$ rpki-client -vvf rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft File: FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft (raw, json) Hash identifier: jJkAvV3bbGO357Byuoima7CL8b/2BGjHv3M9Q8J+Cvs= Subject key identifier: 01:E8:BE:EF:04:49:21:5F:FF:32:C0:1D:15:AB:43:40:57:D5:C3:0D Authority key identifier: 16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 Certificate issuer: /CN=A91314BC/serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft Manifest number: 01C9 Signing time: Sat 29 Mar 2025 02:31:57 +0000 Manifest this update: Sat 29 Mar 2025 02:31:56 +0000 Manifest next update: Sat 05 Apr 2025 02:31:56 +0000 Files and hashes: 1: FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl (hash: lalwPSfB3aOI1NwRPR81aTUYY4aMTpfGXusHEBRq6IU=) 2: 1083BE64499711EE86AE452DC4F9AE02.roa (hash: slu67F8KWLFn/RxCNvxBYhj1V1Mx5+noN3O9kww2W8Y=) 3: 7DD0E8845A3211EDB637E665C4F9AE02.roa (hash: wtWT4PZFgcn64rOhtqw01Kyp1pjejdqieeode8aJT6o=) 4: 7D0DFE0A5A3211EDB637E665C4F9AE02.roa (hash: K4zq7amWLtDyT+UqSOR4oOsSasN49MRy2b9Pfvweln4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91314BC Validity Not Before: Mar 29 02:31:56 2025 GMT Not After : Apr 5 02:31:56 2025 GMT Subject: CN=67e75b9c-dc8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:66:18:75:1b:d5:20:ea:bf:48:3a:ba:3f:70: 6e:47:ed:43:2c:bf:d3:ed:30:21:d1:94:84:12:40: 06:14:d2:db:cb:42:9e:7f:88:e5:59:3c:55:7d:97: 74:a6:9d:2c:f8:ce:2e:3b:ce:34:1f:a2:68:e1:33: ae:31:59:85:ad:e9:57:a8:5d:50:d1:15:62:77:6b: 6d:d4:3b:8d:e6:ec:0c:4b:20:ee:1f:b7:61:07:5c: e9:ff:51:e8:91:93:7d:af:de:ed:39:f1:a6:bc:20: 0a:c4:43:e5:58:68:ba:d1:26:76:fe:40:ba:95:36: 1e:ce:fa:c1:cb:8b:ea:d8:a2:49:fb:f8:df:0b:2b: bd:e5:fa:5c:86:7b:c5:79:8e:39:4e:95:d3:bb:80: bd:57:f2:64:85:f1:1a:1a:db:6e:64:2e:b8:3f:b0: aa:b6:b5:35:d6:6a:89:c1:ec:70:a0:e3:36:44:12: f8:ea:2b:d0:0a:d5:98:f4:b3:f8:39:8e:10:95:86: cd:12:48:45:43:3c:8f:a0:ba:29:47:94:e4:77:20: 1f:3e:19:7f:4c:ad:e7:27:08:0c:3f:02:6b:ba:0a: 69:04:a7:b0:59:38:6f:dd:6e:76:d1:cb:03:6a:93: e1:75:6a:df:81:88:0d:f6:f3:ed:e7:5a:7c:e1:5c: 78:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E8:BE:EF:04:49:21:5F:FF:32:C0:1D:15:AB:43:40:57:D5:C3:0D X509v3 Authority Key Identifier: keyid:16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:9a:a6:83:ed:c5:50:aa:4b:44:1c:9f:35:a8:36:30:54:23: 