$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft File: tBNlbNepj73iI3_FMUyf9-jxoJ4.mft (raw, json) Hash identifier: 4BDkXeKxuS6F2Ge3a581+h321+lJ8wVG7XSCgOCI+GE= Subject key identifier: AA:FE:92:90:76:A8:63:93:E5:78:E0:4C:8F:2F:4D:DC:9E:A3:BD:20 Authority key identifier: B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E Certificate issuer: /CN=A91A5252/serialNumber=B413656CD7A98FBDE2237FC5314C9FF7E8F1A09E Certificate serial: 06D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft Manifest number: 06C4 Signing time: Tue 08 Apr 2025 21:51:19 +0000 Manifest this update: Tue 08 Apr 2025 21:51:19 +0000 Manifest next update: Tue 15 Apr 2025 21:51:19 +0000 Files and hashes: 1: tBNlbNepj73iI3_FMUyf9-jxoJ4.crl (hash: gkgsPOjNfI9WvUb7zZ3npmVanmkujuLNCnvls5SohiQ=) 2: B61AFCF654A411EB88DE1D23C4F9AE02.roa (hash: NhhtAZYHbi3OfuXlyk66ji/E3ItRuOfQUaOAVkaAmDI=) 3: 4DB43F043E6611ECBD788C16C4F9AE02.roa (hash: ing2Wn3yGuRf8bHPBaTCd2sus9ikor0GkhqqDA1X+gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.crl rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5252 Validity Not Before: Apr 8 21:51:19 2025 GMT Not After : Apr 15 21:51:19 2025 GMT Subject: CN=67f59a57-4760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:69:1f:8a:75:55:21:d4:19:97:ef:ab:b9:a9: 59:f7:da:27:a4:cb:fa:5d:00:4f:c6:22:bd:e4:71: 6d:95:72:85:9d:d2:fc:c3:01:be:99:11:30:a5:29: c6:9d:d4:b9:52:61:91:02:2a:ff:63:7f:3a:d3:61: 8c:f4:d3:20:6c:b8:8e:22:d2:aa:d3:3b:5c:3a:ea: c2:c1:f0:36:34:79:8f:6c:f5:1d:fb:e3:d5:17:ed: 37:14:3c:dd:c1:0b:36:29:9a:27:4c:cf:13:33:d8: 8d:84:e2:c6:6a:48:60:da:fe:7c:4b:11:50:53:08: 60:ac:3d:1f:34:91:79:5b:ec:f1:b9:26:2d:00:ee: 71:b0:c2:67:9c:2c:bb:22:92:b7:02:8e:03:cd:3a: 6c:70:78:64:a8:99:df:1e:d7:12:7a:56:06:a0:4f: f7:20:d5:68:27:ca:35:1b:68:d7:ae:36:bd:c0:f4: fc:0a:02:5a:a4:ad:64:02:19:2f:8d:94:44:c5:9d: a3:fb:d4:aa:fa:9a:3f:2b:09:f0:44:a2:d0:13:bf: 72:c8:a5:ec:f8:0e:ba:7f:ee:37:00:0e:ef:5c:29: 1e:dc:3a:06:3b:5b:5b:0a:83:e6:b0:6f:f5:5b:52: f8:bd:f3:08:44:96:1a:80:a0:e4:46:66:0f:c0:4a: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FE:92:90:76:A8:63:93:E5:78:E0:4C:8F:2F:4D:DC:9E:A3:BD:20 X509v3 Authority Key Identifier: keyid:B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:f9:6f:fd:dd:3e:df:cf:a0:bb:f5:d6:84:91:be:a2:f2:cb: 