$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: SMUw4M87SSe51SBzLWnUA3NvobwxMBGmeyb5HSRZs8Y= Subject key identifier: 4B:58:B0:73:65:5F:7D:C4:FE:62:E5:E5:DE:93:92:AF:F9:49:F7:46 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 0161 Signing time: Sat 29 Mar 2025 03:27:37 +0000 Manifest this update: Sat 29 Mar 2025 03:27:37 +0000 Manifest next update: Sat 05 Apr 2025 03:27:37 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: MVK/qxFFu+4VGNnK3eEDAHbfv5TJpiYiwp4S8XfUO5Y=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: kkDE8d3mWSYNpu+aK9mDwlnVUB+hzBT68zCQ1fhGRvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2 Validity Not Before: Mar 29 03:27:37 2025 GMT Not After : Apr 5 03:27:37 2025 GMT Subject: CN=67e768a9-065b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:3e:ab:1d:dc:ee:01:f8:41:34:ea:ca:48: 6a:2d:cf:d4:70:54:0b:1f:9a:72:b8:d5:17:73:67: b9:1a:4e:81:4b:3a:c4:8c:b7:ae:4b:3b:74:0a:68: 46:39:ee:08:8c:35:e6:8b:d1:1e:1a:30:e4:75:95: a8:6b:14:c5:11:80:8e:66:b0:68:bc:7e:15:b2:44: 83:4a:20:43:75:ad:38:bd:62:2a:13:d6:f7:e2:09: 63:a2:76:f8:68:61:c4:96:b5:11:b1:fd:92:07:7f: e4:2c:35:fa:58:e2:69:91:7c:f7:d3:63:f7:7f:a9: 6c:68:46:2a:21:86:62:8c:6a:b4:a0:99:1a:6f:83: 87:cc:f8:62:41:c6:5b:ee:55:7e:62:b5:26:04:6f: 48:1f:0b:64:40:7f:da:3f:b6:4b:cf:a8:3f:b9:16: 35:b5:5f:7a:7a:66:b3:89:e8:d0:2f:b8:af:80:5c: 2e:65:90:05:96:96:c5:33:c0:38:3d:2a:6f:93:86: 63:3b:a4:bc:c9:1c:ab:17:00:b5:2d:7d:88:29:fa: 66:6d:85:5e:ce:50:8d:e8:c9:66:32:67:d2:bf:3e: d6:2c:c7:91:6c:c9:ea:48:7b:43:16:16:f9:b4:65: dd:28:80:22:f4:4b:da:16:53:3b:c9:fd:c1:4f:59: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:58:B0:73:65:5F:7D:C4:FE:62:E5:E5:DE:93:92:AF:F9:49:F7:46 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:18:71:10:97:8b:05:f7:38:b8:a2:bb:28:5a:4e:85:f9:5c: 49:43:73:3a:4a:2d:7a:5b:aa:e4:a2:ec:8b:e5:45:b5:cf:af: 59:d3:71:d3:08:69:fe:7c:2a:ef:f1:80:c8:7d:31:b2:44:87: cb:79:44:c3:9c:2a:f7:b3:50:db:5c:eb:52:07:60:3e:a4:f0: fe:d9:8d:3b:f1:37:3f:42:92:dd:77:a4:92:fe:ac:d7:6f:e8: 29:2c:d7:8c:f3:dc:1c:14:e2:09:16:e9:25:ad:ad:f5:06:2d: 34:92:c0:84:3e:cd:80:e0:51:d8:41:c8:5c:89:fd:b7:71:6b: 2d:f9:16:be:de:b8:29:1d:f0:41:d8:c5:02:22:54:a6:3e:0d: db:18:7c:b7:9c:9b:00:59:b7:2d:45:e5:77:23:7a:14:13:62: e6:90:6a:fe:23:53:cf:40:e8:da:f1:a0:69:f1:85:aa:94:bf: c8:f8:8d:20:bf:3a:d8:ac:17:8d:67:3a:d1:16:e5:0b:3d:ea: 9f:52:37:b3:0b:d8:b4:6d:2f:56:7b:2f:6f:e3:a8:09:fc:7a: ba:48:81:90:17:8b:16:e2:62:8a:25:7c:14:cd:92:8d:67:f3: 5a:80:2d:03:10:54:5a:96:61:77:2c:7a:57:97:ee:de:71:b8: 3f:ea:9d:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwMzI5MDMyNzM3WhcNMjUwNDA1MDMyNzM3WjAYMRYwFAYD VQQDEw02N2U3NjhhOS0wNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuao+qx3c7gH4QTTqykhqLc/UcFQLH5pyuNUXc2e5Gk6BSzrEjLeuSzt0CmhG Oe4IjDXmi9EeGjDkdZWoaxTFEYCOZrBovH4VskSDSiBDda04vWIqE9b34gljonb4 aGHElrURsf2SB3/kLDX6WOJpkXz302P3f6lsaEYqIYZijGq0oJkab4OHzPhiQcZb 7lV+YrUmBG9IHwtkQH/aP7ZLz6g/uRY1tV96emaziejQL7ivgFwuZZAFlpbFM8A4 PSpvk4ZjO6S8yRyrFwC1LX2IKfpmbYVezlCN6MlmMmfSvz7WLMeRbMnqSHtDFhb5 tGXdKIAi9EvaFlM7yf3BT1le6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtYsHNl X33E/mLl5d6Tkq/5SfdGMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQGHEQl4sF9zi4orsoWk6F+VxJQ3M6Si16W6rkouyL5UW1z69Z03HT CGn+fCrv8YDIfTGyRIfLeUTDnCr3s1DbXOtSB2A+pPD+2Y078Tc/QpLdd6SS/qzX b+gpLNeM89wcFOIJFuklra31Bi00ksCEPs2A4FHYQchcif23cWst+Ra+3rgpHfBB 2MUCIlSmPg3bGHy3nJsAWbctReV3I3oUE2LmkGr+I1PPQOja8aBp8YWqlL/I+I0g vzrYrBeNZzrRFuULPeqfUjezC9i0bS9Wey9v46gJ/Hq6SIGQF4sW4mKKJXwUzZKN Z/NagC0DEFRalmF3LHpXl+7ecbg/6p1S -----END CERTIFICATE-----Generated at Fri Apr 4 22:02:01 2025 by rpki-client