$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: bKjy7svoRFQrQ6BUnkcxRPtuG1RDUh4gjgpNUc3OMNY= Subject key identifier: 51:B1:6F:AC:03:C7:C7:53:9F:3F:49:5F:18:8D:32:E9:12:77:5B:CE Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3491 Signing time: Fri 04 Apr 2025 14:44:09 +0000 Manifest this update: Fri 04 Apr 2025 14:44:08 +0000 Manifest next update: Fri 11 Apr 2025 14:44:08 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: Y4jVWIwpHhwKMRn3q0wFCY80ldhDlqXkjYXv5V5x3tU=) 2: A5FDB194C68611EFB4077137C4F9AE02.roa (hash: 7I8kXqSxz+6NjutJQZnEdYEeWA6i5ZbGEU7PIpXyo/8=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: lagg7XqNxsfyb1w3gTP+tCUMQSRTn5F81GdacPwOxBo=) 4: A582509EC68611EFB4077137C4F9AE02.roa (hash: 64CAbdllSyxCx8brqJo5EHBLoAmhatUaDGkIKThzCKI=) 5: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22 Validity Not Before: Apr 4 14:44:08 2025 GMT Not After : Apr 11 14:44:08 2025 GMT Subject: CN=67eff038-ff49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:04:98:59:0c:1a:21:a6:ed:2e:40:3e:4c: 4a:01:7e:69:ee:87:20:f5:d6:ac:ba:91:bc:88:2d: 4d:61:9c:ba:a9:f0:50:c7:33:44:6b:01:95:f4:51: 5b:f2:7d:7b:d8:86:f9:19:28:85:de:83:a5:aa:1a: 26:37:75:70:63:3f:b4:8f:e0:a4:a8:e1:49:69:0b: da:ec:5e:6a:3d:2b:7f:f4:98:b5:be:71:45:fc:af: 52:b8:28:10:e8:bc:27:c3:05:6b:e8:cf:0f:78:1c: a9:51:50:eb:67:e7:46:d4:d1:9c:b1:19:62:45:96: af:90:63:63:aa:80:47:c6:4d:7a:63:74:94:e6:ec: 31:ab:9d:e8:04:67:52:d6:a3:c0:9b:46:d8:4f:c8: 66:6b:54:31:ee:4b:82:c3:e5:1e:f6:55:38:5a:c3: 1c:be:d5:db:8b:b0:8a:32:a9:27:a2:c9:81:ec:5f: 55:12:fc:dd:c5:3c:a6:b1:2b:71:fa:24:64:1b:42: c6:c0:da:84:9b:ce:15:a5:fb:69:d7:2d:3f:1a:da: c6:f8:d4:95:ff:bf:55:29:75:94:2d:a3:f3:e6:66: 8d:ce:5a:a3:fd:aa:be:dd:7b:52:54:d1:6f:13:3c: f7:0f:7e:a7:af:da:c0:4d:d3:9b:da:c7:af:0d:57: ed:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B1:6F:AC:03:C7:C7:53:9F:3F:49:5F:18:8D:32:E9:12:77:5B:CE X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:3c:63:e1:20:97:ad:fc:6c:bd:b0:59:ab:3e:51:65:43:85: 0c:e2:43:d6:f6:cd:99:69:92:8b:4b:36:79:cc:16:06:fd:cd: e7:09:6a:6b:51:9c:80:e0:da:6f:ae:8b:a9:54:15:26:16:ec: 32:a6:73:ce:71:23:78:10:ec:75:1f:9a:f6:69:8f:a6:5e:19: 64:77:a2:5b:8d:ca:bc:41:88:c3:4d:a6:97:89:02:40:e5:ae: c8:49:17:fb:c2:70:7c:0b:68:a8:3b:21:89:c7:94:6a:69:55: cc:5b:4d:09:1b:fa:cf:7e:5f:1b:f0:20:39:ad:a2:ce:42:ce: cf:fe:0f:91:38:b9:8d:0d:cd:ec:2a:48:21:42:6d:05:8c:03: 97:6f:eb:05:5b:87:32:b1:41:30:44:f4:2e:5e:ed:1b:2f:85: c2:92:41:cb:b9:f5:71:a7:33:74:e5:61:af:e2:fd:9e:a3:c6: ab:99:8e:1e:d6:a2:9e:53:4a:74:12:6a:25:41:a2:65:5b:ed: 67:ed:9d:87:6c:02:c5:c0:a5:39:3a:c4:84:dd:68:7e:67:81: d4:28:fa:c9:ee:a8:8b:5e:14:3b:d2:2d:8e:11:a8:7b:f0:5f: 89:c7:07:2f:84:ff:04:7c:44:77:24:f9:4c:1f:60:07:41:f2: 44:cf:aa:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUwNDA0MTQ0NDA4WhcNMjUwNDExMTQ0NDA4WjAYMRYwFAYD VQQDEw02N2VmZjAzOC1mZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JUEmFkMGiGm7S5APkxKAX5p7ocg9dasupG8iC1NYZy6qfBQxzNEawGV9FFb 8n172Ib5GSiF3oOlqhomN3VwYz+0j+CkqOFJaQva7F5qPSt/9Ji1vnFF/K9SuCgQ 6LwnwwVr6M8PeBypUVDrZ+dG1NGcsRliRZavkGNjqoBHxk16Y3SU5uwxq53oBGdS 1qPAm0bYT8hma1Qx7kuCw+Ue9lU4WsMcvtXbi7CKMqknosmB7F9VEvzdxTymsStx +iRkG0LGwNqEm84Vpftp1y0/GtrG+NSV/79VKXWULaPz5maNzlqj/aq+3XtSVNFv Ezz3D36nr9rATdOb2sevDVft0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGxb6wD x8dTnz9JXxiNMukSd1vOMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvPGPhIJet/Gy9sFmrPlFlQ4UM4kPW9s2ZaZKLSzZ5zBYG/c3nCWpr UZyA4NpvroupVBUmFuwypnPOcSN4EOx1H5r2aY+mXhlkd6Jbjcq8QYjDTaaXiQJA 5a7ISRf7wnB8C2ioOyGJx5RqaVXMW00JG/rPfl8b8CA5raLOQs7P/g+ROLmNDc3s KkghQm0FjAOXb+sFW4cysUEwRPQuXu0bL4XCkkHLufVxpzN05WGv4v2eo8armY4e 1qKeU0p0EmolQaJlW+1n7Z2HbALFwKU5OsSE3Wh+Z4HUKPrJ7qiLXhQ70i2OEah7 8F+JxwcvhP8EfER3JPlMH2AHQfJEz6oY -----END CERTIFICATE-----Generated at Fri Apr 4 21:47:25 2025 by rpki-client