$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft File: bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft (raw, json) Hash identifier: SWiLJfk3cunI4JMTH5vJiuRcVoKNoWZ4V5t3jZjQq0o= Subject key identifier: D1:FB:D6:15:15:4B:9A:7A:ED:33:DE:56:67:F2:FB:65:ED:78:BE:25 Authority key identifier: 6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 Certificate issuer: /CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Certificate serial: 17F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft Manifest number: 17EF Signing time: Fri 04 Apr 2025 16:37:34 +0000 Manifest this update: Fri 04 Apr 2025 16:37:34 +0000 Manifest next update: Fri 11 Apr 2025 16:37:34 +0000 Files and hashes: 1: bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl (hash: Nko8bdeT4BugWDnXdXVhYBvWD2+gFWtA7F0e8STJu6s=) 2: 870C2B58B47811E788EC7E65C4F9AE02.roa (hash: IgkWueiZzDaSaqXsqac+/PyEgRdDcfnQbUbjQVGTTtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6136 (0x17f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D9 Validity Not Before: Apr 4 16:37:34 2025 GMT Not After : Apr 11 16:37:34 2025 GMT Subject: CN=67f00ace-beef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d2:af:46:08:ee:7e:0b:c4:ba:cb:f3:6a:1e: 0e:fa:62:e1:49:b1:73:6f:86:4d:0c:06:af:60:b4: cb:26:8f:14:58:f5:b9:6e:e4:1d:71:b6:2b:80:86: 31:93:b8:07:c2:cf:d1:64:5a:e4:00:66:aa:b6:12: 8f:03:f2:1c:bc:c3:e1:ab:a0:12:b9:77:51:72:1e: 25:52:d6:b7:1f:e0:22:a7:40:87:33:16:96:20:cd: 3b:30:32:dc:7c:ec:64:b4:29:d1:57:67:63:2b:98: d4:0c:08:f3:c7:bc:eb:08:bd:9e:63:56:06:41:32: fe:b1:c7:a6:7b:43:d1:5c:ee:47:00:f0:6a:64:3a: 76:7a:e0:2b:7d:26:ef:08:3a:e1:a4:70:52:2e:04: fc:93:ea:a5:e9:ae:08:db:36:d0:9a:25:d1:93:74: 05:40:e7:e1:8a:c3:4c:88:c8:e5:4b:a8:e4:46:20: 3a:09:a7:22:be:05:9e:fe:95:07:d5:b0:a4:0b:f8: aa:6a:c0:51:ed:56:ed:e2:eb:10:2e:48:7c:ad:8e: 73:b2:80:f2:27:b9:21:c4:1c:b1:f4:69:2a:3f:82: af:56:39:f8:55:66:2f:56:5f:5e:22:df:92:94:8d: e2:aa:8e:a6:43:33:a7:c2:0c:96:e4:1d:54:25:ae: d9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FB:D6:15:15:4B:9A:7A:ED:33:DE:56:67:F2:FB:65:ED:78:BE:25 X509v3 Authority Key Identifier: keyid:6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:36:07:ce:f9:d0:fc:ed:c5:34:7f:85:56:17:f7:ea:d6:28: 79:9c:98:54:93:1e:04:99:bb:b1:af:96:17:64:e7:a1:2a:06: bc:bc:61:94:79:d9:2b:98:31:1d:e8:eb:4b:f6:4a:46:6b:0f: 4e:d5:b1:37:8b:a3:5a:fd:23:41:f2:36:a9:50:83:8a:1f:69: ee:e5:cf:df:f9:ff:3d:04:12:0f:c6:9c:09:e5:15:6c:6a:fb: 8b:f9:54:49:73:0d:c1:93:7a:cf:9d:76:a7:6c:63:30:3b:e4: a5:be:6c:5c:0a:b6:f1:ec:d8:03:a4:47:7f:5a:8b:c9:a4:e4: f9:10:a3:ec:1d:a1:46:54:50:c8:a5:e5:b0:42:bb:9b:cd:87: 5d:ff:62:53:fd:f2:6f:60:0f:fa:3c:74:d0:0b:b1:7d:04:9d: a8:55:90:91:de:70:70:ca:1d:a4:5c:10:26:14:bc:e1:e6:08: d2:86:48:3b:70:4b:7b:8f:f8:b1:a0:2b:0f:8e:5f:9c:39:a9: b7:1e:cd:f5:7f:60:82:f6:19:63:5a:b8:be:0b:74:42:31:3a: c9:45:8c:4f:5c:c6:5c:6d:38:c8:3a:19:74:39:51:2a:97:1f: c8:31:52:a4:91:91:4a:2a:81:61:21:01:a5:f3:01:95:62:75: 2d:c9:13:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgxRDkxMTAvBgNVBAUTKDZDMUI2MzhFQTlEN0M2Q0UwMjNDQjVFNTdFM0NBRTE2 QTExQjQ1MDUwHhcNMjUwNDA0MTYzNzM0WhcNMjUwNDExMTYzNzM0WjAYMRYwFAYD VQQDEw02N2YwMGFjZS1iZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tKvRgjufgvEusvzah4O+mLhSbFzb4ZNDAavYLTLJo8UWPW5buQdcbYrgIYx k7gHws/RZFrkAGaqthKPA/IcvMPhq6ASuXdRch4lUta3H+Aip0CHMxaWIM07MDLc fOxktCnRV2djK5jUDAjzx7zrCL2eY1YGQTL+sceme0PRXO5HAPBqZDp2euArfSbv CDrhpHBSLgT8k+ql6a4I2zbQmiXRk3QFQOfhisNMiMjlS6jkRiA6CacivgWe/pUH 1bCkC/iqasBR7Vbt4usQLkh8rY5zsoDyJ7khxByx9GkqP4KvVjn4VWYvVl9eIt+S lI3iqo6mQzOnwgyW5B1UJa7Z7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH71hUV S5p67TPeVmfy+2XteL4lMB8GA1UdIwQYMBaAFGwbY46p18bOAjy15X48rhahG0UF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODFEOS9EODlCQjMwRUI0 NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhzNENQTFhsZmp5dUZxRWJS UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCdGpqcW5YeHM0Q1BMWGxmanl1RnFFYlJRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODFEOS9EODlCQjMwRUI0NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhz NENQTFhsZmp5dUZxRWJSUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+NgfO+dD87cU0f4VWF/fq1ih5nJhUkx4Embuxr5YXZOehKga8vGGU edkrmDEd6OtL9kpGaw9O1bE3i6Na/SNB8japUIOKH2nu5c/f+f89BBIPxpwJ5RVs avuL+VRJcw3Bk3rPnXanbGMwO+SlvmxcCrbx7NgDpEd/WovJpOT5EKPsHaFGVFDI peWwQrubzYdd/2JT/fJvYA/6PHTQC7F9BJ2oVZCR3nBwyh2kXBAmFLzh5gjShkg7 cEt7j/ixoCsPjl+cOam3Hs31f2CC9hljWri+C3RCMTrJRYxPXMZcbTjIOhl0OVEq lx/IMVKkkZFKKoFhIQGl8wGVYnUtyRNQ -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:33 2025 by rpki-client