$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: 0pVTtjyyNx/X1slJVnwhKenIVNgOXzB9WYvBdw0wwrI= Subject key identifier: 24:2C:57:13:B6:54:14:6C:05:4C:81:E3:FC:C7:6B:7D:31:DD:47:61 Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 076B Signing time: Tue 08 Apr 2025 21:17:08 +0000 Manifest this update: Tue 08 Apr 2025 21:17:08 +0000 Manifest next update: Tue 15 Apr 2025 21:17:08 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: fDBUk7vQ9IKxghKazWDUxSfoD3B6+vp/XUuJhEnbe/w=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB Validity Not Before: Apr 8 21:17:08 2025 GMT Not After : Apr 15 21:17:08 2025 GMT Subject: CN=67f59254-061b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:01:cb:e6:3d:ff:a7:7d:de:91:f8:8c:de:50: bf:40:e8:19:2b:37:2f:64:f7:a6:fa:34:56:ba:d5: 5d:51:1e:2a:54:9c:9c:d2:4a:64:65:ee:da:ea:b2: e8:5e:0a:d9:9f:20:9a:b4:56:c1:f2:97:f4:0b:89: 92:9c:6c:cd:40:1f:7b:32:b1:6e:cb:9c:ff:7a:70: 35:a0:22:11:5b:2e:ce:03:53:c2:89:e5:2d:53:84: f2:b2:23:63:31:07:c5:ba:d5:25:c3:14:b5:9d:7c: 3b:a8:60:a3:94:7e:d5:d8:25:5c:49:97:49:dc:1b: b5:d8:d9:97:32:b5:bd:64:a5:14:5c:5f:8a:81:99: 68:3b:fc:01:95:8f:c5:49:79:0b:92:92:3e:eb:11: ec:ae:f0:8d:52:9d:e6:11:ce:e8:eb:eb:1f:ea:16: 7b:05:9a:3c:77:9c:dc:d8:8b:0f:2b:43:af:57:10: ad:b8:1a:1c:80:d9:53:30:da:7d:9a:84:c0:a8:eb: fe:e5:25:e4:06:a5:21:fe:c2:2c:78:65:8a:0f:30: 1a:f3:ed:16:da:d6:3b:7b:d1:cf:23:b7:72:fa:02: a6:29:f6:38:59:3d:ee:b2:3b:5f:f4:d4:ec:f1:27: aa:d0:d0:42:df:29:1e:bf:da:83:3d:63:fd:06:57: 40:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2C:57:13:B6:54:14:6C:05:4C:81:E3:FC:C7:6B:7D:31:DD:47:61 X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:34:d8:ea:a5:6a:7d:a8:b6:f7:95:73:4a:8d:a5:32:68:e1: c9:61:86:84:17:88:24:bf:e0:2e:dd:bf:e4:95:07:af:e3:ee: b0:fb:eb:50:cf:9c:f5:1e:fd:5f:5a:1c:d9:02:40:38:0c:7f: 40:73:e5:77:bf:41:db:3d:4e:c9:87:5b:39:80:99:e5:1f:6d: c8:86:a9:63:b3:ef:1b:35:41:67:f2:dc:5d:a1:f3:e1:1b:17: ad:9a:0a:55:de:ef:a1:e1:b6:6d:c5:88:f3:a3:9f:46:60:a5: b6:3b:71:3a:81:ce:b8:2b:a8:9f:b7:83:f9:3c:19:39:35:d3: ba:1a:7c:c9:a0:19:a5:3b:c8:7f:80:fd:78:d1:07:50:76:a8: a9:5d:a1:a3:44:a4:f0:17:65:ec:d6:36:c0:15:0d:3e:a6:9c: 54:38:74:c1:44:66:46:7a:8d:f2:de:20:13:1b:84:a2:fd:fb: 4e:ab:93:33:12:93:31:f6:73:5c:17:43:5f:c0:84:cf:b5:e6: a9:f6:f6:fd:b7:ab:3e:9b:32:b5:c3:db:a2:d7:42:c5:41:46: 80:00:7b:bb:f7:f2:63:3d:49:d1:5f:8c:61:68:98:bd:70:5c: bb:83:8e:69:9b:e3:2c:4b:ef:59:67:b6:fc:ee:7a:67:51:81: 7b:c2:a4:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNDA4MjExNzA4WhcNMjUwNDE1MjExNzA4WjAYMRYwFAYD VQQDEw02N2Y1OTI1NC0wNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgHL5j3/p33ekfiM3lC/QOgZKzcvZPem+jRWutVdUR4qVJyc0kpkZe7a6rLo XgrZnyCatFbB8pf0C4mSnGzNQB97MrFuy5z/enA1oCIRWy7OA1PCieUtU4TysiNj MQfFutUlwxS1nXw7qGCjlH7V2CVcSZdJ3Bu12NmXMrW9ZKUUXF+KgZloO/wBlY/F SXkLkpI+6xHsrvCNUp3mEc7o6+sf6hZ7BZo8d5zc2IsPK0OvVxCtuBocgNlTMNp9 moTAqOv+5SXkBqUh/sIseGWKDzAa8+0W2tY7e9HPI7dy+gKmKfY4WT3usjtf9NTs 8Seq0NBC3ykev9qDPWP9BldAhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQsVxO2 VBRsBUyB4/zHa30x3UdhMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfNNjqpWp9qLb3lXNKjaUyaOHJYYaEF4gkv+Au3b/klQev4+6w++tQ z5z1Hv1fWhzZAkA4DH9Ac+V3v0HbPU7Jh1s5gJnlH23Ihqljs+8bNUFn8txdofPh GxetmgpV3u+h4bZtxYjzo59GYKW2O3E6gc64K6ift4P5PBk5NdO6GnzJoBmlO8h/ gP140QdQdqipXaGjRKTwF2Xs1jbAFQ0+ppxUOHTBRGZGeo3y3iATG4Si/ftOq5Mz EpMx9nNcF0NfwITPteap9vb9t6s+mzK1w9ui10LFQUaAAHu79/JjPUnRX4xhaJi9 cFy7g45pm+MsS+9ZZ7b87npnUYF7wqTf -----END CERTIFICATE-----Generated at Thu Apr 10 18:40:22 2025 by rpki-client