$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: IXEVQTVxa//DkRmA2BqknH12SUilFZk0UXykgNBJJqM= Subject key identifier: E5:B4:26:57:EA:8B:1C:CE:4C:EE:A5:F3:66:6F:15:9C:C8:A2:71:E0 Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: DB Signing time: Wed 09 Apr 2025 04:26:50 +0000 Manifest this update: Wed 09 Apr 2025 04:26:50 +0000 Manifest next update: Wed 16 Apr 2025 04:26:50 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: GJygXzq90LmmUs6hRokgYxPseJTBlqjcrRofarRnABM=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1 Validity Not Before: Apr 9 04:26:50 2025 GMT Not After : Apr 16 04:26:50 2025 GMT Subject: CN=67f5f70a-fa88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8b:bc:3f:29:b5:06:8d:b6:cc:93:d6:d2:ed: 4e:c3:fb:ab:02:44:69:f5:83:7c:a0:9c:b5:d2:56: 87:b4:2b:05:a4:ee:00:0b:e0:fe:1e:47:98:f3:d0: e8:74:ce:48:d9:20:3e:1c:14:9d:ac:ff:98:22:70: 5f:26:bf:bf:08:38:43:90:95:63:56:54:62:2b:77: fc:6b:e9:61:08:14:26:bb:d1:fc:66:28:15:3d:8b: 8c:23:67:9b:fa:28:76:65:9f:d2:5b:f0:53:76:02: 9e:7f:50:48:c9:d6:67:70:bb:e7:61:cb:90:59:16: 15:72:5f:e8:81:bb:6f:d0:a2:68:e1:57:c4:63:c9: 74:c3:e7:21:47:5f:f7:98:28:cb:c0:b8:32:43:4c: ed:9a:a4:db:c2:9f:7d:ac:4c:14:c8:6e:57:eb:7f: b1:47:17:8a:a5:8e:17:82:30:31:ac:81:48:9e:21: 08:0a:a1:87:30:1c:37:d2:84:85:fb:78:d0:ff:ca: 46:93:f0:44:16:25:bc:4c:e9:28:76:86:64:4f:5e: 80:7e:29:af:b4:b6:c9:02:87:d4:4b:82:e2:e9:13: 33:15:2d:52:fb:10:5a:6f:7c:4f:96:71:8b:fe:a4: 10:9e:ea:63:33:c7:19:e1:3e:78:0b:1e:ca:1d:1e: e7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B4:26:57:EA:8B:1C:CE:4C:EE:A5:F3:66:6F:15:9C:C8:A2:71:E0 X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:5a:99:46:48:51:9b:d9:7f:3f:d2:34:82:18:c0:45:14:46: 2c:51:f8:01:04:42:87:28:46:ce:7b:28:97:d0:51:c0:a5:60: 88:0f:f7:1f:41:96:9a:01:65:a9:e9:fe:e4:72:9d:cd:d4:dc: 6a:f0:c3:6e:3e:cc:da:47:a2:07:2d:d7:b2:96:d4:2a:63:1d: fa:8a:91:a0:6b:77:6d:c8:9d:21:cd:d9:28:9d:90:64:89:92: ca:c7:ec:f9:50:01:28:67:85:f8:e9:e7:8d:45:c7:f1:e7:ab: b5:81:4d:ed:57:a6:a9:ec:f3:41:c8:f9:77:53:3b:ae:6c:81: b7:5e:92:09:af:53:34:7c:d8:36:4d:a7:a8:c2:ec:0b:c9:fc: 29:41:35:e2:e9:a6:4c:81:2e:e0:1d:28:2d:37:fa:8a:e7:af: 45:76:fb:fb:02:8c:05:a0:11:11:f7:88:91:6e:3b:79:88:92: b3:a0:cc:9a:5f:2e:6a:6e:60:41:b7:e2:53:68:a9:4f:3a:c0: fc:f3:7e:a7:93:07:8f:f3:9b:67:98:57:52:a7:a0:03:d8:3d: 29:a7:3e:cb:80:ff:8d:10:d6:30:54:fa:d3:c5:e3:a2:fe:b4: 50:89:75:3f:a1:d6:3d:9e:b6:55:a6:d1:c5:59:eb:2f:63:95: 40:98:5a:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwNDA5MDQyNjUwWhcNMjUwNDE2MDQyNjUwWjAYMRYwFAYD VQQDEw02N2Y1ZjcwYS1mYTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl4u8Pym1Bo22zJPW0u1Ow/urAkRp9YN8oJy10laHtCsFpO4AC+D+HkeY89Do dM5I2SA+HBSdrP+YInBfJr+/CDhDkJVjVlRiK3f8a+lhCBQmu9H8ZigVPYuMI2eb +ih2ZZ/SW/BTdgKef1BIydZncLvnYcuQWRYVcl/ogbtv0KJo4VfEY8l0w+chR1/3 mCjLwLgyQ0ztmqTbwp99rEwUyG5X63+xRxeKpY4XgjAxrIFIniEICqGHMBw30oSF +3jQ/8pGk/BEFiW8TOkodoZkT16AfimvtLbJAofUS4Li6RMzFS1S+xBab3xPlnGL /qQQnupjM8cZ4T54Cx7KHR7n7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOW0Jlfq ixzOTO6l82ZvFZzIonHgMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqWplGSFGb2X8/0jSCGMBFFEYsUfgBBEKHKEbOeyiX0FHApWCID/cf QZaaAWWp6f7kcp3N1Nxq8MNuPszaR6IHLdeyltQqYx36ipGga3dtyJ0hzdkonZBk iZLKx+z5UAEoZ4X46eeNRcfx56u1gU3tV6ap7PNByPl3UzuubIG3XpIJr1M0fNg2 TaeowuwLyfwpQTXi6aZMgS7gHSgtN/qK569Fdvv7AowFoBER94iRbjt5iJKzoMya Xy5qbmBBt+JTaKlPOsD8836nkweP85tnmFdSp6AD2D0ppz7LgP+NENYwVPrTxeOi /rRQiXU/odY9nrZVptHFWesvY5VAmFr9 -----END CERTIFICATE-----Generated at Fri Apr 11 00:39:36 2025 by rpki-client