$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: WWk2FKpSh4SgZh50C8+BDKpjBfqz7DVLGevfNnomtuc= Subject key identifier: 1F:46:B5:E2:9F:53:69:0D:22:B3:59:3C:95:FA:B0:D1:F6:57:59:5C Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: 48 Signing time: Thu 03 Apr 2025 06:37:34 +0000 Manifest this update: Thu 03 Apr 2025 06:37:34 +0000 Manifest next update: Thu 10 Apr 2025 06:37:34 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: S6oaDBAB80I9uf+paioc0M07FbPYl75twlnY1YOHhYs=) 2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: iUCXkP/k8vFDK+xe4w0gGSkxJOnd/FNj32EaA1KJbt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4 Validity Not Before: Apr 3 06:37:34 2025 GMT Not After : Apr 10 06:37:34 2025 GMT Subject: CN=67ee2cae-9c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b5:26:cf:2c:0c:21:77:62:c3:80:d3:c1:a1: 17:47:74:62:a2:4d:71:bf:db:af:b8:91:7d:66:82: ad:f6:7d:e0:e7:5b:60:f3:f8:e0:44:de:15:b2:ae: 31:f8:08:99:17:27:ed:a4:f0:f3:87:c3:e2:5c:e7: 01:8d:6b:2e:5b:ac:c1:77:e1:ea:cf:b4:9d:44:b2: 34:f7:bf:00:0b:4c:ba:84:66:e3:04:1e:6e:3b:ba: 1d:7a:26:53:76:a6:da:ea:30:e8:40:00:2d:0e:c7: 09:cd:a0:40:a4:8e:57:06:d2:8a:e0:a3:04:79:7f: f7:12:92:26:65:fe:fe:f3:92:3f:45:53:ea:61:1e: 0f:e6:dc:81:3e:43:a5:aa:bd:5b:dd:db:ce:8a:1a: 0d:41:8e:fb:94:a7:24:14:a1:72:30:04:67:5a:e5: 7b:f8:3f:5d:03:38:a6:d5:24:59:c2:5b:7e:68:e5: 9c:f3:5f:f9:af:67:ba:55:96:58:60:19:46:78:6b: 1c:88:3a:1a:ac:c6:2c:74:6d:81:35:58:a6:e6:dd: 02:05:fd:61:23:a7:3e:c5:ae:9e:a2:43:b6:e0:5a: 3c:66:ad:59:8e:75:9d:1e:80:dc:8f:18:bb:d9:fe: 79:12:b5:d1:98:41:02:3b:b4:36:4c:52:5a:d1:fd: aa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:46:B5:E2:9F:53:69:0D:22:B3:59:3C:95:FA:B0:D1:F6:57:59:5C X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f2:37:84:ae:a4:d4:ed:a0:00:45:35:18:79:59:2d:88:be: b9:71:6a:d4:c4:1c:d8:c2:6a:15:f8:38:94:af:a5:e7:e4:7b: 1d:92:3a:da:6e:6c:0c:7e:80:d8:05:66:d3:55:98:90:c0:98: 89:87:20:ed:c1:0c:5c:7f:20:e4:c2:e9:c8:4e:a7:04:9c:65: f5:c3:19:d0:35:aa:e8:8c:e7:b9:79:3f:18:35:35:3d:d4:7f: c4:7b:d4:9f:61:3d:59:c1:44:4b:c5:77:ba:04:01:b5:a4:a6: 1c:9f:86:b5:1b:e1:c6:9a:0e:93:c1:6e:73:c3:d3:a2:26:72: ce:fc:75:f9:f6:c5:e2:39:3c:ac:fe:e3:50:94:b8:40:fb:c7: 92:31:d7:2d:75:0a:24:90:d8:cc:5d:87:de:75:f6:ca:ff:c3: dc:d1:d7:8e:4b:78:fa:3d:31:27:ad:36:84:51:96:4b:e2:e1: 50:66:a5:46:71:2d:69:8b:1f:48:46:27:fb:ad:8c:3f:82:05: 7d:b4:5f:4f:03:98:9b:c5:02:f0:64:d4:02:89:9c:56:a0:13: d4:32:fa:52:d0:d0:57:64:28:e1:4b:da:86:a6:75:a6:d2:fe: c8:5a:51:e9:a6:f7:30:62:fe:84:55:e8:dc:62:1a:e1:bd:90: 46:8d:46:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoNkY3RTU4RDA4OTYzODlGN0U3RkU0RTg3OTVBQTU1NUQ1 QzU1NTE4ODAeFw0yNTA0MDMwNjM3MzRaFw0yNTA0MTAwNjM3MzRaMBgxFjAUBgNV BAMTDTY3ZWUyY2FlLTljOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmtSbPLAwhd2LDgNPBoRdHdGKiTXG/26+4kX1mgq32feDnW2Dz+OBE3hWyrjH4 CJkXJ+2k8POHw+Jc5wGNay5brMF34erPtJ1EsjT3vwALTLqEZuMEHm47uh16JlN2 ptrqMOhAAC0OxwnNoECkjlcG0orgowR5f/cSkiZl/v7zkj9FU+phHg/m3IE+Q6Wq vVvd286KGg1BjvuUpyQUoXIwBGda5Xv4P10DOKbVJFnCW35o5ZzzX/mvZ7pVllhg GUZ4axyIOhqsxix0bYE1WKbm3QIF/WEjpz7Frp6iQ7bgWjxmrVmOdZ0egNyPGLvZ /nkStdGYQQI7tDZMUlrR/aqxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH0a14p9T aQ0is1k8lfqw0fZXWVwwHwYDVR0jBBgwFoAUb35Y0Iljiffn/k6HlapVXVxVUYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzNBQkE4MEFBQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjM1WTBJbGppZmZuX2s2SGxhcFZYVnhWVVlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw NkU0LzNBQkE4MEFBQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZm bl9rNkhsYXBWWFZ4VlVZZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFbyN4SupNTtoABFNRh5WS2IvrlxatTEHNjCahX4OJSvpefkex2SOtpu bAx+gNgFZtNVmJDAmImHIO3BDFx/IOTC6chOpwScZfXDGdA1quiM57l5Pxg1NT3U f8R71J9hPVnBREvFd7oEAbWkphyfhrUb4caaDpPBbnPD06Imcs78dfn2xeI5PKz+ 41CUuED7x5Ix1y11CiSQ2Mxdh9519sr/w9zR145LePo9MSetNoRRlkvi4VBmpUZx LWmLH0hGJ/utjD+CBX20X08DmJvFAvBk1AKJnFagE9Qy+lLQ0FdkKOFL2oamdabS /shaUemm9zBi/oRV6NxiGuG9kEaNRok= -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:36 2025 by rpki-client