$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: jKptPg+DtZhcxuoz14wA6uqgkeIiJNRVE78uSYiCJNQ= Subject key identifier: B7:B5:87:82:D3:C2:DA:F2:D0:24:0C:2F:3B:C1:2D:5E:27:E4:69:DF Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 0681 Signing time: Fri 04 Apr 2025 22:32:40 +0000 Manifest this update: Fri 04 Apr 2025 22:32:40 +0000 Manifest next update: Fri 11 Apr 2025 22:32:40 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: twSDb4IX9KjsqY2yRTeLiH0aonMBBHvGhQinOdi9bR0=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE Validity Not Before: Apr 4 22:32:40 2025 GMT Not After : Apr 11 22:32:40 2025 GMT Subject: CN=67f05e08-af5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:d8:45:32:30:2c:f2:eb:f3:81:d7:99:d0: 7b:88:2d:a9:aa:b6:c0:8c:09:fe:6c:0f:32:34:ed: 27:4a:83:6d:1d:08:41:48:18:4e:2e:e8:a4:e8:7f: 5b:3e:ec:10:ef:ad:76:d5:4f:d3:6f:8d:7b:12:13: 42:a7:3c:86:a0:56:95:d6:3f:f1:86:2f:b7:40:07: de:60:73:3c:53:94:5c:8b:ff:c4:a1:5e:c1:79:03: 68:d0:6b:3f:3b:5e:49:7d:17:93:9a:9e:0c:7a:51: 66:26:47:9d:08:00:21:41:9f:c4:fd:01:77:33:02: ec:66:1e:b8:60:39:6b:8d:2c:11:c1:02:7e:70:84: bb:49:f1:74:79:e0:4a:10:ba:9c:04:f0:8f:ad:7e: ba:96:23:ca:74:14:78:53:9a:0d:61:5b:fa:4b:58: dc:5d:32:71:7d:70:bf:4e:90:20:5b:7a:04:b3:ff: e8:33:3e:4c:d8:d1:50:79:e4:e1:b4:e9:d6:05:bd: 1b:09:15:26:de:02:5f:35:2f:9f:ef:8a:5e:23:ec: 11:4d:b2:17:98:e6:f3:0f:03:39:ef:82:0b:b7:b3: 6f:51:a2:7e:70:ce:cd:28:6b:21:b0:38:ed:f9:66: c5:d1:d2:eb:24:aa:b1:7b:6a:c4:13:5d:51:8e:d0: 23:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B5:87:82:D3:C2:DA:F2:D0:24:0C:2F:3B:C1:2D:5E:27:E4:69:DF X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:6e:0e:52:02:aa:e1:02:a9:ce:80:fc:cb:c4:a5:15:df:fb: b1:e7:79:71:56:08:2d:cd:52:3b:42:a9:6e:df:b1:9f:60:9d: 3f:27:3a:0e:49:9b:6c:d2:8a:79:d2:f6:9b:26:90:cb:82:1c: b8:34:84:c7:3c:8c:83:68:09:c9:9b:8a:1f:d3:75:12:6c:d8: 62:10:47:9a:9c:c6:cd:93:78:b8:37:80:54:e1:e8:dd:2d:90: 1a:61:87:ba:ab:4e:6b:fb:c2:9e:4f:62:0f:6b:1d:f6:6d:6b: 68:85:0d:57:97:d2:1c:84:ab:9d:2e:0e:aa:98:9f:c2:28:3a: 19:f3:76:dc:80:09:2b:80:79:1c:56:f6:bc:8d:ee:c7:0c:c6: 5f:24:a2:d9:f9:7b:ca:30:08:52:d6:c8:b7:f0:4f:90:ab:c4: 84:ea:43:5a:04:a7:13:30:4d:66:a5:ae:6f:58:b4:89:74:a9: 35:9c:68:90:cf:eb:f2:fd:8e:11:b8:c4:b9:ed:b9:55:48:95: bc:74:e2:7d:98:de:d3:38:52:34:40:5c:7c:c8:55:2f:90:e8: 13:b1:c7:a7:e5:30:ca:7e:43:17:cc:ea:a8:8e:e5:5e:84:f7: 4e:58:45:5e:e6:36:b7:c8:b9:59:ca:68:34:53:b7:53:99:aa: cb:15:de:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUwNDA0MjIzMjQwWhcNMjUwNDExMjIzMjQwWjAYMRYwFAYD VQQDEw02N2YwNWUwOC1hZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlDYRTIwLPLr84HXmdB7iC2pqrbAjAn+bA8yNO0nSoNtHQhBSBhOLuik6H9b PuwQ76121U/Tb417EhNCpzyGoFaV1j/xhi+3QAfeYHM8U5Rci//EoV7BeQNo0Gs/ O15JfReTmp4MelFmJkedCAAhQZ/E/QF3MwLsZh64YDlrjSwRwQJ+cIS7SfF0eeBK ELqcBPCPrX66liPKdBR4U5oNYVv6S1jcXTJxfXC/TpAgW3oEs//oMz5M2NFQeeTh tOnWBb0bCRUm3gJfNS+f74peI+wRTbIXmObzDwM574ILt7NvUaJ+cM7NKGshsDjt +WbF0dLrJKqxe2rEE11RjtAjKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLe1h4LT wtry0CQMLzvBLV4n5GnfMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0bg5SAqrhAqnOgPzLxKUV3/ux53lxVggtzVI7Qqlu37GfYJ0/JzoO SZts0op50vabJpDLghy4NITHPIyDaAnJm4of03USbNhiEEeanMbNk3i4N4BU4ejd LZAaYYe6q05r+8KeT2IPax32bWtohQ1Xl9IchKudLg6qmJ/CKDoZ83bcgAkrgHkc Vva8je7HDMZfJKLZ+XvKMAhS1si38E+Qq8SE6kNaBKcTME1mpa5vWLSJdKk1nGiQ z+vy/Y4RuMS57blVSJW8dOJ9mN7TOFI0QFx8yFUvkOgTscen5TDKfkMXzOqojuVe hPdOWEVe5ja3yLlZymg0U7dTmarLFd4v -----END CERTIFICATE-----Generated at Sun Apr 6 17:27:26 2025 by rpki-client