$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft File: cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft (raw, json) Hash identifier: XkfKbutkwZI9ZdJAlvC+GRbk7r7ltmeJ4Qec20+JwNE= Subject key identifier: 4A:E2:A7:DD:F7:D8:2A:91:7E:C9:4E:54:1A:38:09:9E:C1:48:75:C9 Authority key identifier: 71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 Certificate issuer: /CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Certificate serial: 08E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft Manifest number: 3BC9 Signing time: Fri 04 Apr 2025 15:24:31 +0000 Manifest this update: Fri 04 Apr 2025 15:24:30 +0000 Manifest next update: Fri 11 Apr 2025 15:24:30 +0000 Files and hashes: 1: cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl (hash: zdaracYdFfXRfQ12ZPlDuxcTgtDVWVzVW7FaGh43bZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F Validity Not Before: Apr 4 15:24:30 2025 GMT Not After : Apr 11 15:24:30 2025 GMT Subject: CN=67eff9ae-6be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:97:42:96:98:3d:fb:cf:d2:51:72:12:03: 22:69:e3:43:7b:28:1c:5b:3a:3b:df:df:a8:c7:14: f4:49:76:cf:09:6e:b3:48:02:d2:a5:bb:aa:c4:6b: d0:b1:db:f9:fc:ce:0a:0c:ee:43:9a:5c:46:be:ec: 73:a4:82:5b:b0:3e:9f:2a:f0:a5:12:33:8a:78:70: 80:2d:53:93:0f:cc:ff:38:21:24:50:d5:43:3d:4d: eb:e0:a2:9c:51:24:8d:92:68:54:03:c8:e8:9d:7e: 28:cd:07:e1:9c:54:4b:32:63:e3:da:77:10:57:6c: 7a:7f:b9:d7:53:fe:72:55:05:53:b2:ef:e8:76:89: 70:82:7b:d5:fe:3a:b2:5c:d2:8d:d1:6d:bd:1f:e3: 5b:91:db:8d:75:d0:af:51:76:23:34:d1:e2:a3:ff: fe:1b:1f:7e:08:2c:04:58:ce:52:95:56:f3:76:75: ee:32:f3:6b:98:16:02:51:33:ce:d5:ae:ab:d5:f6: 8c:9b:6c:dc:fb:6d:37:de:72:c9:dc:c3:ee:63:f0: 4d:33:d1:7d:a2:b6:84:c2:7c:6e:fe:8a:8e:8f:09: 4d:73:cd:be:09:37:dd:b8:9e:bc:bb:45:ac:15:9b: 30:0c:be:85:0a:93:8e:51:fd:dd:83:28:e7:9d:70: ec:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E2:A7:DD:F7:D8:2A:91:7E:C9:4E:54:1A:38:09:9E:C1:48:75:C9 X509v3 Authority Key Identifier: keyid:71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:26:6b:35:76:05:eb:26:33:f0:57:d9:5d:1c:23:4b:68:d2: 0a:dd:f9:15:9e:8e:2a:70:ba:2e:d0:0e:0e:e5:26:d9:d7:d8: fb:9b:3e:04:aa:6a:67:c2:17:68:fb:bd:ed:46:e7:17:d0:2d: 87:f3:0c:f4:73:1e:b9:72:47:f4:0a:d9:b5:c0:7e:a4:e1:28: 54:ba:70:7e:fc:3a:04:db:c4:4f:aa:57:96:1c:e3:7a:dd:ad: 21:99:15:c4:40:bc:36:97:3a:0c:34:66:cc:7a:dc:f5:b5:86: 9f:02:98:a7:cd:fe:60:60:9d:ae:72:76:ae:77:a1:c3:5e:b7: db:ff:7e:9b:e2:83:9f:29:a3:d2:05:c2:7a:7b:c2:af:65:bd: b7:34:4e:ad:e9:23:da:75:1c:92:a1:83:67:fc:c7:3d:34:8a: bf:97:ab:9c:01:ca:80:92:3b:b0:45:e8:9a:66:84:33:76:0a: 02:33:99:de:b5:be:83:45:15:1d:51:f6:83:50:24:78:fe:0b: 71:c2:1f:e7:4b:71:52:d3:e0:4d:ba:ca:da:e3:72:9a:47:c3: e4:18:c9:58:e8:b7:6e:6c:e7:a1:45:92:a6:93:70:d2:e1:de: 45:27:2d:77:76:91:34:be:26:49:63:d0:3c:61:76:c2:66:da: 2e:86:8b:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKDcxQUNFQ0YxQTFBRDk3MDg1NjU1REJEMzQ0QzNFQkJC RDU2RkU0NzQwHhcNMjUwNDA0MTUyNDMwWhcNMjUwNDExMTUyNDMwWjAYMRYwFAYD VQQDEw02N2VmZjlhZS02YmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0yXQpaYPfvP0lFyEgMiaeNDeygcWzo739+oxxT0SXbPCW6zSALSpbuqxGvQ sdv5/M4KDO5DmlxGvuxzpIJbsD6fKvClEjOKeHCALVOTD8z/OCEkUNVDPU3r4KKc USSNkmhUA8jonX4ozQfhnFRLMmPj2ncQV2x6f7nXU/5yVQVTsu/odolwgnvV/jqy XNKN0W29H+NbkduNddCvUXYjNNHio//+Gx9+CCwEWM5SlVbzdnXuMvNrmBYCUTPO 1a6r1faMm2zc+2033nLJ3MPuY/BNM9F9oraEwnxu/oqOjwlNc82+CTfduJ68u0Ws FZswDL6FCpOOUf3dgyjnnXDsVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErip933 2CqRfslOVBo4CZ7BSHXJMB8GA1UdIwQYMBaAFHGs7PGhrZcIVlXb00TD67vVb+R0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3aFdWZHZUUk1QcnU5VnY1 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhenM4YUd0bHdoV1ZkdlRSTVBydTlWdjVIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3 aFdWZHZUUk1QcnU5VnY1SFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgJms1dgXrJjPwV9ldHCNLaNIK3fkVno4qcLou0A4O5SbZ19j7mz4E qmpnwhdo+73tRucX0C2H8wz0cx65ckf0Ctm1wH6k4ShUunB+/DoE28RPqleWHON6 3a0hmRXEQLw2lzoMNGbMetz1tYafApinzf5gYJ2ucnaud6HDXrfb/36b4oOfKaPS BcJ6e8KvZb23NE6t6SPadRySoYNn/Mc9NIq/l6ucAcqAkjuwReiaZoQzdgoCM5ne tb6DRRUdUfaDUCR4/gtxwh/nS3FS0+BNusra43KaR8PkGMlY6LdubOehRZKmk3DS 4d5FJy13dpE0viZJY9A8YXbCZtouhovr -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:39 2025 by rpki-client