$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft File: p93zVatoEjcBpb3RX2W6lktd4DU.mft (raw, json) Hash identifier: axLqrmupvc3y7T2EldkeFeNisTF1tV2QEiG+jZq9ZIE= Subject key identifier: C8:1A:AC:9F:FF:02:96:F3:26:B8:C0:3A:7A:33:6C:72:C5:1B:8D:C4 Authority key identifier: A7:DD:F3:55:AB:68:12:37:01:A5:BD:D1:5F:65:BA:96:4B:5D:E0:35 Certificate issuer: /CN=A9195A1A/serialNumber=A7DDF355AB68123701A5BDD15F65BA964B5DE035 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft Manifest number: 68 Signing time: Thu 03 Apr 2025 06:11:53 +0000 Manifest this update: Thu 03 Apr 2025 06:11:53 +0000 Manifest next update: Thu 10 Apr 2025 06:11:53 +0000 Files and hashes: 1: p93zVatoEjcBpb3RX2W6lktd4DU.crl (hash: JD34+Vd17teTeS/uZmY3LEiDJagKTUHA3U7OHIlisB8=) 2: 77BC7D3A74F411EF8B9E1067C4F9AE02.roa (hash: TnDDPyuYfLyHK//K+Hn8T0/qN9TuFXBURI4PhKRtzFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.crl rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A1A Validity Not Before: Apr 3 06:11:53 2025 GMT Not After : Apr 10 06:11:53 2025 GMT Subject: CN=67ee26a9-5530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7b:3c:26:de:73:aa:34:0c:21:e2:ba:ee:e4: e6:6b:8b:a4:5c:2f:83:48:b0:e7:14:ff:de:f8:96: 6d:0d:7f:7f:1c:bc:3d:f7:3e:09:ad:75:41:63:fd: 2e:38:b2:87:78:78:cb:2c:d8:68:94:e6:ed:7e:45: e7:2a:c6:0d:62:02:e9:52:09:53:15:0e:44:48:e1: 20:d6:11:0f:cd:90:08:3d:73:e6:36:e0:e8:36:80: cb:89:88:ab:f8:e5:ea:e5:9c:9a:ed:f9:6d:6b:d9: ec:38:fb:64:73:93:f2:0d:39:30:e4:63:ea:c9:44: f2:c7:0e:a7:9a:48:cc:23:58:16:26:7b:ab:44:c6: 9b:cd:24:10:be:f7:6a:92:18:62:66:50:0a:ea:95: 45:69:85:bb:a7:4a:b4:7b:8b:53:4f:fa:f1:2b:7d: 35:78:01:09:9e:77:16:ea:e7:f7:53:65:05:86:04: 58:70:fa:71:11:c4:a5:dd:98:88:b9:50:e9:42:f9: 04:29:0b:1c:f9:07:74:d4:7f:da:b6:69:e2:2d:06: b5:dc:d2:81:b5:31:bb:71:f1:46:7d:fd:3b:57:af: 4c:34:31:bc:55:43:5f:48:6c:51:ec:5b:ee:6f:96: 56:cf:5e:19:19:54:10:68:59:a8:99:1a:0a:55:66: 68:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1A:AC:9F:FF:02:96:F3:26:B8:C0:3A:7A:33:6C:72:C5:1B:8D:C4 X509v3 Authority Key Identifier: keyid:A7:DD:F3:55:AB:68:12:37:01:A5:BD:D1:5F:65:BA:96:4B:5D:E0:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:21:28:70:ca:c0:02:f4:b5:9c:64:c3:8e:37:3b:2a:38:62: c0:8f:0a:f4:08:db:ad:82:b7:10:78:1a:8b:e5:01:b7:0a:34: