$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: hoINjZtt8ldINHm+Eu+z6U06fSseFDYnUPc/nG93ZSk= Subject key identifier: 17:D0:00:1A:08:EE:17:23:A7:B9:68:35:ED:29:DF:C7:8D:1F:E0:6B Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0BC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0BBC Signing time: Sat 12 Apr 2025 18:41:37 +0000 Manifest this update: Sat 12 Apr 2025 18:41:36 +0000 Manifest next update: Sat 19 Apr 2025 18:41:36 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: h3yvw3I5zgRic3Z/RVq9eda4NjSMjLEH0digVSj0jnw=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: j0DWhsEHoal3Q4LsD1CyE+J4i6jhKjEMjW9pXFwYCvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3010 (0xbc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205, serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Apr 12 18:41:36 2025 GMT Not After : Apr 19 18:41:36 2025 GMT Subject: CN=67fab3e0-d4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:af:d2:aa:3e:f4:11:28:6a:25:c0:06:18: 75:57:b9:04:10:d7:fa:3e:3a:50:94:dd:17:c3:e5: 99:5a:e4:2d:ab:d1:45:b1:4d:58:a4:49:0c:9f:11: 49:c2:b2:77:ab:79:19:13:c5:1b:2a:0b:9f:cc:07: 8a:31:29:ce:24:82:9b:78:9c:d5:d2:70:8a:79:8d: 1b:79:83:b2:f4:a1:36:c0:83:e3:80:c3:1c:d9:48: 83:db:00:b3:69:11:50:ba:5b:f8:d0:e2:ae:0a:d0: eb:ac:02:fc:6e:cc:a9:db:b8:2c:e5:e3:0e:9e:e0: 3d:22:e7:1e:79:f3:61:5d:a4:e9:46:c5:91:96:f5: 8a:9c:2c:f2:42:a6:b4:10:6e:54:6a:2e:31:f0:86: 0c:64:bd:21:56:10:d3:0e:70:56:49:1f:05:14:4a: 39:82:4f:16:72:ba:34:9c:c2:c7:e5:cf:ad:ce:cd: a6:7a:ec:4d:c7:0e:a6:b0:90:42:b8:04:34:6a:0e: 1a:15:c2:5d:f0:26:a9:de:95:32:59:f1:5d:86:11: 3d:99:3d:03:7c:b6:ef:d3:5c:9f:ab:ec:7c:a6:4c: 58:c8:52:23:35:ff:a6:72:b7:c5:0c:9c:4c:3e:36: d1:fe:9a:74:dd:aa:6f:27:c3:a3:bf:74:5b:04:f2: 67:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D0:00:1A:08:EE:17:23:A7:B9:68:35:ED:29:DF:C7:8D:1F:E0:6B X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b5:55:cc:27:39:c4:58:ec:05:ab:af:12:04:80:38:8e:3d: e6:c0:5a:8f:69:3e:c3:53:2b:8d:21:2f:b1:30:f1:2b:5d:4e: 2f:03:91:e2:eb:62:bc:1c:36:77:f5:45:92:18:ac:79:df:91: 11:32:75:96:0f:d1:d0:ec:34:96:a7:0d:31:2d:1e:b7:a9:ff: 8c:07:2d:7c:14:39:cf:68:92:3b:f6:54:c8:03:d7:54:06:7f: ac:1c:65:fd:69:9d:e0:47:41:02:36:32:2b:12:d0:db:b0:25: 33:f3:48:9c:9a:58:4f:a3:b0:2b:e3:f2:a4:9b:46:ab:79:88: e1:5f:bc:e2:b3:0c:0f:06:44:36:03:dd:58:2f:f5:10:0b:4d: 81:45:0d:21:f4:99:f9:66:6a:89:47:69:8a:c8:be:2a:9f:76: a9:05:fd:8d:97:99:7d:97:e4:0a:a1:c0:ce:54:43:e3:1a:95: 59:74:e7:9e:0f:6c:e1:5d:eb:8a:4f:58:38:ab:fc:9b:5c:1f: 76:19:1a:e4:2b:5a:5f:c5:25:27:b9:e7:9d:e1:d2:08:da:20: d1:fb:39:e1:40:37:85:ce:85:41:4d:7d:31:95:e0:32:83:55: ba:26:4d:aa:01:90:66:22:4e:7c:c9:f9:60:94:99:1c:82:34: 9e:25:a8:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjUwNDEyMTg0MTM2WhcNMjUwNDE5MTg0MTM2WjAYMRYwFAYD VQQDEw02N2ZhYjNlMC1kNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9Kv0qo+9BEoaiXABhh1V7kEENf6PjpQlN0Xw+WZWuQtq9FFsU1YpEkMnxFJ wrJ3q3kZE8UbKgufzAeKMSnOJIKbeJzV0nCKeY0beYOy9KE2wIPjgMMc2UiD2wCz aRFQulv40OKuCtDrrAL8bsyp27gs5eMOnuA9IuceefNhXaTpRsWRlvWKnCzyQqa0 EG5Uai4x8IYMZL0hVhDTDnBWSR8FFEo5gk8Wcro0nMLH5c+tzs2meuxNxw6msJBC uAQ0ag4aFcJd8Cap3pUyWfFdhhE9mT0DfLbv01yfq+x8pkxYyFIjNf+mcrfFDJxM PjbR/pp03apvJ8Ojv3RbBPJnEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfQABoI 7hcjp7loNe0p38eNH+BrMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtVXMJznEWOwFq68SBIA4jj3mwFqPaT7DUyuNIS+xMPErXU4vA5Hi 62K8HDZ39UWSGKx535ERMnWWD9HQ7DSWpw0xLR63qf+MBy18FDnPaJI79lTIA9dU Bn+sHGX9aZ3gR0ECNjIrEtDbsCUz80icmlhPo7Ar4/Kkm0areYjhX7ziswwPBkQ2 A91YL/UQC02BRQ0h9Jn5ZmqJR2mKyL4qn3apBf2Nl5l9l+QKocDOVEPjGpVZdOee D2zhXeuKT1g4q/ybXB92GRrkK1pfxSUnueed4dII2iDR+znhQDeFzoVBTX0xleAy g1W6Jk2qAZBmIk58yflglJkcgjSeJagT -----END CERTIFICATE-----Generated at Sun Apr 13 02:32:58 2025 by rpki-client