$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: v4wEWCFEKiPSjHTHucUwsO7ItZLNIJoY+BwljfkcsNQ= Subject key identifier: A0:21:38:58:7C:16:0D:D3:26:B1:51:B9:31:5C:B5:CE:E2:AE:67:A4 Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: 29 Signing time: Sat 05 Apr 2025 07:01:52 +0000 Manifest this update: Sat 05 Apr 2025 07:01:51 +0000 Manifest next update: Sat 12 Apr 2025 07:01:51 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: emgJGLGLkT1bExki+Ft5ZJFbBm7B0c1JvIowv0wLclM=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5 Validity Not Before: Apr 5 07:01:51 2025 GMT Not After : Apr 12 07:01:51 2025 GMT Subject: CN=67f0d55f-9a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:54:60:bd:80:b8:26:92:58:ac:e8:51:d5: 5c:0d:5c:f3:55:f0:9b:6d:c7:a8:ed:18:c9:4f:27: d2:39:c3:a0:f7:10:81:1d:f4:20:5a:23:85:f8:a5: 3c:9c:30:93:4f:14:63:e3:c6:ab:71:98:8a:60:c4: f7:b9:8e:5b:3b:5a:46:94:7b:26:f5:d4:09:ed:cd: fc:52:13:d2:61:8c:43:74:c2:f3:f2:e3:d4:79:d4: 92:03:d6:a5:98:8b:1b:56:5c:00:58:e3:af:70:73: b0:5b:2a:c5:d9:ce:4d:d3:f4:75:c3:64:74:fe:e5: 90:67:15:09:dd:37:ef:b7:1c:fd:70:ba:ff:f7:f4: d6:21:ee:a7:6c:91:3d:b2:fe:e1:53:97:7c:92:cc: 94:c3:3c:fd:51:04:3b:b7:4b:39:bc:5c:69:7b:51: 26:d6:3c:0a:9e:77:92:78:05:ce:70:e1:61:36:c7: e2:7b:40:e3:c7:42:40:0d:f3:64:fe:25:d2:c5:01: f2:95:29:70:17:b0:46:c4:bb:9f:bc:f2:22:da:53: 5b:26:65:14:d7:cb:38:7d:0e:75:47:a6:8d:79:1d: 7b:f5:db:7f:99:c9:10:de:a6:53:55:9b:b2:73:e3: 57:eb:f9:0e:6d:2f:01:0c:9b:ac:43:9e:2d:2e:5e: d5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:21:38:58:7C:16:0D:D3:26:B1:51:B9:31:5C:B5:CE:E2:AE:67:A4 X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d9:83:50:38:76:0c:cf:6b:4a:d5:76:88:6a:5d:3e:5f:67: a3:f3:05:8d:1a:6b:66:03:f1:53:8c:63:f5:a3:ec:ee:3e:6a: 61:5c:d7:27:bc:eb:2b:33:fa:c7:10:e1:95:b7:1a:05:ad:19: 8d:52:11:0e:1e:06:81:14:45:73:61:15:1c:67:05:a8:2d:43: 32:8e:a1:83:0d:c2:87:2b:45:2c:45:bf:51:5d:5b:5b:c4:72: ab:d9:c0:c9:8c:d8:1b:db:be:d6:04:82:ac:dd:fa:32:15:9c: cd:57:92:51:5d:3b:9f:4b:bf:22:32:79:70:54:83:4e:5d:1f: 60:3f:42:db:0c:37:0e:61:db:6f:25:53:22:bb:9e:68:f4:fd: 6a:f5:c6:a3:d3:a3:0b:1a:0a:fa:c1:75:b9:2f:2c:ca:42:d0: 0c:7c:98:1c:a9:05:d0:9e:05:7c:f4:50:cb:e0:fb:9c:96:ef: e4:3f:1a:b0:b9:e0:00:c7:a4:51:40:62:4a:4e:2f:a5:01:89: fd:2d:0d:98:75:9b:22:85:78:bc:3a:2f:71:62:4d:99:3c:65: 45:79:c8:73:8d:4d:0f:62:bf:bc:e2:86:51:86:61:02:a7:50: 01:47:63:10:71:2f:7d:62:7d:be:b0:8c:a3:a0:12:8c:2c:39: 1e:c0:56:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoNDkxMzY2NzVFN0UyMzRFN0QyRjg4NDU5OThFMkM2MkRC NDg4ODJDQTAeFw0yNTA0MDUwNzAxNTFaFw0yNTA0MTIwNzAxNTFaMBgxFjAUBgNV BAMTDTY3ZjBkNTVmLTlhMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOI1RgvYC4JpJYrOhR1VwNXPNV8Jttx6jtGMlPJ9I5w6D3EIEd9CBaI4X4pTyc MJNPFGPjxqtxmIpgxPe5jls7WkaUeyb11AntzfxSE9JhjEN0wvPy49R51JID1qWY ixtWXABY469wc7BbKsXZzk3T9HXDZHT+5ZBnFQndN++3HP1wuv/39NYh7qdskT2y /uFTl3ySzJTDPP1RBDu3Szm8XGl7USbWPAqed5J4Bc5w4WE2x+J7QOPHQkAN82T+ JdLFAfKVKXAXsEbEu5+88iLaU1smZRTXyzh9DnVHpo15HXv123+ZyRDeplNVm7Jz 41fr+Q5tLwEMm6xDni0uXtX3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoCE4WHwW DdMmsVG5MVy1zuKuZ6QwHwYDVR0jBBgwFoAUSRNmdefiNOfS+IRZmOLGLbSIgsow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0E3NTREMzgwRDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU1JObWRlZmlOT2ZTLUlSWm1PTEdMYlNJZ3NvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0E3NTREMzgwRDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9m Uy1JUlptT0xHTGJTSWdzby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE/Zg1A4dgzPa0rVdohqXT5fZ6PzBY0aa2YD8VOMY/Wj7O4+amFc1ye8 6ysz+scQ4ZW3GgWtGY1SEQ4eBoEURXNhFRxnBagtQzKOoYMNwocrRSxFv1FdW1vE cqvZwMmM2BvbvtYEgqzd+jIVnM1XklFdO59LvyIyeXBUg05dH2A/QtsMNw5h228l UyK7nmj0/Wr1xqPTowsaCvrBdbkvLMpC0Ax8mBypBdCeBXz0UMvg+5yW7+Q/GrC5 4ADHpFFAYkpOL6UBif0tDZh1myKFeLw6L3FiTZk8ZUV5yHONTQ9iv7zihlGGYQKn UAFHYxBxL31ifb6wjKOgEowsOR7AVpk= -----END CERTIFICATE-----Generated at Mon Apr 7 05:20:27 2025 by rpki-client