$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: Nb3CBOt8rLnxGUOEfZbRwltfEl4bOrj/qCQoEq+HPrA= Subject key identifier: 6C:92:4C:9C:A9:43:21:F6:A5:58:D3:02:03:2A:44:BB:71:5C:B1:7A Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 028E Signing time: Thu 03 Apr 2025 01:33:43 +0000 Manifest this update: Thu 03 Apr 2025 01:33:42 +0000 Manifest next update: Thu 10 Apr 2025 01:33:42 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: BsBFwPhJ5RuNts8qe+ZAwAwGqFXVAYmSNB5XAj/GfcI=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 81tZME9FAwzO2UIk/WDugs2sSYBMwRpnwSHq/X3xc/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA Validity Not Before: Apr 3 01:33:42 2025 GMT Not After : Apr 10 01:33:42 2025 GMT Subject: CN=67ede576-49bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:63:19:20:dd:d0:41:94:d6:21:b4:b5:f2:8d: 56:05:25:60:70:e6:eb:bc:e5:1f:cf:bd:9d:41:6c: 5f:82:7e:9e:53:b9:3d:86:77:56:75:ed:46:8c:ab: 26:6f:72:aa:10:57:94:1a:30:f8:57:c8:01:d8:f4: 90:68:9a:dd:9b:c3:c4:dd:b7:b8:22:eb:a0:97:64: de:e4:a2:c8:05:4d:82:f1:fb:54:05:ac:e2:44:d7: 0b:a6:1e:47:76:38:c0:7c:a8:40:03:35:47:c6:20: 8f:ae:af:0b:4f:1a:1d:ac:ff:f9:0c:58:c3:fe:ef: 2e:89:51:57:11:a4:9a:a6:d0:53:a6:05:56:d4:19: e7:23:f5:fe:9d:03:b0:00:73:d3:b4:2a:0a:0b:b1: 63:8a:d9:ac:df:75:62:dc:06:f4:c1:4e:fe:07:ef: 18:6e:94:c5:26:9e:b6:09:37:04:17:8d:66:72:c9: e1:49:a5:99:d0:f3:84:91:58:6c:7b:1e:23:14:62: 78:d5:bd:d3:a4:2b:ff:2c:a1:a1:5e:00:88:b9:bd: a5:87:dd:86:cd:64:3f:af:15:38:f9:99:8d:26:3c: 23:81:02:2f:1d:e0:84:cf:a2:cf:0a:02:0c:96:4c: 4c:4f:bc:8f:76:a7:ce:5e:ca:40:cf:4d:fd:68:db: 1a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:92:4C:9C:A9:43:21:F6:A5:58:D3:02:03:2A:44:BB:71:5C:B1:7A X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f0:3e:30:20:5f:60:f1:1f:f4:ed:47:c2:64:50:76:33:e5: 62:dc:c2:ce:bd:ea:9c:9a:f5:0e:00:34:fb:31:b6:b9:60:de: 4f:7b:d4:52:16:fd:6f:b5:96:e1:1d:02:8b:b8:e2:4c:3f:e0: 4d:2e:c7:5f:f5:28:13:df:5c:91:1d:f4:7b:32:44:a7:f0:f0: 5b:3c:ae:12:9a:e7:6b:8b:90:86:83:5a:5e:41:de:5e:28:90: cd:b0:04:cb:9f:94:70:06:7c:7b:50:91:24:fc:ae:42:e5:39: 03:91:45:c5:08:e0:d3:d3:19:3f:cd:38:9f:2a:b8:8b:ad:ca: a3:44:5c:f3:a3:12:c9:30:f6:a9:e0:5d:eb:8b:6b:d2:73:5b: bc:da:a3:0b:30:95:99:d8:91:26:5a:4d:eb:4c:66:83:e4:cc: 14:76:1b:3d:52:86:a7:dd:dc:65:ef:2e:90:b1:da:e7:a6:fe: 0a:95:0f:9f:ae:d6:0a:34:99:0e:df:b9:36:0d:ba:50:32:d1: 3a:ae:12:f3:35:5b:f0:2d:ee:e9:b5:89:44:bc:9c:f8:ca:3a: 0e:a3:2a:fc:de:30:bc:52:11:1a:a9:b0:46:67:bf:5e:d3:94: 65:70:cd:cd:1e:93:d0:58:15:e5:c9:d7:a4:37:19:a5:aa:e0: 0c:fa:f0:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwNDAzMDEzMzQyWhcNMjUwNDEwMDEzMzQyWjAYMRYwFAYD VQQDEw02N2VkZTU3Ni00OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2MZIN3QQZTWIbS18o1WBSVgcObrvOUfz72dQWxfgn6eU7k9hndWde1GjKsm b3KqEFeUGjD4V8gB2PSQaJrdm8PE3be4Iuugl2Te5KLIBU2C8ftUBaziRNcLph5H djjAfKhAAzVHxiCPrq8LTxodrP/5DFjD/u8uiVFXEaSaptBTpgVW1BnnI/X+nQOw AHPTtCoKC7Fjitms33Vi3Ab0wU7+B+8YbpTFJp62CTcEF41mcsnhSaWZ0POEkVhs ex4jFGJ41b3TpCv/LKGhXgCIub2lh92GzWQ/rxU4+ZmNJjwjgQIvHeCEz6LPCgIM lkxMT7yPdqfOXspAz039aNsaUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGySTJyp QyH2pVjTAgMqRLtxXLF6MB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs8D4wIF9g8R/07UfCZFB2M+Vi3MLOveqcmvUOADT7Mba5YN5Pe9RS Fv1vtZbhHQKLuOJMP+BNLsdf9SgT31yRHfR7MkSn8PBbPK4Smudri5CGg1peQd5e KJDNsATLn5RwBnx7UJEk/K5C5TkDkUXFCODT0xk/zTifKriLrcqjRFzzoxLJMPap 4F3ri2vSc1u82qMLMJWZ2JEmWk3rTGaD5MwUdhs9Uoan3dxl7y6Qsdrnpv4KlQ+f rtYKNJkO37k2DbpQMtE6rhLzNVvwLe7ptYlEvJz4yjoOoyr83jC8UhEaqbBGZ79e 05RlcM3NHpPQWBXlydekNxmlquAM+vC/ -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:19 2025 by rpki-client