2a:c4:f0:33:f0:40:1f:9d:ed:90:b6:c9:e9:fb:24:6f:fa:56: 0b:ea:9d:cf:8d:d1:8e:7b:09:74:82:44:a5:fe:0f:55:ef:bb: 20:8a:d3:10:c5:fa:8e:02:7c:d7:2a:b0:af:ca:52:79:9f:8f: 7a:11:c0:b1:d8:ee:9d:58:c6:ec:b7:b0:1c:62:28:30:27:c1: 1a:14:16:b4:4c:8c:35:7e:74:7e:27:77:cc:59:44:8d:4c:24: 0c:60:9b:12:fc:3d:5b:f6:d6:69:37:1c:26:3b:9b:6e:f2:7c: 75:30:6d:3c:3b:37:e7:1f:da:37:4c:f4:00:07:06:e6:09:21: cf:d4:75:c9:64:98:6a:6a:7c:a7:bf:02:59:fa:8e:f6:b6:17: cc:5c:5c:38:1e:97:5f:ad:99:e4:63:56:84:29:fc:95:24:c4: 89:ed:54:b1:51:58:ae:b6:eb:24:2e:51:97:42:e5:26:78:42: fe:11:d9:c6:4f:b9:92:37:b0:a8:d6:4d:4b:1a:5f:9b:50:b8: 04:bb:78:18:d2:97:d0:52:71:ec:ca:3e:3d:17:40:af:3e:9d: bf:87:08:a6:60:1d:0d:13:e0:14:3c:40:0c:2f:2c:9a:92:f0: 6c:1b:03:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyNTIxMTAvBgNVBAUTKEI0MTM2NTZDRDdBOThGQkRFMjIzN0ZDNTMxNEM5RkY3 RThGMUEwOUUwHhcNMjUwNDA4MjE1MTE5WhcNMjUwNDE1MjE1MTE5WjAYMRYwFAYD VQQDEw02N2Y1OWE1Ny00NzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+2kfinVVIdQZl++rualZ99onpMv6XQBPxiK95HFtlXKFndL8wwG+mREwpSnG ndS5UmGRAir/Y38602GM9NMgbLiOItKq0ztcOurCwfA2NHmPbPUd++PVF+03FDzd wQs2KZonTM8TM9iNhOLGakhg2v58SxFQUwhgrD0fNJF5W+zxuSYtAO5xsMJnnCy7 IpK3Ao4DzTpscHhkqJnfHtcSelYGoE/3INVoJ8o1G2jXrja9wPT8CgJapK1kAhkv jZRExZ2j+9Sq+po/KwnwRKLQE79yyKXs+A66f+43AA7vXCke3DoGO1tbCoPmsG/1 W1L4vfMIRJYagKDkRmYPwEpJ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKr+kpB2 qGOT5XjgTI8vTdyeo70gMB8GA1UdIwQYMBaAFLQTZWzXqY+94iN/xTFMn/fo8aCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTI1Mi9DRDE2M0JDQTU0 QTIxMUVCQkY2MjFFMUVDNEY5QUUwMi90Qk5sYk5lcGo3M2lJM19GTVV5Zjktanhv SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCTmxiTmVwajczaUkzX0ZNVXlmOS1qeG9KNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTI1Mi9DRDE2M0JDQTU0QTIxMUVCQkY2MjFFMUVDNEY5QUUwMi90Qk5sYk5lcGo3 M2lJM19GTVV5ZjktanhvSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU+W/93T7fz6C79daEkb6i8ssqxPAz8EAfne2Qtsnp+yRv+lYL6p3P jdGOewl0gkSl/g9V77sgitMQxfqOAnzXKrCvylJ5n496EcCx2O6dWMbst7AcYigw J8EaFBa0TIw1fnR+J3fMWUSNTCQMYJsS/D1b9tZpNxwmO5tu8nx1MG08OzfnH9o3 TPQABwbmCSHP1HXJZJhqanynvwJZ+o72thfMXFw4HpdfrZnkY1aEKfyVJMSJ7VSx UViutuskLlGXQuUmeEL+EdnGT7mSN7Co1k1LGl+bULgEu3gY0pfQUnHsyj49F0Cv Pp2/hwimYB0NE+AUPEAMLyyakvBsGwP5 -----END CERTIFICATE-----Generated at Wed Apr 9 16:30:22 2025 by rpki-client