f9:1f:01:ca:fc:05:79:ae:82:1a:a6:32:c4:68:72:8c:58:15: 21:ae:58:16:12:82:ba:fa:a3:d3:37:30:01:ae:c9:e2:bb:a7: 06:cc:8c:51:4c:9e:73:2b:33:f0:fc:82:be:67:a2:04:9d:6f: 67:bf:8e:71:a3:f7:3e:2f:4a:dd:33:f5:9e:ce:f4:30:dd:27: 43:cd:b6:4f:ee:83:e5:48:6e:ba:28:cd:98:09:a4:e8:b6:3c: 50:af:ba:46:51:71:cc:e6:29:64:73:70:49:ec:82:87:8f:f1: fa:77:43:57:5b:bf:65:24:e7:da:f5:7c:cd:e9:91:03:07:87: 25:13:0d:fc:13:53:2c:2d:7a:c5:cd:19:a0:d5:fe:5a:6a:2b: 5a:cf:20:3c:9d:67:c1:2f:d9:e6:36:71:98:5a:96:bd:10:4f: cf:e2:5f:f9:3c:d8:99:d2:eb:14:00:72:1d:a3:56:1b:f8:1c: 99:24:ca:35:83:4f:a4:74:9e:88:20:47:81:57:57:54:19:65: 23:dd:dc:a0:ac:83:38:3c:90:a5:e4:61:ef:f5:ab:af:4c:29: c7:92:d0:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NUExQTExMC8GA1UEBRMoQTdEREYzNTVBQjY4MTIzNzAxQTVCREQxNUY2NUJBOTY0 QjVERTAzNTAeFw0yNTA0MDMwNjExNTNaFw0yNTA0MTAwNjExNTNaMBgxFjAUBgNV BAMTDTY3ZWUyNmE5LTU1MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRezwm3nOqNAwh4rru5OZri6RcL4NIsOcU/974lm0Nf38cvD33PgmtdUFj/S44 sod4eMss2GiU5u1+Recqxg1iAulSCVMVDkRI4SDWEQ/NkAg9c+Y24Og2gMuJiKv4 5erlnJrt+W1r2ew4+2Rzk/INOTDkY+rJRPLHDqeaSMwjWBYme6tExpvNJBC+92qS GGJmUArqlUVphbunSrR7i1NP+vErfTV4AQmedxbq5/dTZQWGBFhw+nERxKXdmIi5 UOlC+QQpCxz5B3TUf9q2aeItBrXc0oG1Mbtx8UZ9/TtXr0w0MbxVQ19IbFHsW+5v llbPXhkZVBBoWaiZGgpVZmgxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyBqsn/8C lvMmuMA6ejNscsUbjcQwHwYDVR0jBBgwFoAUp93zVatoEjcBpb3RX2W6lktd4DUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1QTFBL0MyRjRFRTIwNzRB NjExRUZBRTU0NzgzQ0M0RjlBRTAyL3A5M3pWYXRvRWpjQnBiM1JYMlc2bGt0ZDRE VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDkzelZhdG9FamNCcGIzUlgyVzZsa3RkNERVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 QTFBL0MyRjRFRTIwNzRBNjExRUZBRTU0NzgzQ0M0RjlBRTAyL3A5M3pWYXRvRWpj QnBiM1JYMlc2bGt0ZDREVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFEhKHDKwAL0tZxkw443Oyo4YsCPCvQI262CtxB4GovlAbcKNPkfAcr8 BXmughqmMsRocoxYFSGuWBYSgrr6o9M3MAGuyeK7pwbMjFFMnnMrM/D8gr5nogSd b2e/jnGj9z4vSt0z9Z7O9DDdJ0PNtk/ug+VIbroozZgJpOi2PFCvukZRcczmKWRz cEnsgoeP8fp3Q1dbv2Uk59r1fM3pkQMHhyUTDfwTUywtesXNGaDV/lpqK1rPIDyd Z8Ev2eY2cZhalr0QT8/iX/k82JnS6xQAch2jVhv4HJkkyjWDT6R0noggR4FXV1QZ ZSPd3KCsgzg8kKXkYe/1q69MKceS0OA= -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:22 2025 by rpki-client