90:11:2b:33:62:b1:d1:d9:65:26:76:d4:73:f3:8b:0d:c9:7b: 8f:2c:74:48:8a:7b:fd:6c:4c:8d:02:8a:62:bf:e4:ae:02:f2: 9e:d6:a6:c2:85:a2:1c:11:83:d4:d4:72:0f:60:28:3f:00:0b: a6:51:4e:cb:65:84:81:ab:60:d3:b8:cf:a2:93:ed:4f:aa:11: 4b:27:9a:ac:19:8e:8b:c8:80:3c:18:f1:ca:d5:59:bc:3a:d3: ae:59:5b:20:9f:2c:84:43:67:3e:34:44:bc:32:c3:aa:1e:59: 18:ef:50:73:a0:4e:5e:aa:71:10:69:1c:e3:62:54:ea:46:91: 1d:35:65:11:ea:f9:3f:dd:30:38:10:8f:82:32:0e:ea:3d:67: 4b:a7:b5:51:67:ba:a2:f8:d7:8a:b5:19:36:c1:12:cc:90:7d: 01:63:26:92:c3:7a:a0:23:f5:b8:ae:07:1d:fb:48:fb:aa:61: 30:7c:80:6c:2d:c8:75:25:44:11:0c:b7:7a:26:7e:80:5c:8d: 03:c0:b7:f4:0f:75:4e:75:a8:2e:8b:07:02:73:82:04:d5:c2: 05:da:01:1a:d8:0e:2d:8c:bc:64:ac:d3:44:31:a3:6b:aa:3b: 0f:92:cb:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0QkMxMTAvBgNVBAUTKDE2ODQxNUMwQzEzNDAxQzBENzcxNTcxREY4NkY4Q0Q1 Rjg1MDNCMTQwHhcNMjUwMzI5MDIzMTU2WhcNMjUwNDA1MDIzMTU2WjAYMRYwFAYD VQQDEw02N2U3NWI5Yy1kYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymYYdRvVIOq/SDq6P3BuR+1DLL/T7TAh0ZSEEkAGFNLby0Kef4jlWTxVfZd0 pp0s+M4uO840H6Jo4TOuMVmFrelXqF1Q0RVid2tt1DuN5uwMSyDuH7dhB1zp/1Ho kZN9r97tOfGmvCAKxEPlWGi60SZ2/kC6lTYezvrBy4vq2KJJ+/jfCyu95fpchnvF eY45TpXTu4C9V/JkhfEaGttuZC64P7CqtrU11mqJwexwoOM2RBL46ivQCtWY9LP4 OY4QlYbNEkhFQzyPoLopR5TkdyAfPhl/TK3nJwgMPwJrugppBKewWThv3W520csD apPhdWrfgYgN9vPt51p84Vx4MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHovu8E SSFf/zLAHRWrQ0BX1cMNMB8GA1UdIwQYMBaAFBaEFcDBNAHA13FXHfhvjNX4UDsU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTRCQy83RkQwMTY2QzVB MkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFjRFhjVmNkLUctTTFmaFFP eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZvUVZ3TUUwQWNEWGNWY2QtRy1NMWZoUU94US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTRCQy83RkQwMTY2QzVBMkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFj RFhjVmNkLUctTTFmaFFPeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBmqaD7cVQqktEHJ81qDYwVCOQESszYrHR2WUmdtRz84sNyXuPLHRI inv9bEyNAopiv+SuAvKe1qbChaIcEYPU1HIPYCg/AAumUU7LZYSBq2DTuM+ik+1P qhFLJ5qsGY6LyIA8GPHK1Vm8OtOuWVsgnyyEQ2c+NES8MsOqHlkY71BzoE5eqnEQ aRzjYlTqRpEdNWUR6vk/3TA4EI+CMg7qPWdLp7VRZ7qi+NeKtRk2wRLMkH0BYyaS w3qgI/W4rgcd+0j7qmEwfIBsLch1JUQRDLd6Jn6AXI0DwLf0D3VOdaguiwcCc4IE 1cIF2gEa2A4tjLxkrNNEMaNrqjsPksv7 -----END CERTIFICATE-----Generated at Fri Apr 4 21:45:46 2025 by rpki-client