$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.mft File: U0TWuzfqDMOR0SQgetmV_Nd7npU.mft (raw, json) Hash identifier: W19s5+LeJv+IPuxGlbdVZ7N378CcG0G0Vr0Ul9hwsgk= Subject key identifier: 14:DD:DF:CE:8B:80:0A:C0:7D:24:37:5C:DC:96:CB:68:CE:99:91:20 Authority key identifier: 53:44:D6:BB:37:EA:0C:C3:91:D1:24:20:7A:D9:95:FC:D7:7B:9E:95 Certificate issuer: /CN=A91881D5/serialNumber=5344D6BB37EA0CC391D124207AD995FCD77B9E95 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.mft Manifest number: 4A Signing time: Sat 29 Mar 2025 06:44:37 +0000 Manifest this update: Sat 29 Mar 2025 06:44:37 +0000 Manifest next update: Sat 05 Apr 2025 06:44:37 +0000 Files and hashes: 1: U0TWuzfqDMOR0SQgetmV_Nd7npU.crl (hash: enxeAYexcwDqvXLQ0ClTXhM5S2AHPY/S16EU/OyHGE0=) 2: 0C8BE222C89F11EF972B8B0FC4F9AE02.roa (hash: R1ZRqn0ylt//iP3Dpq4PDjSTmlLC/ZvrxfTWyncyjuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.crl rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D5 Validity Not Before: Mar 29 06:44:37 2025 GMT Not After : Apr 5 06:44:37 2025 GMT Subject: CN=67e796d5-6f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0b:d5:ca:b1:81:e0:ff:c5:b9:80:fd:6c:bf: 83:7e:ee:40:a4:69:f7:79:11:32:26:b7:2d:7b:db: eb:94:86:96:2c:4a:45:d5:9e:db:ba:f6:ad:05:0c: ec:c9:8f:c7:34:81:3c:fe:6b:af:b3:bd:9c:9c:47: ac:52:2d:70:89:6f:ea:cc:07:83:6a:f7:2d:b9:d5: 81:e5:3f:fc:32:8f:95:95:2c:bc:c3:fb:e2:a3:2a: 2c:a0:c8:01:63:8f:82:41:9f:e6:7f:e7:51:60:7e: 7a:38:ba:96:30:31:8e:75:43:e9:d4:60:e7:7e:b8: 46:ce:91:56:01:04:18:37:87:2a:23:74:3e:1b:7f: 2c:f2:9a:92:8c:79:8d:02:4d:83:a4:f6:67:a3:26: ad:a4:7e:c3:df:ef:5e:99:81:d8:20:b1:26:57:ef: e6:de:30:bc:5b:21:2d:be:46:56:79:a5:88:c3:f0: ba:1f:08:b1:fd:96:f3:1c:0e:9e:8e:8f:8d:4c:64: 45:81:39:22:cb:4d:a3:cb:4b:27:1e:1b:3e:71:53: 6d:3b:44:50:a5:40:14:52:4a:25:b0:fc:7f:50:78: 75:ec:01:5f:17:da:43:28:1e:ca:d1:6a:80:3f:16: 99:a2:63:c6:15:56:47:aa:89:65:fc:1c:79:cd:7c: de:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DD:DF:CE:8B:80:0A:C0:7D:24:37:5C:DC:96:CB:68:CE:99:91:20 X509v3 Authority Key Identifier: keyid:53:44:D6:BB:37:EA:0C:C3:91:D1:24:20:7A:D9:95:FC:D7:7B:9E:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:32:39:15:a9:6b:a1:d8:8d:c8:fc:1d:86:82:33:f4:ed:59: 41:89:68:04:d8:38:db:0f:0d:9c:c8:f2:a0:6c:ca:16:31:c8: 