$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: umWFpxwAR/efQTQT1BkjLcRJkI1X+VLQD+9WpI5D8nY= Subject key identifier: 47:DD:73:76:86:51:FF:26:7A:E2:73:31:72:92:08:66:B7:5D:E9:57 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 0715 Signing time: Wed 02 Apr 2025 21:52:08 +0000 Manifest this update: Wed 02 Apr 2025 21:52:07 +0000 Manifest next update: Wed 09 Apr 2025 21:52:07 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: Vo2tGaQbAANBs8+sZ+CQNPoZJUZHZykDFaDXOY/62mA=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4 Validity Not Before: Apr 2 21:52:07 2025 GMT Not After : Apr 9 21:52:07 2025 GMT Subject: CN=67edb187-d856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:93:dd:53:eb:0e:e5:b0:58:f8:d0:71:22:34: 4c:f3:54:2d:61:26:03:67:a9:db:c4:8e:d0:f4:46: 77:39:da:e8:35:df:f8:40:31:44:66:78:1d:0f:f8: 99:bd:8a:2b:d1:4c:f6:2b:6c:40:45:40:bd:a4:43: 65:ed:a1:44:23:9b:7c:36:fe:b2:62:07:83:2d:6f: d4:e5:a7:cb:4c:17:99:7a:a7:78:60:55:2b:63:8b: 09:0c:70:b0:56:79:5c:49:e0:ad:78:99:77:54:f6: bc:a3:19:6f:f0:55:1a:c7:f6:00:9b:fb:e0:dc:12: 65:38:2e:21:81:67:66:18:e1:e5:07:ad:38:2f:37: 4e:22:71:8a:d3:24:75:37:76:7e:6b:a6:84:10:05: 1e:aa:91:73:3d:e3:17:99:ec:f5:0c:44:a8:f9:de: 6f:cc:5d:70:94:7c:be:c7:12:21:f6:46:c6:c2:eb: 48:7f:6b:6f:92:7f:72:99:8c:94:75:ae:06:e6:9f: 93:d6:a6:80:cc:3f:91:bc:4c:ef:42:24:16:c3:43: d8:4b:46:30:76:77:91:fc:55:25:9c:21:4e:05:23: 12:67:54:8f:06:82:88:a5:d4:ce:fd:12:b7:d5:bf: 79:7d:12:2f:71:11:36:77:41:8a:08:c8:ee:c3:5c: 97:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DD:73:76:86:51:FF:26:7A:E2:73:31:72:92:08:66:B7:5D:E9:57 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:07:27:a8:29:71:83:27:3b:05:f9:fc:61:c2:30:f5:a9:1a: 67:66:d3:98:0d:6d:bf:93:56:9f:fa:3d:ab:75:0b:bb:f5:3d: b3:4f:a9:94:48:fc:b5:59:89:fd:08:f8:51:cc:1c:4d:b3:6d: 25:41:c5:d4:1f:fa:dc:cf:02:03:82:12:96:fe:1f:50:b6:c7: c8:41:41:17:25:4f:98:9c:ae:b1:87:51:58:21:57:54:b0:b6: 39:80:ad:67:9a:25:a4:45:bc:65:96:ad:15:f0:2f:d8:4c:8e: b1:12:76:4a:95:97:50:12:1a:21:59:53:72:76:ee:bb:53:9f: e9:32:a1:37:19:39:e9:fd:ac:de:a9:0d:71:ba:bc:fc:9b:85: 0d:0f:00:bc:22:3a:4c:c5:29:50:57:62:81:a1:bb:60:3b:79: 7a:3e:d9:43:eb:c3:40:44:2c:80:4e:7b:84:1e:41:6a:94:9b: db:73:c9:30:94:37:31:85:f3:a1:66:32:7f:4f:1d:95:85:ab: c1:9d:c1:39:bd:8e:11:37:95:38:03:bd:b0:86:3e:70:af:ae: 33:f2:43:5b:e1:b4:3d:53:03:54:65:84:7e:4a:f9:26:91:da: 8d:93:fc:0c:90:90:b7:ca:50:cc:61:86:d3:f0:5f:3a:0f:66: 56:9d:a1:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUwNDAyMjE1MjA3WhcNMjUwNDA5MjE1MjA3WjAYMRYwFAYD VQQDEw02N2VkYjE4Ny1kODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJPdU+sO5bBY+NBxIjRM81QtYSYDZ6nbxI7Q9EZ3OdroNd/4QDFEZngdD/iZ vYor0Uz2K2xARUC9pENl7aFEI5t8Nv6yYgeDLW/U5afLTBeZeqd4YFUrY4sJDHCw VnlcSeCteJl3VPa8oxlv8FUax/YAm/vg3BJlOC4hgWdmGOHlB604LzdOInGK0yR1 N3Z+a6aEEAUeqpFzPeMXmez1DESo+d5vzF1wlHy+xxIh9kbGwutIf2tvkn9ymYyU da4G5p+T1qaAzD+RvEzvQiQWw0PYS0YwdneR/FUlnCFOBSMSZ1SPBoKIpdTO/RK3 1b95fRIvcRE2d0GKCMjuw1yXwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfdc3aG Uf8meuJzMXKSCGa3XelXMB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYByeoKXGDJzsF+fxhwjD1qRpnZtOYDW2/k1af+j2rdQu79T2zT6mU SPy1WYn9CPhRzBxNs20lQcXUH/rczwIDghKW/h9QtsfIQUEXJU+YnK6xh1FYIVdU sLY5gK1nmiWkRbxllq0V8C/YTI6xEnZKlZdQEhohWVNydu67U5/pMqE3GTnp/aze qQ1xurz8m4UNDwC8IjpMxSlQV2KBobtgO3l6PtlD68NARCyATnuEHkFqlJvbc8kw lDcxhfOhZjJ/Tx2VhavBncE5vY4RN5U4A72whj5wr64z8kNb4bQ9UwNUZYR+Svkm kdqNk/wMkJC3ylDMYYbT8F86D2ZWnaF8 -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:27 2025 by rpki-client