$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: tty/9Cowy/OjX4sujxzffWtekgwUt4y1yOwLY+O0BRU= Subject key identifier: DB:29:39:A0:50:2E:19:A8:C2:1D:05:3B:D8:12:1D:67:34:68:47:AA Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 01AE Signing time: Mon 07 Apr 2025 02:14:09 +0000 Manifest this update: Mon 07 Apr 2025 02:14:09 +0000 Manifest next update: Mon 14 Apr 2025 02:14:09 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: M48/v9+meAvjuqMOC0wkIah+DSDOJbg8qVHy86dgrvw=) 2: 8879DC04990611EF9BA6A76EC4F9AE02.roa (hash: QMqZliYIzALZLrdF4dbF8vk9DUXnAXmdWeIPAlbr7lk=) 3: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: LcCehnLIRoCgjwwcDQ7TUr2n1e7iAgFU0iCoo79xeiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3 Validity Not Before: Apr 7 02:14:09 2025 GMT Not After : Apr 14 02:14:09 2025 GMT Subject: CN=67f334f1-e6ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:89:84:68:ad:2b:e6:7c:be:c2:ab:bf:e5: 49:aa:20:eb:de:94:77:bb:66:9f:30:0f:b2:73:1a: 88:7f:8c:b8:54:26:bb:39:9e:f4:bf:18:59:fe:fe: e6:ed:5a:71:64:d4:b0:2c:54:ad:0b:d9:61:e9:87: a9:ca:81:1b:60:73:72:47:02:8d:13:96:cf:49:35: 93:68:be:6e:30:e7:d5:70:4a:5a:01:f7:bd:8c:68: 87:75:b2:d6:03:6b:98:ef:ed:63:3e:89:2f:91:ef: 0b:fc:e8:08:57:55:24:a4:bd:49:76:f3:f6:c5:44: 26:e4:e5:82:72:a6:05:63:f3:8c:93:68:fb:8b:b3: c2:39:9a:60:fe:f7:dd:61:27:53:46:0b:d1:1f:c5: e8:da:e3:b5:15:72:04:8d:6d:16:35:2a:76:14:26: 59:69:9c:a4:a2:a7:56:a2:c4:06:82:df:a7:0d:83: b7:9a:ae:ae:b7:4a:1c:de:76:58:18:f7:3e:78:99: e4:e0:f6:a2:52:e5:b5:07:8e:e0:e4:9e:f7:2d:1a: b6:c0:bb:28:65:4f:dd:cb:50:ea:9e:e3:83:6b:ca: 82:2a:88:ef:25:b7:cf:ea:b1:0b:a5:5b:64:4c:8f: 02:d9:f1:61:4e:6e:78:df:b1:9e:50:a7:32:4e:70: 71:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:29:39:A0:50:2E:19:A8:C2:1D:05:3B:D8:12:1D:67:34:68:47:AA X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:b3:28:a2:ac:62:14:97:f4:2c:4a:d2:ca:cf:ec:43:94:3d: 03:53:30:ad:5b:96:5e:4a:bb:90:a9:0f:98:00:47:4d:55:b1: 00:7e:fe:a0:bf:94:14:ad:7e:a1:eb:d9:61:1e:e5:30:f6:44: a7:60:c6:ce:03:a2:45:f9:ed:16:dc:15:45:78:2f:22:53:da: 8f:54:2e:5d:d8:17:33:71:c7:b3:b3:d7:b9:9b:5e:d2:ba:07: b4:61:88:1a:ec:7c:b5:bb:af:89:e2:0f:89:5d:47:a5:1f:31: e9:27:5a:c3:bd:1c:62:45:d7:43:4c:fc:a3:1a:e2:3e:1e:98: 19:a4:66:8f:50:a4:ae:eb:5e:d1:5f:bb:67:b4:57:1b:e7:0f: 1f:bc:fd:41:41:2a:09:af:5f:60:d8:84:81:aa:54:f7:67:1a: fc:2b:b3:fe:85:ec:6a:ef:95:e7:a7:a6:4c:3a:dd:a6:18:47: 5b:5d:2d:05:92:83:84:3a:8d:fc:ff:15:f1:0d:02:f2:18:3f: 15:67:84:07:c6:d3:0c:12:21:e8:a7:fc:f7:ca:37:f5:4b:2d: 8f:f0:4e:80:dd:9b:44:c6:33:c2:64:64:06:16:7e:1d:ff:ef: 1b:b6:4e:62:d3:98:a0:ce:83:2a:fd:8c:24:41:41:2a:9e:78: f6:b6:30:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwNDA3MDIxNDA5WhcNMjUwNDE0MDIxNDA5WjAYMRYwFAYD VQQDEw02N2YzMzRmMS1lNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi2JhGitK+Z8vsKrv+VJqiDr3pR3u2afMA+ycxqIf4y4VCa7OZ70vxhZ/v7m 7VpxZNSwLFStC9lh6YepyoEbYHNyRwKNE5bPSTWTaL5uMOfVcEpaAfe9jGiHdbLW A2uY7+1jPokvke8L/OgIV1UkpL1JdvP2xUQm5OWCcqYFY/OMk2j7i7PCOZpg/vfd YSdTRgvRH8Xo2uO1FXIEjW0WNSp2FCZZaZykoqdWosQGgt+nDYO3mq6ut0oc3nZY GPc+eJnk4PaiUuW1B47g5J73LRq2wLsoZU/dy1DqnuODa8qCKojvJbfP6rELpVtk TI8C2fFhTm5437GeUKcyTnBxaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNspOaBQ Lhmowh0FO9gSHWc0aEeqMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGsyiirGIUl/QsStLKz+xDlD0DUzCtW5ZeSruQqQ+YAEdNVbEAfv6g v5QUrX6h69lhHuUw9kSnYMbOA6JF+e0W3BVFeC8iU9qPVC5d2Bczccezs9e5m17S uge0YYga7Hy1u6+J4g+JXUelHzHpJ1rDvRxiRddDTPyjGuI+HpgZpGaPUKSu617R X7tntFcb5w8fvP1BQSoJr19g2ISBqlT3Zxr8K7P+hexq75Xnp6ZMOt2mGEdbXS0F koOEOo38/xXxDQLyGD8VZ4QHxtMMEiHop/z3yjf1Sy2P8E6A3ZtExjPCZGQGFn4d /+8btk5i05igzoMq/YwkQUEqnnj2tjBs -----END CERTIFICATE-----Generated at Mon Apr 7 18:25:57 2025 by rpki-client