4e:2f:ea:9a:f6:f4:7f:cc:6e:d7:f9:b1:c6:96:37:20:79:6e: 36:8e:2f:85:79:bb:f8:c4:0f:bb:53:04:69:a7:8a:a9:0c:28: 07:be:bf:9f:a6:e8:67:6e:97:69:c0:fc:6b:a6:c1:e1:60:9a: 04:d7:81:37:23:72:f7:d8:cd:ef:4d:35:61:e5:95:8d:4a:ad: 60:69:17:b3:d1:84:d9:69:77:df:c9:11:25:0e:31:bd:00:9b: 7e:97:60:7c:61:26:fd:29:b3:d4:0d:8f:01:6d:2a:a3:be:fd: 24:c1:4f:60:b5:9d:fa:e7:5e:da:56:bd:85:19:81:f7:20:95: a5:48:d0:b3:df:80:8e:fd:7e:2b:9d:3d:6e:ac:5c:8b:84:73: 0e:54:0c:0f:1c:50:89:cd:a8:42:21:3a:a7:b0:23:c8:b7:15: e4:17:b9:ac:e9:3a:b8:16:fe:f3:5a:00:04:75:0e:e0:33:20: 34:a6:41:94:1d:8b:72:0e:43:39:31:3d:82:b6:15:cb:6c:4d: 72:be:78:98:55:08:f0:b6:67:0c:ac:ba:88:bd:77:7c:c2:00: 32:a7:99:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 ODFENTExMC8GA1UEBRMoNTM0NEQ2QkIzN0VBMENDMzkxRDEyNDIwN0FEOTk1RkNE NzdCOUU5NTAeFw0yNTAzMjkwNjQ0MzdaFw0yNTA0MDUwNjQ0MzdaMBgxFjAUBgNV BAMTDTY3ZTc5NmQ1LTZmMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAC9XKsYHg/8W5gP1sv4N+7kCkafd5ETImty172+uUhpYsSkXVntu69q0FDOzJ j8c0gTz+a6+zvZycR6xSLXCJb+rMB4Nq9y251YHlP/wyj5WVLLzD++KjKiygyAFj j4JBn+Z/51Fgfno4upYwMY51Q+nUYOd+uEbOkVYBBBg3hyojdD4bfyzympKMeY0C TYOk9mejJq2kfsPf716ZgdggsSZX7+beMLxbIS2+RlZ5pYjD8LofCLH9lvMcDp6O j41MZEWBOSLLTaPLSyceGz5xU207RFClQBRSSiWw/H9QeHXsAV8X2kMoHsrRaoA/ FpmiY8YVVkeqiWX8HHnNfN6VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFN3fzouA CsB9JDdc3JbLaM6ZkSAwHwYDVR0jBBgwFoAUU0TWuzfqDMOR0SQgetmV/Nd7npUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4MUQ1LzY2NURCN0M2QTdD MDExRUY5OEJBNUUyQUM0RjlBRTAyL1UwVFd1emZxRE1PUjBTUWdldG1WX05kN25w VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTBUV3V6ZnFETU9SMFNRZ2V0bVZfTmQ3bnBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4 MUQ1LzY2NURCN0M2QTdDMDExRUY5OEJBNUUyQUM0RjlBRTAyL1UwVFd1emZxRE1P UjBTUWdldG1WX05kN25wVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALIyORWpa6HYjcj8HYaCM/TtWUGJaATYONsPDZzI8qBsyhYxyE4v6pr2 9H/Mbtf5scaWNyB5bjaOL4V5u/jED7tTBGmniqkMKAe+v5+m6Gdul2nA/GumweFg mgTXgTcjcvfYze9NNWHllY1KrWBpF7PRhNlpd9/JESUOMb0Am36XYHxhJv0ps9QN jwFtKqO+/STBT2C1nfrnXtpWvYUZgfcglaVI0LPfgI79fiudPW6sXIuEcw5UDA8c UInNqEIhOqewI8i3FeQXuazpOrgW/vNaAAR1DuAzIDSmQZQdi3IOQzkxPYK2Fcts TXK+eJhVCPC2Zwysuoi9d3zCADKnmcw= -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:50 2025 by rpki-client