$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft File: MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json) Hash identifier: 61eYVeNQa0YkzF8nwD86jppfeiAqgUYlJ6iKLe0qLII= Subject key identifier: 62:EA:1C:99:AD:29:05:EA:5C:59:E6:09:26:80:01:E4:2F:4C:A8:20 Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF Certificate issuer: /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Certificate serial: 1B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft Manifest number: 1B0C Signing time: Fri 04 Apr 2025 16:20:30 +0000 Manifest this update: Fri 04 Apr 2025 16:20:29 +0000 Manifest next update: Fri 11 Apr 2025 16:20:29 +0000 Files and hashes: 1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: wTwLbEt5OgwpvlvZ61Yxu2ww/m5ZbjuBgej6J2Piw+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6925 (0x1b0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222CD Validity Not Before: Apr 4 16:20:29 2025 GMT Not After : Apr 11 16:20:29 2025 GMT Subject: CN=67f006cd-9632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:62:2e:28:b7:e1:cd:3e:27:7a:af:2d:09:8a: e8:74:78:2b:ec:94:d9:39:ec:2b:b3:dc:3b:54:ef: e5:ec:69:75:d6:a5:2e:4d:b0:48:02:85:79:78:d4: 56:50:d1:48:f9:35:0d:fa:ce:79:07:6b:95:e3:d2: dd:29:aa:92:f4:62:a5:66:6f:9d:57:b5:8f:8c:08: 74:d5:50:59:86:ba:30:d4:a0:74:4a:ae:12:13:89: 01:11:1b:85:a9:b0:11:82:f7:51:af:5c:e5:b4:bf: e5:a7:b6:17:95:29:2b:66:95:98:5a:be:df:ee:f5: 35:e2:0c:be:1d:fa:c3:9f:d4:ff:b8:56:dd:2a:82: 0c:c6:65:00:6e:e0:26:67:47:39:3f:d9:26:db:02: 8c:ad:3b:e4:08:09:ff:60:5f:de:c7:2a:a3:46:fd: 1f:28:dc:71:d0:03:a0:29:e7:d4:cc:62:00:1b:e4: 99:d1:b1:49:77:9a:24:f5:f0:ce:17:c8:79:0f:bc: 3a:4c:c3:3e:64:43:51:72:01:56:7a:19:c1:0a:81: cc:b9:e6:91:1d:a4:f4:30:a2:ce:db:ff:dc:99:fc: 4f:9c:e1:25:39:78:50:ef:03:33:8b:cb:b7:1f:b5: 2f:15:a2:23:d8:c3:7e:5a:a1:78:12:2d:71:84:0c: 7c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:EA:1C:99:AD:29:05:EA:5C:59:E6:09:26:80:01:E4:2F:4C:A8:20 X509v3 Authority Key Identifier: keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:20:a6:36:44:1e:a9:a6:18:48:05:f7:cb:36:e9:ca:1a:21: 62:fd:78:bc:a3:a7:bb:8b:26:ce:1f:a0:4d:c5:87:37:34:40: d1:cc:32:bd:9a:e3:a5:ee:92:c3:01:5f:05:8a:86:ae:3b:87: e3:b2:e8:f0:8f:e4:57:71:dd:77:b3:2f:41:7d:0f:58:b5:09: 5a:32:ab:a5:ec:a6:09:ed:8a:90:75:ed:2a:42:6a:d3:f8:fd: ab:cf:6d:29:09:21:5d:6d:fa:72:f2:8f:25:50:6d:67:b7:b1: 0a:e7:97:05:75:cf:94:b5:53:2d:78:9d:7c:94:4e:c3:f6:d4: 84:86:da:b2:c2:fa:fc:f6:68:ea:fd:29:64:5a:b0:9e:dc:f9: 93:c8:df:e4:ba:39:21:2b:06:69:33:a0:e6:d6:8f:d9:b3:ad: af:b3:79:7b:47:31:e9:bb:e5:1c:f5:94:79:5e:26:1e:67:55: cb:c4:cb:ed:e6:ec:72:0d:96:d2:40:8d:09:86:fb:51:4b:ec: 6a:66:e7:75:b1:49:11:2d:49:2f:ba:0a:4f:07:86:79:95:4f: 4a:11:ce:03:1f:f1:5f:15:35:a0:90:0e:fa:a8:37:a5:b7:0f: 51:f9:19:b1:b1:8d:23:3d:50:bd:e0:57:37:6b:c4:b0:c7:c7: 09:17:08:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyQ0QxMTAvBgNVBAUTKDMxQjNEOTA0NTdEMUZERjgzQzM1NzRDQkQxN0ZDMjhC MkNERDU2RUYwHhcNMjUwNDA0MTYyMDI5WhcNMjUwNDExMTYyMDI5WjAYMRYwFAYD VQQDEw02N2YwMDZjZC05NjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWIuKLfhzT4neq8tCYrodHgr7JTZOewrs9w7VO/l7Gl11qUuTbBIAoV5eNRW UNFI+TUN+s55B2uV49LdKaqS9GKlZm+dV7WPjAh01VBZhrow1KB0Sq4SE4kBERuF qbARgvdRr1zltL/lp7YXlSkrZpWYWr7f7vU14gy+HfrDn9T/uFbdKoIMxmUAbuAm Z0c5P9km2wKMrTvkCAn/YF/exyqjRv0fKNxx0AOgKefUzGIAG+SZ0bFJd5ok9fDO F8h5D7w6TMM+ZENRcgFWehnBCoHMueaRHaT0MKLO2//cmfxPnOElOXhQ7wMzi8u3 H7UvFaIj2MN+WqF4Ei1xhAx8MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLqHJmt KQXqXFnmCSaAAeQvTKggMB8GA1UdIwQYMBaAFDGz2QRX0f34PDV0y9F/woss3Vbv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJDRC83RTMxMTVDODE2 NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9mZzhOWFRMMFhfQ2l5emRW dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01iUFpCRmZSX2ZnOE5YVEwwWF9DaXl6ZFZ1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjJDRC83RTMxMTVDODE2NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9m ZzhOWFRMMFhfQ2l5emRWdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/IKY2RB6pphhIBffLNunKGiFi/Xi8o6e7iybOH6BNxYc3NEDRzDK9 muOl7pLDAV8FioauO4fjsujwj+RXcd13sy9BfQ9YtQlaMqul7KYJ7YqQde0qQmrT +P2rz20pCSFdbfpy8o8lUG1nt7EK55cFdc+UtVMteJ18lE7D9tSEhtqywvr89mjq /SlkWrCe3PmTyN/kujkhKwZpM6Dm1o/Zs62vs3l7RzHpu+Uc9ZR5XiYeZ1XLxMvt 5uxyDZbSQI0JhvtRS+xqZud1sUkRLUkvugpPB4Z5lU9KEc4DH/FfFTWgkA76qDel tw9R+RmxsY0jPVC94Fc3a8Swx8cJFwgh -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:36 2025 by rpki-client