$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft File: PoReqE4RAwvCoQYTCJefeYoSET8.mft (raw, json) Hash identifier: chi7VXKaOBc1n4FwFwBw39tD+ab95qSHYsWgh8R8gUw= Subject key identifier: A3:F5:AC:D8:FE:71:65:CD:34:BB:42:C1:32:38:37:64:CF:13:13:1F Authority key identifier: 3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F Certificate issuer: /CN=A91A6BF5/serialNumber=3E845EA84E11030BC2A1061308979F798A12113F Certificate serial: 0BE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft Manifest number: 0BDB Signing time: Fri 04 Apr 2025 18:54:07 +0000 Manifest this update: Fri 04 Apr 2025 18:54:06 +0000 Manifest next update: Fri 11 Apr 2025 18:54:06 +0000 Files and hashes: 1: PoReqE4RAwvCoQYTCJefeYoSET8.crl (hash: RozW5kJmmPDIwGsTEUaYkMU0Nzuwctw6oRJau9xdvw4=) 2: 03EE880413F511EA8D120C65C4F9AE02.roa (hash: RpJ/3A2zXQw9C0hNB2vN4upiPschgzxuaxvOtctAWMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6BF5 Validity Not Before: Apr 4 18:54:06 2025 GMT Not After : Apr 11 18:54:06 2025 GMT Subject: CN=67f02ace-4763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4a:5e:b1:ab:90:12:f8:e6:ef:1f:41:6a:41: 4d:ea:81:47:52:18:c3:b0:bf:cf:a4:27:14:d8:83: 63:ab:0d:15:d7:56:cb:6a:8d:06:1a:85:0a:c5:0e: ee:ec:5d:25:0b:6f:7e:16:eb:3d:72:6a:df:51:7e: 99:b1:ee:65:84:95:c5:a7:00:3f:fa:a7:88:7d:63: 30:08:10:57:f8:24:ae:12:b2:56:25:f0:36:84:cb: 08:b9:ff:55:61:10:ad:64:5c:d5:99:01:4b:ae:25: 84:e5:77:04:74:78:44:5b:75:ea:86:48:a6:db:f3: 0d:60:96:9c:e1:2f:98:cb:87:5c:b4:65:89:ea:37: d1:58:0d:72:ed:51:68:26:6b:9b:f2:07:7f:0c:87: c1:fd:28:ed:91:e5:c2:aa:95:94:71:51:85:dc:bc: 47:ed:62:af:1d:c6:a6:2c:fd:66:6b:73:2e:1f:4d: de:3a:83:f1:88:df:cd:b7:e4:04:c3:20:fa:69:1f: 58:6c:a1:a7:76:7b:41:72:3e:75:89:59:69:25:82: e7:fd:80:37:8b:67:16:53:c7:f3:55:08:3f:b4:d4: 0d:e9:02:c7:29:30:e9:51:e5:0d:31:b7:51:cd:7b: 33:c1:db:2c:9a:6b:86:58:f4:1d:34:b3:20:d8:e5: b0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F5:AC:D8:FE:71:65:CD:34:BB:42:C1:32:38:37:64:CF:13:13:1F X509v3 Authority Key Identifier: keyid:3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:8a:0e:91:cf:8d:f9:af:23:c6:fb:5d:50:e2:e0:50:ab:db: 19:53:3c:d6:4e:c4:7f:8e:72:0b:9f:f0:a2:83:d7:91:ab:47: d3:ed:de:d4:78:66:65:4a:38:96:a8:a0:7f:df:97:f6:b2:31: 39:8c:51:31:68:ce:43:9c:22:d6:94:63:22:08:89:43:dc:7a: 99:a9:a7:ec:4c:6f:a3:63:76:2d:e3:d8:17:34:36:78:1d:30: 4a:1a:79:36:e8:9d:a9:83:17:fb:2f:66:c1:65:b2:87:60:e2: 72:35:ce:52:5d:98:3b:b6:88:8c:3e:7a:d5:f9:a1:fd:6f:85: 39:12:5b:6b:e8:af:b0:53:14:93:68:78:95:82:69:50:c5:4a: cb:80:8d:5e:48:16:c4:3c:fc:75:7f:b8:38:28:c5:d3:b4:a2: 0a:7b:7e:19:7e:3f:25:d1:7c:ac:bf:db:02:a9:f7:db:b0:da: 43:ed:0b:9d:f2:54:ad:a7:e1:c4:32:d6:47:d1:06:1f:8e:29: 8d:3a:ee:06:e3:aa:b0:e3:96:e6:a7:b6:75:80:cd:b2:ee:de: 6a:77:16:a4:cd:85:cc:74:f5:c4:1a:8d:fb:29:e5:0d:da:39: 43:a8:1d:a1:c8:f2:dd:ac:58:ff:f4:f1:a1:d8:1a:08:6d:e0: 50:93:31:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCRjUxMTAvBgNVBAUTKDNFODQ1RUE4NEUxMTAzMEJDMkExMDYxMzA4OTc5Rjc5 OEExMjExM0YwHhcNMjUwNDA0MTg1NDA2WhcNMjUwNDExMTg1NDA2WjAYMRYwFAYD VQQDEw02N2YwMmFjZS00NzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0pesauQEvjm7x9BakFN6oFHUhjDsL/PpCcU2INjqw0V11bLao0GGoUKxQ7u 7F0lC29+Fus9cmrfUX6Zse5lhJXFpwA/+qeIfWMwCBBX+CSuErJWJfA2hMsIuf9V YRCtZFzVmQFLriWE5XcEdHhEW3Xqhkim2/MNYJac4S+Yy4dctGWJ6jfRWA1y7VFo Jmub8gd/DIfB/SjtkeXCqpWUcVGF3LxH7WKvHcamLP1ma3MuH03eOoPxiN/Nt+QE wyD6aR9YbKGndntBcj51iVlpJYLn/YA3i2cWU8fzVQg/tNQN6QLHKTDpUeUNMbdR zXszwdssmmuGWPQdNLMg2OWwgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKP1rNj+ cWXNNLtCwTI4N2TPExMfMB8GA1UdIwQYMBaAFD6EXqhOEQMLwqEGEwiXn3mKEhE/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkJGNS85RDBCNDIyMjEz RjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3dkNvUVlUQ0plZmVZb1NF VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BvUmVxRTRSQXd2Q29RWVRDSmVmZVlvU0VUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkJGNS85RDBCNDIyMjEzRjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3 dkNvUVlUQ0plZmVZb1NFVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsig6Rz435ryPG+11Q4uBQq9sZUzzWTsR/jnILn/Cig9eRq0fT7d7U eGZlSjiWqKB/35f2sjE5jFExaM5DnCLWlGMiCIlD3HqZqafsTG+jY3Yt49gXNDZ4 HTBKGnk26J2pgxf7L2bBZbKHYOJyNc5SXZg7toiMPnrV+aH9b4U5Eltr6K+wUxST aHiVgmlQxUrLgI1eSBbEPPx1f7g4KMXTtKIKe34Zfj8l0Xysv9sCqffbsNpD7Qud 8lStp+HEMtZH0QYfjimNOu4G46qw45bmp7Z1gM2y7t5qdxakzYXMdPXEGo37KeUN 2jlDqB2hyPLdrFj/9PGh2BoIbeBQkzF5 -----END CERTIFICATE-----Generated at Sun Apr 6 19:50:07 2025 by rpki-client