$ rpki-client -vvf rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft File: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft (raw, json) Hash identifier: r0esV17eD0mpQ9t2WeXr54WhulQ2KGOpjOqltIo6N44= Subject key identifier: DF:36:B2:65:A0:09:40:B6:F0:56:F1:B7:43:FB:C9:58:F7:33:B5:3A Authority key identifier: F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 Certificate issuer: /CN=A91955D9/serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft Manifest number: 4A Signing time: Thu 03 Apr 2025 06:36:23 +0000 Manifest this update: Thu 03 Apr 2025 06:36:22 +0000 Manifest next update: Thu 10 Apr 2025 06:36:22 +0000 Files and hashes: 1: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl (hash: gB8n4j+flr/Gg9wkAuH6yf3elMp0k++sLVPz6ufe0t4=) 2: 0D041790A28611EFBD5A8C11C4F9AE02.roa (hash: 97I65+Q066TDiRkq5FVajUp8ATxWSUAGmGMHS8ACfSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955D9 Validity Not Before: Apr 3 06:36:22 2025 GMT Not After : Apr 10 06:36:22 2025 GMT Subject: CN=67ee2c66-b927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:39:b1:33:2a:21:36:0e:71:b0:c0:27:00:3f: 3a:db:e8:93:e6:82:a8:3a:54:6a:c8:dc:7f:10:c6: c1:b7:c5:63:38:22:b3:11:3e:42:58:42:de:b1:6c: 4b:fd:16:b4:8a:b9:a6:5e:13:58:66:e7:93:d1:a9: df:f9:59:91:54:d1:ef:d1:99:10:62:28:e2:80:67: 1d:ef:44:34:6c:12:9d:51:ac:5e:ec:62:e1:13:00: 26:36:85:29:42:c9:96:04:bc:61:ce:a0:90:51:71: 6a:8b:49:b1:f7:f2:56:88:b7:78:74:78:c2:33:f0: 8f:a6:1c:db:a6:02:1e:29:33:f9:8f:e1:83:70:c2: 48:90:39:d7:0e:f8:5d:cc:32:99:5d:2c:3b:a0:62: 29:53:49:fe:52:06:9d:09:15:46:fe:10:2f:60:3e: d7:a5:d7:22:bb:6a:a9:47:5c:32:24:b7:1d:72:11: 17:18:78:2a:10:f4:f0:c7:8c:0b:3a:9e:1e:ec:8f: 76:97:e5:64:78:2f:7b:ce:28:bf:dd:7b:bb:af:6f: 85:bf:74:26:ff:11:6a:df:c7:5e:d1:f5:20:2a:aa: 4b:cc:25:38:cc:97:a2:b9:39:86:ac:fd:de:6a:f0: e5:c8:9c:3c:31:ab:9b:ec:f3:11:a2:01:e4:fb:36: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:B2:65:A0:09:40:B6:F0:56:F1:B7:43:FB:C9:58:F7:33:B5:3A X509v3 Authority Key Identifier: keyid:F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:3a:8e:8c:bc:29:3c:81:d7:b1:21:71:28:02:02:51:45:35: 9e:64:3c:2e:ab:73:66:c3:04:39:1b:03:10:9e:04:a2:36:9d: 19:99:1d:04:82:7a:d0:6c:47:6d:aa:ae:3d:99:b0:63:e4:87: 51:cf:9e:b1:5c:5c:80:69:62:aa:88:d2:d0:d4:ce:7d:0b:b5: fd:87:06:7b:6c:d7:48:8a:6d:1d:ea:47:52:4d:0a:6e:48:ea: e7:30:39:28:68:6e:5b:99:ab:a8:cc:2d:b2:e7:8a:f5:8f:d2: 23:34:1d:69:95:5a:2a:1a:87:e1:8d:6c:72:71:60:85:d9:78: e8:bf:0e:02:9c:1b:c3:c5:39:29:6f:c7:7e:72:f6:68:de:32: 1a:b9:b3:24:76:0f:80:a6:8a:b3:e5:e4:fe:1c:33:7d:8e:d9: d4:fb:5c:c1:4c:0f:02:eb:72:34:c4:be:bb:a7:2a:be:8c:0b: 50:01:92:08:51:f4:10:aa:e0:51:4a:14:eb:3c:e2:4c:04:9f: 90:78:de:8d:5f:46:6d:3d:4e:db:8b:ee:17:18:64:6e:1c:d8: 59:96:32:40:a9:69:d4:bc:2c:7b:b5:d7:07:66:f1:cd:f3:8c: 50:e1:c2:3c:15:80:02:33:9b:a5:e7:93:34:4d:44:d9:95:2a: b5:07:de:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTVEOTExMC8GA1UEBRMoRjI2QTgxMDE5MTY5NTJGQjIwQkUwMUU4RkM3QzkwRURD OUVFOUY3ODAeFw0yNTA0MDMwNjM2MjJaFw0yNTA0MTAwNjM2MjJaMBgxFjAUBgNV BAMTDTY3ZWUyYzY2LWI5MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwObEzKiE2DnGwwCcAPzrb6JPmgqg6VGrI3H8QxsG3xWM4IrMRPkJYQt6xbEv9 FrSKuaZeE1hm55PRqd/5WZFU0e/RmRBiKOKAZx3vRDRsEp1RrF7sYuETACY2hSlC yZYEvGHOoJBRcWqLSbH38laIt3h0eMIz8I+mHNumAh4pM/mP4YNwwkiQOdcO+F3M MpldLDugYilTSf5SBp0JFUb+EC9gPtel1yK7aqlHXDIktx1yERcYeCoQ9PDHjAs6 nh7sj3aX5WR4L3vOKL/de7uvb4W/dCb/EWrfx17R9SAqqkvMJTjMl6K5OYas/d5q 8OXInDwxq5vs8xGiAeT7NswZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3zayZaAJ QLbwVvG3Q/vJWPcztTowHwYDVR0jBBgwFoAU8mqBAZFpUvsgvgHo/HyQ7cnun3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NUQ5L0NENTRENzM4QTI4 NTExRUZCNjZCMTgxMUM0RjlBRTAyLzhtcUJBWkZwVXZzZ3ZnSG9fSHlRN2NudW4z Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOG1xQkFaRnBVdnNndmdIb19IeVE3Y251bjNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 NUQ5L0NENTRENzM4QTI4NTExRUZCNjZCMTgxMUM0RjlBRTAyLzhtcUJBWkZwVXZz Z3ZnSG9fSHlRN2NudW4zZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAU6joy8KTyB17EhcSgCAlFFNZ5kPC6rc2bDBDkbAxCeBKI2nRmZHQSC etBsR22qrj2ZsGPkh1HPnrFcXIBpYqqI0tDUzn0Ltf2HBnts10iKbR3qR1JNCm5I 6ucwOShobluZq6jMLbLnivWP0iM0HWmVWioah+GNbHJxYIXZeOi/DgKcG8PFOSlv x35y9mjeMhq5syR2D4CmirPl5P4cM32O2dT7XMFMDwLrcjTEvrunKr6MC1ABkghR 9BCq4FFKFOs84kwEn5B43o1fRm09TtuL7hcYZG4c2FmWMkCpadS8LHu11wdm8c3z jFDhwjwVgAIzm6XnkzRNRNmVKrUH3gY= -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:48 2025 by rpki-client