$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: RstwFDdk2fTAgWvJh+UhPLA55PunArJJO8FItBDCbEs= Subject key identifier: DE:E8:16:08:17:A1:69:03:B4:41:C8:2E:72:BC:C3:75:A2:F4:17:28 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 067E Signing time: Wed 02 Apr 2025 22:16:26 +0000 Manifest this update: Wed 02 Apr 2025 22:16:25 +0000 Manifest next update: Wed 09 Apr 2025 22:16:25 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: byNMJyshf9XTlWemDAlY2+j6Xmg0/uFVGZZFPVgdpEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA Validity Not Before: Apr 2 22:16:25 2025 GMT Not After : Apr 9 22:16:25 2025 GMT Subject: CN=67edb73a-e874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:08:10:8b:ca:4c:19:dd:bf:2d:dd:a0:6a:fd: 05:9e:a3:97:c9:e4:c3:1c:e8:d9:8a:55:bf:be:a9: 04:f1:bf:7f:64:85:1d:db:33:14:76:84:0e:a0:75: 99:f8:b6:02:36:62:b3:ba:63:22:91:3b:06:05:27: 8b:a2:f8:92:92:fe:d5:8b:9a:7a:6c:d8:21:a5:68: 8b:81:9d:60:38:d2:f7:6f:b9:47:2b:14:9d:e4:ca: 47:26:27:74:c7:c1:e4:ce:95:13:3b:9f:54:49:5b: b6:b9:dd:4e:c3:6d:58:40:10:4c:ff:81:15:20:82: 0d:20:e9:42:4d:0b:7a:26:e8:4e:64:93:97:5f:57: bb:45:be:22:b2:2f:ab:0b:cd:4b:7b:db:05:c4:7a: 6d:1a:45:fd:7d:98:6b:4a:9a:55:a2:8e:76:38:85: 1c:66:50:70:d3:fe:33:7f:db:c3:ba:4f:91:ef:c1: c0:a0:c5:3a:76:b1:ec:d6:e5:f0:7c:4e:84:30:92: 3a:32:0e:7a:d9:2b:f0:b0:21:da:44:1d:16:44:c2: 86:59:62:a4:9a:63:dc:7f:85:46:09:f6:19:d8:cd: 25:22:27:6e:3a:ef:cb:0d:58:97:c7:cf:a8:e3:a9: 9d:7e:c0:d2:a8:d5:6e:49:f2:9c:8a:18:0d:89:9f: 23:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E8:16:08:17:A1:69:03:B4:41:C8:2E:72:BC:C3:75:A2:F4:17:28 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:43:59:df:69:8c:1d:be:4c:ed:e8:57:38:9e:4b:28:0f:15: 2b:57:a9:56:8f:65:e0:30:9f:6f:11:93:2d:a6:28:b9:59:a6: 95:f3:76:9f:4d:96:b9:52:bc:ab:98:8b:6e:d4:4e:69:fc:39: 7c:18:35:aa:69:98:f4:81:bb:fa:a5:8e:90:60:24:da:62:9e: fa:d6:b5:34:2b:89:59:a5:7c:4a:84:5c:81:30:10:32:22:fc: 06:58:00:6f:c9:4d:9e:f8:7b:44:3b:5e:94:df:6d:8f:a8:ca: 5e:5e:7c:85:52:90:5c:86:4a:49:67:ab:b7:cd:0e:a0:31:aa: 7e:8f:c9:fa:33:f4:e4:93:82:2e:43:5e:8b:78:05:3d:81:18: 3f:53:f6:ba:fb:7b:fd:2a:17:82:35:f2:55:b1:98:a7:92:e7: 35:e8:39:a5:69:ae:73:83:98:56:f8:ae:0d:a3:39:ee:d7:89: db:4f:41:aa:78:8d:93:28:4b:04:4a:99:25:ba:e1:7a:e1:5a: 08:dc:0c:e5:fa:2d:09:82:2d:c0:1c:fc:ff:a2:72:1b:8a:a8: 34:e0:10:7c:16:02:16:ce:aa:c2:c2:69:19:46:c1:7c:d2:23: fe:c5:8b:b9:cd:e7:4d:eb:20:ac:a7:49:fe:5f:bb:e1:bd:9c: 4e:72:4c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUwNDAyMjIxNjI1WhcNMjUwNDA5MjIxNjI1WjAYMRYwFAYD VQQDEw02N2VkYjczYS1lODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAgQi8pMGd2/Ld2gav0FnqOXyeTDHOjZilW/vqkE8b9/ZIUd2zMUdoQOoHWZ +LYCNmKzumMikTsGBSeLoviSkv7Vi5p6bNghpWiLgZ1gONL3b7lHKxSd5MpHJid0 x8HkzpUTO59USVu2ud1Ow21YQBBM/4EVIIINIOlCTQt6JuhOZJOXX1e7Rb4isi+r C81Le9sFxHptGkX9fZhrSppVoo52OIUcZlBw0/4zf9vDuk+R78HAoMU6drHs1uXw fE6EMJI6Mg562SvwsCHaRB0WRMKGWWKkmmPcf4VGCfYZ2M0lIiduOu/LDViXx8+o 46mdfsDSqNVuSfKcihgNiZ8jTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7oFggX oWkDtEHILnK8w3Wi9BcoMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFQ1nfaYwdvkzt6Fc4nksoDxUrV6lWj2XgMJ9vEZMtpii5WaaV83af TZa5UryrmItu1E5p/Dl8GDWqaZj0gbv6pY6QYCTaYp761rU0K4lZpXxKhFyBMBAy IvwGWABvyU2e+HtEO16U322PqMpeXnyFUpBchkpJZ6u3zQ6gMap+j8n6M/Tkk4Iu Q16LeAU9gRg/U/a6+3v9KheCNfJVsZinkuc16Dmlaa5zg5hW+K4Noznu14nbT0Gq eI2TKEsESpkluuF64VoI3Azl+i0Jgi3AHPz/onIbiqg04BB8FgIWzqrCwmkZRsF8 0iP+xYu5zedN6yCsp0n+X7vhvZxOckxz -----END CERTIFICATE-----Generated at Fri Apr 4 18:27:10 2025 by rpki-client