$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: OiDk0u9jy4OG/bt++QQO4l81ZeCFm9KONaF0OS8k/Pk= Subject key identifier: EB:E9:CB:7A:F4:2D:6A:A9:E2:47:83:ED:D6:35:08:F7:F4:C0:F7:D0 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 1F Signing time: Sat 29 Mar 2025 07:13:33 +0000 Manifest this update: Sat 29 Mar 2025 07:13:33 +0000 Manifest next update: Sat 05 Apr 2025 07:13:33 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: xDTz6Qbm9hJ5lvYkgdlYB1gDOf/UWude7dRxbbH2VeI=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: kvvZHJ+rBQM95o3S977WvIAJHOTHGETq3gKpIBP9p3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208 Validity Not Before: Mar 29 07:13:33 2025 GMT Not After : Apr 5 07:13:33 2025 GMT Subject: CN=67e79d9d-0fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:65:69:03:98:56:bb:b4:b5:ca:df:09:c4:db: e4:dd:a0:89:13:fb:66:93:b1:12:fb:65:4a:81:f4: 64:50:3e:dd:ec:08:be:3d:f4:0a:a6:5a:5f:ed:c5: 64:66:e8:94:01:f6:60:0f:67:d3:e8:dc:16:37:a7: af:f6:9d:2f:f9:db:18:a8:22:ee:be:a0:d7:61:60: fd:5b:c1:3c:e8:04:e0:c5:d5:af:19:41:f9:6f:21: 89:09:fc:6e:68:ff:94:26:31:0e:7d:07:a4:c2:17: 60:0c:0c:8d:25:51:09:a7:b0:ba:54:94:16:c4:1f: ba:4a:ba:d9:42:29:eb:70:69:d4:5a:09:89:d4:96: 2e:f6:0e:c3:6b:0c:ed:a9:48:b5:d1:16:63:ea:08: e4:65:68:59:57:12:c0:2a:8c:ca:b0:a6:f2:55:3f: 5e:08:a4:a5:84:5a:c5:b3:7a:1e:02:f1:be:a1:d3: 21:dd:cd:2a:67:2a:9a:42:e9:c4:46:81:2a:af:b2: 71:9f:91:bb:fd:b4:c5:0e:0c:24:4e:ca:53:75:4f: 80:22:46:c2:29:10:c4:04:79:41:13:e3:d9:63:64: d4:04:df:50:b5:95:30:f9:78:1d:18:24:8c:3b:46: f7:bf:fe:de:e6:97:3e:89:ac:ba:f2:32:6c:c7:67: 70:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E9:CB:7A:F4:2D:6A:A9:E2:47:83:ED:D6:35:08:F7:F4:C0:F7:D0 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:13:91:f8:14:ef:bc:3f:98:30:0a:01:f8:f3:ee:c3:93:b9: 7b:64:e2:65:b1:9a:42:25:e3:8a:bc:75:10:15:34:17:66:6a: 59:f8:29:c4:be:bf:6b:4f:13:5a:e2:37:e7:d8:f2:b2:02:8a: 74:11:07:6b:dd:61:1d:8d:d9:14:f3:79:4d:cf:b9:2d:6f:51: 40:45:3b:05:2c:13:2f:b8:cf:87:40:08:54:ec:83:13:38:93: f5:4f:67:e4:f1:e7:57:8d:36:79:86:46:8d:c1:cb:ff:0d:59: 15:51:d3:eb:2f:93:6c:c0:90:dd:14:dd:9b:f5:d3:af:74:3e: f1:2a:72:26:60:69:c3:a5:dc:c1:a5:49:19:37:69:4d:8c:17: 78:48:8e:a5:0c:51:e1:ae:d7:d0:c7:e5:c6:bd:ae:e6:0c:9f: d1:dc:ef:f3:2e:49:f0:c0:1b:78:d0:20:20:eb:aa:a8:50:c3: 11:cc:a9:4b:4d:af:15:07:10:3f:22:82:09:4d:35:06:35:19: 83:cd:c4:3a:0a:3d:e4:46:aa:d2:66:cc:c2:38:f9:b0:77:59: 84:71:1c:1b:5c:50:81:ae:5d:6e:7c:e9:fa:48:cd:1b:59:db: 42:36:4c:23:5c:89:60:d2:af:12:84:d4:19:7f:d7:a6:f0:94: 2c:e4:bc:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTAzMjkwNzEzMzNaFw0yNTA0MDUwNzEzMzNaMBgxFjAUBgNV BAMTDTY3ZTc5ZDlkLTBmYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuZWkDmFa7tLXK3wnE2+TdoIkT+2aTsRL7ZUqB9GRQPt3sCL499AqmWl/txWRm 6JQB9mAPZ9Po3BY3p6/2nS/52xioIu6+oNdhYP1bwTzoBODF1a8ZQflvIYkJ/G5o /5QmMQ59B6TCF2AMDI0lUQmnsLpUlBbEH7pKutlCKetwadRaCYnUli72DsNrDO2p SLXRFmPqCORlaFlXEsAqjMqwpvJVP14IpKWEWsWzeh4C8b6h0yHdzSpnKppC6cRG gSqvsnGfkbv9tMUODCROylN1T4AiRsIpEMQEeUET49ljZNQE31C1lTD5eB0YJIw7 Rve//t7mlz6JrLryMmzHZ3D5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6+nLevQt aqniR4Pt1jUI9/TA99AwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFwTkfgU77w/mDAKAfjz7sOTuXtk4mWxmkIl44q8dRAVNBdmaln4KcS+ v2tPE1riN+fY8rICinQRB2vdYR2N2RTzeU3PuS1vUUBFOwUsEy+4z4dACFTsgxM4 k/VPZ+Tx51eNNnmGRo3By/8NWRVR0+svk2zAkN0U3Zv10690PvEqciZgacOl3MGl SRk3aU2MF3hIjqUMUeGu19DH5ca9ruYMn9Hc7/MuSfDAG3jQICDrqqhQwxHMqUtN rxUHED8igglNNQY1GYPNxDoKPeRGqtJmzMI4+bB3WYRxHBtcUIGuXW586fpIzRtZ 20I2TCNciWDSrxKE1Bl/16bwlCzkvOs= -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:32 2025 by rpki-client