$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: aggfq3aj3HQ2yJK3H/v2Y3hPkg/Yxq3OXxXUfX8lDM0= Subject key identifier: D3:8E:9F:BA:0E:DB:3D:C6:1B:64:F6:11:E1:D3:76:B2:43:54:CD:2D Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05B3 Signing time: Fri 28 Mar 2025 23:23:06 +0000 Manifest this update: Fri 28 Mar 2025 23:23:05 +0000 Manifest next update: Fri 04 Apr 2025 23:23:05 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: EZ4foaIDPfeRAszLbpC1T6c47PdtlxshCZSTKvzfKWM=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95 Validity Not Before: Mar 28 23:23:05 2025 GMT Not After : Apr 4 23:23:05 2025 GMT Subject: CN=67e72f5a-148f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:d8:b6:fd:b1:40:e7:ce:87:4c:16:f8:ca: a8:e2:e0:eb:a7:53:7a:00:8d:77:76:4f:0d:1a:75: a0:54:b3:ad:5c:7a:9b:45:1a:32:02:d6:00:ac:60: f6:f4:46:37:40:20:58:66:31:c9:b9:fc:ee:64:5b: f5:83:ce:ba:e1:a7:6c:f3:ae:ca:89:2c:6e:7a:c9: 22:1b:e0:99:dd:93:e0:20:01:16:c4:76:a1:cd:61: cf:bd:6d:75:87:79:10:79:d1:60:a6:d3:e4:14:f6: 8c:46:3a:b9:cd:17:08:21:99:5f:59:ce:8f:a2:df: 78:54:ba:fe:7d:7f:9b:83:63:ef:63:c7:c7:46:f9: e6:35:54:49:48:79:a9:81:a2:82:b6:a8:63:dc:b0: 48:be:50:1e:d6:d1:9f:16:6c:bd:f5:dc:ec:70:b2: bd:1d:b3:6e:dc:49:32:a7:ce:38:dc:b5:b0:13:3b: 50:ac:73:52:2c:6f:be:e4:b8:32:71:13:7a:6b:57: 0b:10:da:7b:df:c3:96:54:63:bb:ca:2e:47:cc:54: 6c:64:3c:8c:85:5e:7e:30:88:fe:bf:0d:62:05:28: 1e:2a:33:92:54:51:6e:e1:7f:37:73:3b:7a:84:98: 71:19:df:38:03:8b:f9:b2:08:b6:fc:68:d4:f5:11: e3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8E:9F:BA:0E:DB:3D:C6:1B:64:F6:11:E1:D3:76:B2:43:54:CD:2D X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:60:a8:79:3f:d4:8d:57:ef:4b:2d:e0:b4:39:9c:dc:af:8a: ad:44:a4:01:45:92:de:ab:e3:68:1c:b4:c9:b3:3f:21:d3:d9: 13:60:27:14:3a:04:3c:f5:98:c5:1f:38:14:d2:68:22:ec:ec: 7d:44:36:45:2d:31:89:08:6f:8e:03:71:c3:ef:8b:29:19:e1: b4:df:f4:51:71:f5:a4:46:10:7c:76:f7:0f:f5:52:dd:fd:14: 64:e1:b7:22:2b:e7:f5:e5:f1:e5:fc:6d:c1:63:e4:27:f6:f9: f3:d3:ae:d0:56:cf:a4:ee:5f:c1:bb:10:a4:6f:f8:96:5d:ec: 19:2d:e2:c3:b1:18:df:3c:90:73:ad:03:f2:c4:c0:e6:02:04: e7:2e:46:f9:b5:db:c8:ad:43:f7:ef:8e:53:ff:5f:ff:06:38: 65:1e:3c:a5:1f:8c:7a:20:84:09:e4:93:71:ba:10:88:ce:23: 7b:01:b1:7f:d5:a3:29:14:d6:ce:d1:72:58:21:34:5c:4b:b0: 6e:75:72:89:d2:95:7c:d8:95:c7:5c:b2:2e:65:a6:92:19:de: f5:36:43:df:14:21:e8:29:92:3c:c6:70:bb:78:3d:24:75:b3: e1:6e:e7:71:5f:8b:8d:f3:27:7e:87:1e:56:34:63:74:98:60: 6d:f7:8c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwMzI4MjMyMzA1WhcNMjUwNDA0MjMyMzA1WjAYMRYwFAYD VQQDEw02N2U3MmY1YS0xNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3zYtv2xQOfOh0wW+Mqo4uDrp1N6AI13dk8NGnWgVLOtXHqbRRoyAtYArGD2 9EY3QCBYZjHJufzuZFv1g8664ads867KiSxueskiG+CZ3ZPgIAEWxHahzWHPvW11 h3kQedFgptPkFPaMRjq5zRcIIZlfWc6Pot94VLr+fX+bg2PvY8fHRvnmNVRJSHmp gaKCtqhj3LBIvlAe1tGfFmy99dzscLK9HbNu3Ekyp8443LWwEztQrHNSLG++5Lgy cRN6a1cLENp738OWVGO7yi5HzFRsZDyMhV5+MIj+vw1iBSgeKjOSVFFu4X83czt6 hJhxGd84A4v5sgi2/GjU9RHjqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOOn7oO 2z3GG2T2EeHTdrJDVM0tMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0YKh5P9SNV+9LLeC0OZzcr4qtRKQBRZLeq+NoHLTJsz8h09kTYCcU OgQ89ZjFHzgU0mgi7Ox9RDZFLTGJCG+OA3HD74spGeG03/RRcfWkRhB8dvcP9VLd /RRk4bciK+f15fHl/G3BY+Qn9vnz067QVs+k7l/BuxCkb/iWXewZLeLDsRjfPJBz rQPyxMDmAgTnLkb5tdvIrUP3745T/1//BjhlHjylH4x6IIQJ5JNxuhCIziN7AbF/ 1aMpFNbO0XJYITRcS7BudXKJ0pV82JXHXLIuZaaSGd71NkPfFCHoKZI8xnC7eD0k dbPhbudxX4uN8yd+hx5WNGN0mGBt94z0 -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:57 2025 by rpki-client