$ rpki-client -vvf rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft File: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft (raw, json) Hash identifier: /5ZSM8vQgdegqQqvJp4pYfJXioKFtI8Bhc4NFpQ9tJI= Subject key identifier: 6E:FA:0F:B7:8E:40:25:21:C6:7E:2D:0C:DB:84:40:3E:2F:B9:E4:52 Authority key identifier: F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 Certificate issuer: /CN=A91487A2/serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft Manifest number: 014B Signing time: Thu 17 Apr 2025 03:11:29 +0000 Manifest this update: Thu 17 Apr 2025 03:11:29 +0000 Manifest next update: Thu 24 Apr 2025 03:11:29 +0000 Files and hashes: 1: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl (hash: dvw8rcL5VDtLO1MUIvwc1PEwb7Pxgw/dxcV0QXc+Chc=) 2: E6F6831A26AF11EEA8E86146C4F9AE02.roa (hash: dKoEMXA8fRTWxjeYqmYYgyMSw9H1lwIw8Fa9EYm/xNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 03:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487A2, serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Validity Not Before: Apr 17 03:11:29 2025 GMT Not After : Apr 24 03:11:29 2025 GMT Subject: CN=68007161-5ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:7d:a8:b3:5e:ea:a9:35:37:78:a6:d8:d7: 46:64:90:9d:6f:88:c3:45:a5:b5:e5:58:3a:95:e1: 7d:8b:66:7f:4d:2f:1e:7d:4f:ab:46:ab:69:dd:27: 22:c0:a0:21:9f:a6:a2:b8:a6:18:95:86:ab:1f:bb: 95:3b:c9:ba:23:51:43:02:76:4f:6f:46:77:aa:4f: 09:be:b1:99:b7:24:2e:82:f8:be:33:b2:ee:d4:d6: c0:2b:1f:b1:8c:28:c7:19:a3:44:99:13:ba:48:d3: f9:39:7a:9e:e2:7c:19:e5:67:4c:ba:28:7e:10:ee: e1:db:e8:66:99:4d:7a:f8:8d:ee:41:0d:e4:c6:f4: bb:ea:e7:62:2d:08:75:73:b3:3b:a9:2e:44:9b:d6: 45:1b:5b:a2:c5:6e:73:d1:d8:47:8a:f2:6f:ce:86: e6:fd:1d:5c:fd:e4:f2:e1:0e:d4:57:05:05:95:a9: 74:f7:83:a0:b3:92:fd:ae:c0:cf:5c:73:31:e5:10: e0:20:95:e4:21:e2:c6:98:fa:2c:d6:7c:ca:29:0f: 79:1a:a0:85:e8:00:26:23:2b:b8:b5:8d:de:a7:eb: dd:f3:90:c2:2d:2c:a7:7e:5b:05:91:f2:aa:2b:bb: a4:dc:3e:a7:94:89:36:1b:bb:46:d6:e5:5b:99:c1: dd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:FA:0F:B7:8E:40:25:21:C6:7E:2D:0C:DB:84:40:3E:2F:B9:E4:52 X509v3 Authority Key Identifier: keyid:F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:22:8d:aa:2f:46:11:be:90:44:34:21:64:45:f8:77:13:76: f4:6d:d6:e8:26:2a:31:c3:53:f2:f4:c8:61:20:91:c5:35:40: aa:67:45:50:ed:bf:03:35:36:21:da:01:16:e6:64:4a:b6:6b: 60:fe:bf:3c:cd:3b:51:d1:2e:26:62:b2:49:fb:c7:5e:3e:53: c2:8b:45:a5:9c:01:f6:18:61:82:83:7f:bb:8f:5f:6e:ef:4c: 16:e9:cd:db:07:e1:2d:0b:d6:b0:e8:e3:32:f6:d4:3d:3e:c6: 1f:c3:90:af:31:2f:85:47:a1:17:ce:36:dd:16:9c:38:fc:d4: 6e:1e:1d:01:ab:69:00:a0:79:ce:4a:12:0d:0b:b7:32:1e:97: 7b:7f:71:bd:99:d5:d0:6a:e1:3f:bb:cd:1b:a4:6b:b7:b6:d0: 7b:c2:f0:dd:f2:ef:b8:78:37:cc:a2:12:17:f5:5d:3b:11:e1: e5:5a:f9:da:dd:e1:99:b0:79:34:13:18:34:f5:34:fc:77:7a: c2:6f:71:c0:02:d5:5a:c5:f4:d3:d8:6b:4d:54:83:2f:e4:ab: 61:b2:63:6f:f1:ff:ff:34:15:ae:02:a4:66:ca:a0:ab:92:31: f2:f0:6e:5f:53:0c:bf:39:d2:1c:3d:37:21:7c:ba:7f:e1:91: df:b7:43:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QTIxMTAvBgNVBAUTKEY2OERDRUQyRTYwMkY0NDY1Njc0MTA5OTRBOEU4QzAy MTAwOUVEODkwHhcNMjUwNDE3MDMxMTI5WhcNMjUwNDI0MDMxMTI5WjAYMRYwFAYD VQQDEw02ODAwNzE2MS01ZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhJ9qLNe6qk1N3im2NdGZJCdb4jDRaW15Vg6leF9i2Z/TS8efU+rRqtp3Sci wKAhn6aiuKYYlYarH7uVO8m6I1FDAnZPb0Z3qk8JvrGZtyQugvi+M7Lu1NbAKx+x jCjHGaNEmRO6SNP5OXqe4nwZ5WdMuih+EO7h2+hmmU16+I3uQQ3kxvS76udiLQh1 c7M7qS5Em9ZFG1uixW5z0dhHivJvzobm/R1c/eTy4Q7UVwUFlal094Ogs5L9rsDP XHMx5RDgIJXkIeLGmPos1nzKKQ95GqCF6AAmIyu4tY3ep+vd85DCLSynflsFkfKq K7uk3D6nlIk2G7tG1uVbmcHdVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG76D7eO QCUhxn4tDNuEQD4vueRSMB8GA1UdIwQYMBaAFPaNztLmAvRGVnQQmUqOjAIQCe2J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdBMi80MDZCNjEwMDI2 QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlFWldkQkNaU282TUFoQUo3 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvM08wdVlDOUVaV2RCQ1pTbzZNQWhBSjdZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdBMi80MDZCNjEwMDI2QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlF WldkQkNaU282TUFoQUo3WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQIo2qL0YRvpBENCFkRfh3E3b0bdboJioxw1Py9MhhIJHFNUCqZ0VQ 7b8DNTYh2gEW5mRKtmtg/r88zTtR0S4mYrJJ+8dePlPCi0WlnAH2GGGCg3+7j19u 70wW6c3bB+EtC9aw6OMy9tQ9PsYfw5CvMS+FR6EXzjbdFpw4/NRuHh0Bq2kAoHnO ShINC7cyHpd7f3G9mdXQauE/u80bpGu3ttB7wvDd8u+4eDfMohIX9V07EeHlWvna 3eGZsHk0Exg09TT8d3rCb3HAAtVaxfTT2GtNVIMv5KthsmNv8f//NBWuAqRmyqCr kjHy8G5fUwy/OdIcPTchfLp/4ZHft0O3 -----END CERTIFICATE-----Generated at Fri Apr 18 16:36:21 2025 by rpki-client