38:18:2d:f1:55:5e:94:62:c8:93: 1f:96:a9:2b:ba:83:54:3f:79:63:e5:5b:c0:99:8a: 34:b6:61:d2:a3:31:38:59:a7:d6:16:f2:d2:94:6f: fe:6c:b3:8f:9d:4b:48:23:0b:10:fc:c5:6f:04:20: 3c:db:fd:0d:6c:27:20:63:03:43:75:c6:5b:68:65: 81:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CF:2C:BE:D5:3D:D1:DC:2E:79:09:B9:91:E8:F2:D2:88:2F:E3:9A X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:84:a9:54:56:38:1a:bb:44:4e:b9:1b:58:73:c8:a2:a3:33: b7:ea:eb:a4:f5:b7:77:7e:17:4e:c5:69:57:7d:e2:0a:53:ed: ea:0e:4f:32:48:62:a7:1b:c6:f9:f1:a4:d9:90:a6:39:4c:66: 88:80:a4:9a:8d:bf:6a:0e:45:76:41:19:90:14:5b:9c:18:be: 9b:fe:75:b1:30:d0:d2:54:8a:2b:1e:2c:61:0d:fe:5e:6e:09: 54:fa:68:d1:54:8e:dd:5e:74:78:b7:ae:bd:55:52:51:d2:8d: 24:c3:3b:ae:37:b5:81:6d:1a:37:bf:ac:91:b9:27:4f:50:bf: f9:ce:6b:74:df:d4:8d:e8:bc:7b:f8:73:6d:10:8c:59:aa:c7: 61:05:f0:fb:e4:d0:b1:5d:bc:6e:a0:35:0b:b4:b6:be:5d:b0: 5f:df:76:f2:8f:29:9d:4e:2c:1e:c2:ce:4f:6f:90:63:77:c7: 90:d8:05:9b:98:fe:57:1a:59:f5:f8:d4:1b:a4:ab:67:26:cd: 34:22:48:d1:dd:7a:03:77:d9:df:5c:8e:3e:e1:9f:0b:93:22: ee:20:0b:9a:72:a2:ba:89:67:9c:a7:cb:9f:3e:68:b7:6e:bd: c0:76:13:ba:8b:1b:50:2c:f6:ad:bb:f1:cc:55:bb:17:f5:bd: 00:9b:e6:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwMzI5MDMzOTUxWhcNMjUwNDA1MDMzOTUxWjAYMRYwFAYD VQQDEw02N2U3NmI4OC04ZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Gdwkk1tA/9s3mRD16/ZTXqj5UkugS3AsFNNRkI0vDumakAhzb4fhH1uiSD+ kyTSDPQ+7Oq4egjyHgQgP1IpfFqI/+eDq+5dlYXOQN1fdBdKN0NuwJOeBR5dwd33 8k0FzbxgzAdvfLp45Tn8bicdo0gEI33ru722hqnUy3HnaGZ0C0F4CcL39ioEKRBY iQdM0b4PFCJVE5Kr3WN0m6uFOFox/x915saSbxNi8JZWPVWWgXaNoAmYyTgYLfFV XpRiyJMflqkruoNUP3lj5VvAmYo0tmHSozE4WafWFvLSlG/+bLOPnUtIIwsQ/MVv BCA82/0NbCcgYwNDdcZbaGWBTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvPLL7V PdHcLnkJuZHo8tKIL+OaMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBohKlUVjgau0ROuRtYc8iiozO36uuk9bd3fhdOxWlXfeIKU+3qDk8y SGKnG8b58aTZkKY5TGaIgKSajb9qDkV2QRmQFFucGL6b/nWxMNDSVIorHixhDf5e bglU+mjRVI7dXnR4t669VVJR0o0kwzuuN7WBbRo3v6yRuSdPUL/5zmt039SN6Lx7 +HNtEIxZqsdhBfD75NCxXbxuoDULtLa+XbBf33byjymdTiwews5Pb5Bjd8eQ2AWb mP5XGln1+NQbpKtnJs00IkjR3XoDd9nfXI4+4Z8LkyLuIAuacqK6iWecp8ufPmi3 br3AdhO6ixtQLPatu/HMVbsX9b0Am+Ya -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:53 2025 by rpki-client