$ rpki-client -vvf rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft File: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft (raw, json) Hash identifier: orHnTJsZJYOijFekIRIUiWbRJ0S/Vy/NHik4+UNgDfQ= Subject key identifier: 4A:98:FA:60:F8:23:26:16:3A:D6:E0:33:7A:5E:E7:0D:24:F2:9C:D7 Authority key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC Certificate issuer: /CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft Manifest number: 96 Signing time: Sat 29 Mar 2025 05:42:24 +0000 Manifest this update: Sat 29 Mar 2025 05:42:24 +0000 Manifest next update: Sat 05 Apr 2025 05:42:24 +0000 Files and hashes: 1: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl (hash: d7HpQGsKd1yxxu5+YRJ8n+ec9LE1WKr0H5aFg/hCm5w=) 2: 86F9CBCC2AB711EF996EC819C4F9AE02.roa (hash: dEaYlEkH9R7ZFvmgUUxoyfXOgBDXEq+zy0JoQWINyBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A02D8 Validity Not Before: Mar 29 05:42:24 2025 GMT Not After : Apr 5 05:42:24 2025 GMT Subject: CN=67e78840-5393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fa:bf:b1:be:67:a7:8c:8c:0d:1a:ea:97:8f: 3d:81:13:6b:14:c3:88:c2:20:e7:b5:b7:43:02:8a: b0:c4:eb:b4:e2:43:47:11:10:28:ba:01:59:f5:2c: a6:bb:95:79:83:87:f1:fa:3f:5d:6a:e1:25:2a:52: 3c:86:99:18:12:27:3a:1d:d3:13:1e:78:2c:d7:33: 68:b2:90:cd:bd:e7:86:c0:b5:a6:fd:54:73:87:1b: 53:08:5d:c6:92:22:04:5d:9a:b5:f4:84:96:58:08: dd:22:c9:7d:c1:de:55:77:4d:5d:1a:ac:bc:f9:50: 4a:81:9f:b5:46:db:05:7f:12:1b:0f:49:d9:b5:7e: d7:9d:65:34:0c:21:25:4a:99:55:33:5c:12:50:47: 00:88:4d:dc:b3:59:6c:7f:af:26:fb:e0:49:e0:17: 0a:de:19:2e:9b:c2:9d:2f:ad:ea:14:10:68:30:3c: be:49:bd:b8:4c:be:5e:c5:50:31:33:da:52:0b:3d: ca:64:c4:c2:15:18:a2:fe:d5:38:d5:7b:a4:39:a7: 45:e0:1c:05:a4:b5:29:43:e7:0e:ab:fd:7a:36:7b: 5c:d7:d7:1e:d9:aa:1f:4c:24:1a:43:58:8c:e6:00: 17:31:6b:b4:e6:a4:5a:12:c2:b8:94:51:6e:69:62: 4c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:98:FA:60:F8:23:26:16:3A:D6:E0:33:7A:5E:E7:0D:24:F2:9C:D7 X509v3 Authority Key Identifier: keyid:ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:31:47:21:bc:b8:ee:6d:af:83:d3:d8:04:ad:1e:17:8f:bf: 97:bc:d6:ce:f3:53:5e:19:0d:88:f3:b9:4c:9d:5e:31:21:96: a6:24:5a:b9:90:4a:49:5b:11:fe:bc:a4:83:4c:86:b4:fc:fd: 0b:f2:70:6d:53:c3:2c:79:60:25:99:ee:eb:9e:61:41:58:70: 4e:12:bd:57:fa:59:08:bd:fa:3b:c5:c0:ea:f7:e2:66:6c:25: 63:b6:a3:7c:d8:03:38:4e:f3:f7:ab:02:15:77:10:e8:a4:cc: d5:58:84:83:97:be:f5:48:5a:eb:8d:bd:a8:8d:55:fa:85:1f: e0:a0:02:91:28:6b:c5:f5:67:ab:72:d6:c0:ac:53:fc:49:b8: d5:45:28:e9:da:01:e5:00:eb:9a:f4:eb:a5:9e:d8:5d:bf:5b: 16:6d:96:e2:29:3f:cd:4c:63:0c:15:b6:f5:c4:d6:6f:e3:b9: bb:58:72:88:d3:ce:4c:60:5a:9e:77:d3:43:74:b7:7f:81:4d: ba:57:3a:93:27:0e:8c:55:d3:e2:c9:7f:a9:31:ca:ce:0b:b5: 5a:ed:30:11:33:dc:cb:ff:f8:66:d7:f7:11:5b:fb:dc:9a:88: 3f:d0:70:09:41:87:ce:e7:6e:12:5e:cb:af:14:91:d9:76:d5: a2:22:77:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyRDgxMTAvBgNVBAUTKEVEOUIwRTYwODVBMjVERjI2NzQ5RkYyNzU4MUE0RThC QzdDMTg2Q0MwHhcNMjUwMzI5MDU0MjI0WhcNMjUwNDA1MDU0MjI0WjAYMRYwFAYD VQQDEw02N2U3ODg0MC01MzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Pq/sb5np4yMDRrql489gRNrFMOIwiDntbdDAoqwxOu04kNHERAougFZ9Sym u5V5g4fx+j9dauElKlI8hpkYEic6HdMTHngs1zNospDNveeGwLWm/VRzhxtTCF3G kiIEXZq19ISWWAjdIsl9wd5Vd01dGqy8+VBKgZ+1RtsFfxIbD0nZtX7XnWU0DCEl SplVM1wSUEcAiE3cs1lsf68m++BJ4BcK3hkum8KdL63qFBBoMDy+Sb24TL5exVAx M9pSCz3KZMTCFRii/tU41XukOadF4BwFpLUpQ+cOq/16Nntc19ce2aofTCQaQ1iM 5gAXMWu05qRaEsK4lFFuaWJM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqY+mD4 IyYWOtbgM3pe5w0k8pzXMB8GA1UdIwQYMBaAFO2bDmCFol3yZ0n/J1gaTovHwYbM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDJEOC9FMDkyNDhFQTJB QjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhmSm5TZjhuV0JwT2k4ZkJo c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdac09ZSVdpWGZKblNmOG5XQnBPaThmQmhzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDJEOC9FMDkyNDhFQTJBQjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhm Sm5TZjhuV0JwT2k4ZkJoc3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbMUchvLjuba+D09gErR4Xj7+XvNbO81NeGQ2I87lMnV4xIZamJFq5 kEpJWxH+vKSDTIa0/P0L8nBtU8MseWAlme7rnmFBWHBOEr1X+lkIvfo7xcDq9+Jm bCVjtqN82AM4TvP3qwIVdxDopMzVWISDl771SFrrjb2ojVX6hR/goAKRKGvF9Wer ctbArFP8SbjVRSjp2gHlAOua9Oulnthdv1sWbZbiKT/NTGMMFbb1xNZv47m7WHKI 085MYFqed9NDdLd/gU26VzqTJw6MVdPiyX+pMcrOC7Va7TARM9zL//hm1/cRW/vc mog/0HAJQYfO524SXsuvFJHZdtWiInfv -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:15 2025 by rpki-client