$ rpki-client -vvf rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft File: a51l6unGl9ohy0vuv030zgpBkyE.mft (raw, json) Hash identifier: 5/BiSvmx5pv2lXjvToVe48hgBYtIb2Grw/qgrYUJk70= Subject key identifier: FC:AD:AA:8B:6D:55:2C:13:B5:5F:28:21:EB:39:27:4F:0F:F4:48:CE Authority key identifier: 6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 Certificate issuer: /CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Certificate serial: 34A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft Manifest number: 3487 Signing time: Fri 04 Apr 2025 14:43:06 +0000 Manifest this update: Fri 04 Apr 2025 14:43:05 +0000 Manifest next update: Fri 11 Apr 2025 14:43:05 +0000 Files and hashes: 1: a51l6unGl9ohy0vuv030zgpBkyE.crl (hash: AuS+NrnRuHD+f3SQbdUYXFe3UJ1uEpxBT016WkTnIdM=) 2: 6215E9C089CF11ECA1DA1810C4F9AE02.roa (hash: zqO+6+1m7aZm2JcpbyGs7JD55ITmH3KS8z593DQAnJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13473 (0x34a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141FD6 Validity Not Before: Apr 4 14:43:05 2025 GMT Not After : Apr 11 14:43:05 2025 GMT Subject: CN=67efeffa-9c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:85:80:42:cc:ca:b1:24:09:ce:c8:1d:b7: e5:73:19:ae:9b:73:71:30:d5:c5:f8:66:aa:24:41: 29:67:b6:bd:cd:51:93:01:e6:ff:f3:4b:7a:cd:bb: b0:d2:37:43:2b:c2:79:8b:16:1c:97:7f:c6:ba:63: 7f:9e:7f:b8:f4:32:a8:63:a0:43:9f:51:3b:32:84: 3b:29:55:ef:08:f9:06:f7:bd:51:df:bf:d6:7e:21: 8e:c1:a5:f7:3d:55:62:ef:95:85:4e:13:1c:d5:38: 99:82:ab:75:44:2c:d3:b5:75:98:dd:86:9a:40:a6: e9:5d:a4:d6:0e:03:19:4c:2c:3b:07:e5:44:a2:e9: e6:4f:7b:89:b4:0a:1b:25:2f:a2:c9:ee:3c:ed:44: 54:0f:f7:bb:82:0b:f8:c1:1e:71:7c:d9:0a:29:9e: 32:8e:77:76:6b:63:21:45:fb:3d:ce:0a:df:a9:db: 84:9e:4a:29:3e:a9:c0:cd:9b:ab:3f:34:c9:19:c0: 6a:b3:6b:4c:17:be:ae:fb:72:0c:60:72:27:92:1c: e3:fd:de:25:69:97:6e:79:fe:33:24:a7:f9:33:52: 64:85:57:19:6d:0d:ab:38:dd:ad:53:9b:79:e5:b0: 55:81:16:6e:6c:b5:43:d7:5c:3a:dd:6d:f8:fa:26: dd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AD:AA:8B:6D:55:2C:13:B5:5F:28:21:EB:39:27:4F:0F:F4:48:CE X509v3 Authority Key Identifier: keyid:6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f8:16:7b:8e:8b:34:77:73:43:8c:5c:84:2e:1b:c5:d8:5b: 8d:03:7e:27:3d:60:c2:b4:53:04:29:4a:0d:f7:c3:bb:36:20: 9e:99:a2:f1:c3:b7:55:26:3b:5f:19:49:f1:d8:c7:f9:f4:1b: 70:8c:0e:0f:43:42:86:3f:a6:6b:cd:bd:93:1d:63:20:59:e9: 08:93:f6:0c:ae:14:1a:7d:94:1c:12:81:21:f4:af:f2:d7:2e: af:1c:15:20:bf:18:95:7e:4c:89:f3:e8:cb:9e:fe:63:c6:cd: 32:34:20:86:90:dd:62:5c:ce:d2:95:52:9f:c9:d4:52:91:5d: fd:67:66:ef:a5:3a:26:9f:b6:4b:42:95:24:d8:f8:f4:d4:62: e3:2b:ee:07:04:cd:9d:79:c3:f2:32:56:68:09:c7:20:aa:18: 20:5a:b7:83:ca:97:ae:b7:37:bf:62:1d:a5:7e:26:6f:8e:72: 37:dd:89:8d:42:59:f1:24:23:61:a6:55:c2:81:63:6e:29:52: 61:34:be:01:75:1e:8f:7f:9d:d6:de:2b:ac:01:0c:19:f8:3e: 50:44:09:30:0b:7a:54:b0:f9:9e:f7:11:68:4f:65:87:1d:6c: f3:53:a2:6f:98:57:9d:81:f3:26:65:ed:33:c6:f4:f7:a2:97: a7:2a:b1:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFGRDYxMTAvBgNVBAUTKDZCOUQ2NUVBRTlDNjk3REEyMUNCNEJFRUJGNERGNENF MEE0MTkzMjEwHhcNMjUwNDA0MTQ0MzA1WhcNMjUwNDExMTQ0MzA1WjAYMRYwFAYD VQQDEw02N2VmZWZmYS05Yzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqciFgELMyrEkCc7IHbflcxmum3NxMNXF+GaqJEEpZ7a9zVGTAeb/80t6zbuw 0jdDK8J5ixYcl3/GumN/nn+49DKoY6BDn1E7MoQ7KVXvCPkG971R37/WfiGOwaX3 PVVi75WFThMc1TiZgqt1RCzTtXWY3YaaQKbpXaTWDgMZTCw7B+VEounmT3uJtAob JS+iye487URUD/e7ggv4wR5xfNkKKZ4yjnd2a2MhRfs9zgrfqduEnkopPqnAzZur PzTJGcBqs2tMF76u+3IMYHInkhzj/d4laZduef4zJKf5M1JkhVcZbQ2rON2tU5t5 5bBVgRZubLVD11w63W34+ibd+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPytqott VSwTtV8oIes5J08P9EjOMB8GA1UdIwQYMBaAFGudZerpxpfaIctL7r9N9M4KQZMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUZENi82RUVDNjQzMDFE OTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5b2h5MHZ1djAzMHpncEJr eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E1MWw2dW5HbDlvaHkwdnV2MDMwemdwQmt5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUZENi82RUVDNjQzMDFEOTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5 b2h5MHZ1djAzMHpncEJreUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo+BZ7jos0d3NDjFyELhvF2FuNA34nPWDCtFMEKUoN98O7NiCemaLx w7dVJjtfGUnx2Mf59BtwjA4PQ0KGP6Zrzb2THWMgWekIk/YMrhQafZQcEoEh9K/y 1y6vHBUgvxiVfkyJ8+jLnv5jxs0yNCCGkN1iXM7SlVKfydRSkV39Z2bvpTomn7ZL QpUk2Pj01GLjK+4HBM2decPyMlZoCccgqhggWreDypeutze/Yh2lfiZvjnI33YmN QlnxJCNhplXCgWNuKVJhNL4BdR6Pf53W3iusAQwZ+D5QRAkwC3pUsPme9xFoT2WH HWzzU6JvmFedgfMmZe0zxvT3openKrHc -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:31 2025 by rpki-client