$ rpki-client -vvf rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft File: aWYanwY1V84rVDewGIk9fZ_dvtA.mft (raw, json) Hash identifier: QlqGvhHS0lJfVfUoXHYUDtKUtPsGbtVkeXaSBRtB61w= Subject key identifier: DB:5A:A5:9A:77:39:8D:27:EB:EB:39:DA:3B:A9:C7:A0:87:AB:9A:F2 Authority key identifier: 69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 Certificate issuer: /CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Certificate serial: 062C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft Manifest number: 0625 Signing time: Fri 28 Mar 2025 22:58:50 +0000 Manifest this update: Fri 28 Mar 2025 22:58:50 +0000 Manifest next update: Fri 04 Apr 2025 22:58:50 +0000 Files and hashes: 1: aWYanwY1V84rVDewGIk9fZ_dvtA.crl (hash: T8pC0NBdkQ3+D9TlNt+YE+q1x6ibV3Fk/+NTnxyD8A4=) 2: DDCD4C168EC611EBAB7F3476C4F9AE02.roa (hash: vYh53kbQx56u84oKA/xd3ROknCRDM7pHTjRvm9U4uGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91431A6 Validity Not Before: Mar 28 22:58:50 2025 GMT Not After : Apr 4 22:58:50 2025 GMT Subject: CN=67e729aa-9750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:02:63:3e:ca:bd:14:85:5a:a5:e6:8a:b6: 1e:b8:18:72:01:73:aa:c6:65:8d:d4:aa:f2:9a:0d: 93:6e:26:91:8f:37:d6:f9:4b:5d:07:95:5b:19:9e: ca:77:1c:a8:80:76:ce:f9:6e:a0:81:4a:70:72:93: 05:38:8a:f8:87:1c:ef:d7:36:96:04:45:4c:9b:5b: 70:9e:e2:d6:c8:1e:af:14:1c:4c:60:90:2a:06:23: 38:8d:8c:39:8c:fe:cb:45:79:42:2d:fa:4c:ec:f3: 74:13:04:95:b8:24:9b:61:55:6a:45:cc:2d:f8:15: 8a:d6:9d:cb:6d:b0:e0:46:6b:92:9a:e8:42:1b:4b: bb:12:0e:b8:ca:dc:49:2c:fc:69:2e:94:c3:8a:d9: 03:8f:74:a5:72:7c:e2:54:54:25:3f:6e:0b:17:32: 48:d0:32:24:55:03:bf:0e:77:e0:13:42:ea:42:da: df:6b:36:30:d8:95:3f:ac:b4:f9:1e:12:e9:d4:1d: c7:d3:bc:09:3b:2a:ac:4c:5a:ea:30:45:a4:f5:23: 0c:3a:93:ad:e3:c9:7b:17:72:a9:3c:a9:5d:f0:1c: b0:81:c0:5e:62:25:64:cb:d8:c6:36:7e:33:a3:52: ee:4a:f7:39:86:81:c3:25:ab:ab:a5:0d:6d:9b:b3: 93:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5A:A5:9A:77:39:8D:27:EB:EB:39:DA:3B:A9:C7:A0:87:AB:9A:F2 X509v3 Authority Key Identifier: keyid:69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:3c:39:8b:50:fe:e4:9f:c0:ec:c6:6b:8c:73:2d:f5:05:bb: af:ed:8c:90:8e:72:68:5a:04:e5:7a:ef:49:f0:20:95:f6:d7: 5d:af:f8:24:c0:98:1b:41:1a:9a:b4:89:6b:fa:81:e0:96:f2: 11:5f:e5:6b:e8:34:7a:7e:40:ad:90:73:79:d9:e4:4e:7c:76: b1:bd:f9:05:11:67:01:73:7f:22:25:c2:69:86:e5:c7:e4:7e: 1a:53:f6:96:14:c9:09:a7:4c:38:72:d9:64:a8:65:7f:8f:78: 6d:ef:0c:74:02:5b:36:b9:c3:e5:0b:81:d4:4d:5d:1b:a4:d2: 5a:da:87:c2:67:47:21:c6:e6:e7:c1:0e:2a:81:49:c1:07:8a: 35:c3:87:f7:7b:52:50:29:bb:52:9d:2c:51:24:f9:62:68:1c: c4:42:32:a0:ac:cf:83:ab:71:f7:24:6f:ad:51:ca:48:1f:9a: 10:4b:d1:26:19:26:95:24:d8:98:8b:11:46:e6:3e:03:1c:c8: 4c:ce:4b:09:d7:84:a1:d3:0e:da:03:8f:17:e5:0d:ec:e3:78: ee:d1:3f:27:0f:8b:d0:69:c7:29:68:31:bf:1d:9c:32:0f:eb: 90:31:ee:aa:03:70:c6:16:bd:2b:35:0a:f6:ac:4b:ea:f6:0b: 84:e7:c6:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMxQTYxMTAvBgNVBAUTKDY5NjYxQTlGMDYzNTU3Q0UyQjU0MzdCMDE4ODkzRDdE OUZEREJFRDAwHhcNMjUwMzI4MjI1ODUwWhcNMjUwNDA0MjI1ODUwWjAYMRYwFAYD VQQDEw02N2U3MjlhYS05NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9QCYz7KvRSFWqXmirYeuBhyAXOqxmWN1Krymg2TbiaRjzfW+UtdB5VbGZ7K dxyogHbO+W6ggUpwcpMFOIr4hxzv1zaWBEVMm1twnuLWyB6vFBxMYJAqBiM4jYw5 jP7LRXlCLfpM7PN0EwSVuCSbYVVqRcwt+BWK1p3LbbDgRmuSmuhCG0u7Eg64ytxJ LPxpLpTDitkDj3SlcnziVFQlP24LFzJI0DIkVQO/DnfgE0LqQtrfazYw2JU/rLT5 HhLp1B3H07wJOyqsTFrqMEWk9SMMOpOt48l7F3KpPKld8BywgcBeYiVky9jGNn4z o1LuSvc5hoHDJaurpQ1tm7OTxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtapZp3 OY0n6+s52jupx6CHq5ryMB8GA1UdIwQYMBaAFGlmGp8GNVfOK1Q3sBiJPX2f3b7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzFBNi80NEQ4OTBDQThF QzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4NHJWRGV3R0lrOWZaX2R2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXWWFud1kxVjg0clZEZXdHSWs5ZlpfZHZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzFBNi80NEQ4OTBDQThFQzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4 NHJWRGV3R0lrOWZaX2R2dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5PDmLUP7kn8DsxmuMcy31Bbuv7YyQjnJoWgTleu9J8CCV9tddr/gk wJgbQRqatIlr+oHglvIRX+Vr6DR6fkCtkHN52eROfHaxvfkFEWcBc38iJcJphuXH 5H4aU/aWFMkJp0w4ctlkqGV/j3ht7wx0Als2ucPlC4HUTV0bpNJa2ofCZ0chxubn wQ4qgUnBB4o1w4f3e1JQKbtSnSxRJPliaBzEQjKgrM+Dq3H3JG+tUcpIH5oQS9Em GSaVJNiYixFG5j4DHMhMzksJ14Sh0w7aA48X5Q3s43ju0T8nD4vQaccpaDG/HZwy D+uQMe6qA3DGFr0rNQr2rEvq9guE58ZX -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:21 2025 by rpki-client