$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: l6Kj6jKdYwgiuwcQ5B8mffLvXfMkjOyF7W0KsgDO//w= Subject key identifier: 5A:0D:F0:E3:88:F9:D8:61:AF:22:E8:1C:E5:4F:9A:9E:78:3E:DC:86 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 01A6 Signing time: Sat 29 Mar 2025 02:56:21 +0000 Manifest this update: Sat 29 Mar 2025 02:56:20 +0000 Manifest next update: Sat 05 Apr 2025 02:56:20 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: L8mkHxcJvJD4xx7Ia1Yy1REo1Im9vu5FGgMLRhBcnDE=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: yk9nPTjP4U1qVXizgEWQziK8OtxwSvu99sQkiIJG/k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68 Validity Not Before: Mar 29 02:56:20 2025 GMT Not After : Apr 5 02:56:20 2025 GMT Subject: CN=67e76154-f4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ba:96:68:6a:5a:65:84:ed:70:65:b8:3e:8c: 40:ba:03:72:8a:c7:a9:b5:cb:89:4e:11:c6:a4:f7: d7:f4:71:78:4c:0f:6f:fe:55:78:ff:a0:12:82:31: 03:97:8b:9c:eb:ce:b1:c3:fa:db:2f:86:c1:20:19: 61:14:c0:4d:79:b1:60:3e:fc:c0:e2:ae:1d:a3:9d: 88:cc:00:d4:fe:4a:19:af:58:97:d0:1e:e8:be:d7: 3b:c7:2a:9d:1a:81:e2:a7:85:39:dc:4f:bf:88:91: fc:b7:5d:01:2d:af:1b:2a:c1:85:2d:b5:2c:81:11: cd:ce:44:c5:6c:1c:b2:50:82:17:00:25:76:d3:62: ab:47:d3:e0:40:4d:0d:77:fb:1a:3e:3c:68:76:85: d2:98:1c:d8:5e:bc:86:e7:ee:15:8c:89:92:b8:e2: 25:d6:33:fa:20:c4:65:89:43:27:d8:a7:94:94:0a: 24:58:9e:a8:9a:f0:3a:78:20:a9:ee:52:b8:e0:fa: 1b:82:cb:37:ff:8d:2f:90:25:72:66:db:2e:88:f1: 21:ee:6b:dd:50:bf:e1:a8:1c:5a:05:a4:69:36:05: ef:36:74:b4:2b:6f:22:b1:55:c3:96:0f:4f:00:2a: 82:4f:20:f0:c7:02:98:a6:f3:63:f0:7f:e4:a4:12: 1a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0D:F0:E3:88:F9:D8:61:AF:22:E8:1C:E5:4F:9A:9E:78:3E:DC:86 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:12:6c:6b:08:b2:2a:4e:6a:64:35:57:6a:b7:57:7c:36:ec: 92:e8:85:bf:fe:cf:b2:c5:6d:3a:7e:6c:73:4b:e1:76:98:ee: c1:77:00:0a:ef:68:90:11:3c:8d:4c:18:5b:86:59:f2:f4:9b: 4c:62:fe:c1:c5:7d:85:ea:1f:2e:81:de:d3:9b:6e:5e:22:50: 54:a0:fe:61:ac:92:88:13:45:46:a7:b1:af:73:45:27:96:b3: 6f:fd:57:a4:02:56:52:bf:92:45:6e:0c:45:fa:c1:7e:c8:a6: 06:19:74:f5:8e:74:b3:9c:ff:a2:46:58:f9:4f:13:24:0d:19: 52:b9:b5:7e:86:b5:9f:83:94:7c:53:30:a2:53:e2:89:28:d5: 96:69:b8:6a:d1:f8:5b:9a:c6:13:30:83:35:a9:57:76:af:86: 46:ae:95:e2:16:d2:3b:3f:f6:13:67:d5:be:4e:7a:1a:ce:e9: a1:30:64:f2:4c:cf:79:2d:25:ef:ab:a3:2e:70:ca:2e:c0:2c: 99:5e:fa:43:7a:62:48:fe:1e:95:06:0e:b9:05:f4:be:89:49: 76:64:96:5a:eb:9a:de:45:01:37:7a:af:0a:67:92:71:be:00: 5d:ac:20:1f:2b:7f:05:19:9c:44:5a:19:d9:7e:83:6c:22:68: 73:6a:e9:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUwMzI5MDI1NjIwWhcNMjUwNDA1MDI1NjIwWjAYMRYwFAYD VQQDEw02N2U3NjE1NC1mNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLqWaGpaZYTtcGW4PoxAugNyiseptcuJThHGpPfX9HF4TA9v/lV4/6ASgjED l4uc686xw/rbL4bBIBlhFMBNebFgPvzA4q4do52IzADU/koZr1iX0B7ovtc7xyqd GoHip4U53E+/iJH8t10BLa8bKsGFLbUsgRHNzkTFbByyUIIXACV202KrR9PgQE0N d/saPjxodoXSmBzYXryG5+4VjImSuOIl1jP6IMRliUMn2KeUlAokWJ6omvA6eCCp 7lK44Pobgss3/40vkCVyZtsuiPEh7mvdUL/hqBxaBaRpNgXvNnS0K28isVXDlg9P ACqCTyDwxwKYpvNj8H/kpBIa/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoN8OOI +dhhryLoHOVPmp54PtyGMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnEmxrCLIqTmpkNVdqt1d8NuyS6IW//s+yxW06fmxzS+F2mO7BdwAK 72iQETyNTBhbhlny9JtMYv7BxX2F6h8ugd7Tm25eIlBUoP5hrJKIE0VGp7Gvc0Un lrNv/VekAlZSv5JFbgxF+sF+yKYGGXT1jnSznP+iRlj5TxMkDRlSubV+hrWfg5R8 UzCiU+KJKNWWabhq0fhbmsYTMIM1qVd2r4ZGrpXiFtI7P/YTZ9W+TnoazumhMGTy TM95LSXvq6MucMouwCyZXvpDemJI/h6VBg65BfS+iUl2ZJZa65reRQE3eq8KZ5Jx vgBdrCAfK38FGZxEWhnZfoNsImhzaunb -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:38 2025 by rpki-client