$ rpki-client -vvf rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft File: B04WzKCA1UX-9PLYrcuQnw7LIKI.mft (raw, json) Hash identifier: o0kRdBHO1LbqXZlhbRkTVNFi6UOvZPdwUQJqBZARKXU= Subject key identifier: B1:EF:B1:F8:F6:5B:93:58:08:BB:2C:2D:04:81:08:C9:31:74:06:2F Authority key identifier: 07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 Certificate issuer: /CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Certificate serial: 11A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft Manifest number: 1188 Signing time: Tue 08 Apr 2025 17:15:22 +0000 Manifest this update: Tue 08 Apr 2025 17:15:22 +0000 Manifest next update: Tue 15 Apr 2025 17:15:22 +0000 Files and hashes: 1: B04WzKCA1UX-9PLYrcuQnw7LIKI.crl (hash: KZ8wJRnZukI51UDmpXkmUHpU0ac5lkJlfNyVm5si7hY=) 2: 70F8E50039AF11EE8486453DC4F9AE02.roa (hash: CQ2YO4KFwTMH/P0kajoe5d8Btg/O5fE6q6xcjIQsWNk=) 3: BA1EA120E6FC11EE96775810C4F9AE02.roa (hash: sB4pmseHL4MX5nc05THnJz70E6W3QfcckHXpmWVSxtQ=) 4: FEDDF63AE6FC11EE8AD61644C4F9AE02.roa (hash: nPDF1Ky8Z4ZJlPWH1PkLPctnsIih8GHSZ5cqXRTU56A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 17:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4517 (0x11a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91655EF Validity Not Before: Apr 8 17:15:22 2025 GMT Not After : Apr 15 17:15:22 2025 GMT Subject: CN=67f559aa-8434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:61:b3:4b:75:fa:1b:50:7d:75:aa:79:cd: 67:7f:9c:ae:fb:b2:46:46:71:cb:39:35:cd:cc:28: 54:8d:be:e7:d6:49:d6:5d:c7:a0:23:e8:6f:38:23: d8:6c:41:af:f9:9e:d2:e1:e3:89:66:48:f3:d7:db: 31:34:a8:ae:81:d5:08:97:9b:df:4e:06:1e:d0:97: f4:98:04:ba:28:e3:1d:10:5c:af:7b:34:50:66:99: ba:2b:9f:40:45:bb:db:ee:58:6d:a1:65:f9:14:e7: 6e:91:8a:26:ec:7e:90:f5:af:68:2e:eb:2d:3f:40: 0d:eb:33:db:36:5b:d6:df:c6:14:82:1b:ba:c7:a0: be:90:ba:cf:42:4e:60:43:15:39:08:19:7a:21:0d: f8:ce:30:2e:6b:9d:a2:ea:21:59:1c:4a:65:e2:84: 45:f3:29:88:97:33:fb:86:49:34:56:f5:a1:ef:94: 3a:08:9e:6d:d2:6e:6d:41:87:46:82:ca:6f:10:af: 6c:f6:98:bb:78:f0:f8:b4:87:4e:ba:d5:71:db:66: 12:5c:e6:ba:23:3f:e2:b5:57:34:67:94:1f:fd:fa: b8:dc:b7:5e:49:2d:20:9a:82:6d:5c:72:45:16:3c: fc:19:ae:d0:b2:e9:14:65:3a:3f:e2:25:c5:7f:37: 57:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EF:B1:F8:F6:5B:93:58:08:BB:2C:2D:04:81:08:C9:31:74:06:2F X509v3 Authority Key Identifier: keyid:07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:09:d0:a3:99:bb:d3:91:46:bb:da:a8:ee:3d:6f:85:30:99: bd:70:b4:51:8f:53:24:54:58:a1:b2:4a:a1:e0:16:74:26:95: 23:a9:b2:7d:2d:c1:3d:76:e4:de:e8:8e:b0:c8:3b:8b:49:c4: df:4d:8f:35:44:d3:50:9b:cd:93:5a:e1:41:8e:d5:1d:5e:9c: 37:c1:e8:9a:7c:a4:18:f5:25:4e:5b:e5:dc:20:68:5e:0a:18: 2c:c3:e1:18:ea:e8:40:57:79:71:f3:4f:ec:65:2c:6a:31:6a: 0d:65:83:b1:7c:b3:66:58:c1:0f:25:4c:5a:14:32:e0:ad:82: df:8a:df:33:17:81:67:57:f7:f6:ab:8d:e8:41:5f:4d:1e:8a: c4:96:89:0b:19:0a:dd:57:66:05:00:af:07:39:26:f7:7f:af: 92:f6:17:28:51:54:4c:2d:1e:e3:35:ed:51:5b:78:8c:25:62: 29:29:09:8b:06:d0:77:82:df:d7:fe:d9:c4:97:53:b2:30:f6: 6b:47:f7:a2:be:a5:30:60:5b:a0:25:88:41:c5:47:47:cf:98: ec:05:3a:e3:75:61:eb:ec:b9:94:6f:d0:b7:a4:31:3f:bd:2f: 6f:f5:4b:03:c7:a5:20:8e:f8:4b:a6:bd:be:b8:d1:eb:ca:73: af:25:55:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1RUYxMTAvBgNVBAUTKDA3NEUxNkNDQTA4MEQ1NDVGRUY0RjJEOEFEQ0I5MDlG MEVDQjIwQTIwHhcNMjUwNDA4MTcxNTIyWhcNMjUwNDE1MTcxNTIyWjAYMRYwFAYD VQQDEw02N2Y1NTlhYS04NDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqdhs0t1+htQfXWqec1nf5yu+7JGRnHLOTXNzChUjb7n1knWXcegI+hvOCPY bEGv+Z7S4eOJZkjz19sxNKiugdUIl5vfTgYe0Jf0mAS6KOMdEFyvezRQZpm6K59A Rbvb7lhtoWX5FOdukYom7H6Q9a9oLustP0AN6zPbNlvW38YUghu6x6C+kLrPQk5g QxU5CBl6IQ34zjAua52i6iFZHEpl4oRF8ymIlzP7hkk0VvWh75Q6CJ5t0m5tQYdG gspvEK9s9pi7ePD4tIdOutVx22YSXOa6Iz/itVc0Z5Qf/fq43LdeSS0gmoJtXHJF Fjz8Ga7QsukUZTo/4iXFfzdX5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHvsfj2 W5NYCLssLQSBCMkxdAYvMB8GA1UdIwQYMBaAFAdOFsyggNVF/vTy2K3LkJ8OyyCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTVFRi82MDc3MjlEMEZB QzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFVWC05UExZcmN1UW53N0xJ S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IwNFd6S0NBMVVYLTlQTFlyY3VRbnc3TElLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTVFRi82MDc3MjlEMEZBQzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFV WC05UExZcmN1UW53N0xJS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOCdCjmbvTkUa72qjuPW+FMJm9cLRRj1MkVFihskqh4BZ0JpUjqbJ9 LcE9duTe6I6wyDuLScTfTY81RNNQm82TWuFBjtUdXpw3weiafKQY9SVOW+XcIGhe Chgsw+EY6uhAV3lx80/sZSxqMWoNZYOxfLNmWMEPJUxaFDLgrYLfit8zF4FnV/f2 q43oQV9NHorElokLGQrdV2YFAK8HOSb3f6+S9hcoUVRMLR7jNe1RW3iMJWIpKQmL BtB3gt/X/tnEl1OyMPZrR/eivqUwYFugJYhBxUdHz5jsBTrjdWHr7LmUb9C3pDE/ vS9v9UsDx6UgjvhLpr2+uNHrynOvJVWH -----END CERTIFICATE-----Generated at Thu Apr 10 17:01:20 2025 by rpki-client