$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: GFhWxFccdMvKtC7QWwfVypM+wljcGdKSN7bjqQ9Dp6g= Subject key identifier: 97:34:EE:60:82:67:88:D4:C1:7E:76:E5:A2:AF:CE:64:A8:07:BD:8B Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 037D Signing time: Sun 13 Apr 2025 00:29:34 +0000 Manifest this update: Sun 13 Apr 2025 00:29:33 +0000 Manifest next update: Sun 20 Apr 2025 00:29:33 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: DLDTelMP6xUgAhJ5gR/EyePuvWN7m2Xh+ZNVWVk9wEs=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: IKsBlPoiBaV1Y/8FMivKysodYXv24LUe7kGHbrSaUFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Apr 13 00:29:33 2025 GMT Not After : Apr 20 00:29:33 2025 GMT Subject: CN=67fb056d-2e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:04:1a:5d:86:df:4b:97:ac:db:46:12:fd: 18:48:6b:8b:5a:e4:60:e7:b8:f2:14:ed:44:07:7d: 5a:d3:da:ed:9f:27:65:ea:9a:95:db:85:ea:53:3f: 02:24:c1:3e:dc:1e:27:a9:0f:32:26:64:2d:01:ca: be:e6:e1:37:61:3f:e7:8d:6b:ca:09:c0:81:02:a7: fe:06:fc:30:72:eb:54:e3:f0:ff:64:96:03:e6:7f: ed:cc:9f:e2:a5:ef:7a:d1:2a:d6:72:13:55:01:a7: 43:8a:a4:77:02:65:70:a0:2d:8d:09:93:72:9c:91: 76:bf:1f:70:db:1e:7c:b3:cb:27:cb:05:62:66:70: 0f:53:54:f1:6d:c5:34:36:72:cd:c8:a1:12:ed:57: fa:ed:6c:52:cb:9d:d3:ad:53:b9:c6:9d:94:0d:0c: e6:ef:9e:3a:ee:80:79:22:7e:d3:e0:6a:6d:be:32: 9c:54:bd:3d:5b:a8:b6:0f:b6:3f:32:e4:1b:ac:c7: b2:34:d0:de:df:83:ee:fe:ab:e9:fc:ac:02:ed:19: b2:d2:a3:f2:15:a1:f8:30:a2:30:23:c5:26:dc:af: 6a:75:28:67:14:05:61:1c:87:9a:13:e0:f8:14:1f: de:77:ee:32:50:c7:69:29:ec:eb:64:9e:99:1a:67: 20:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:34:EE:60:82:67:88:D4:C1:7E:76:E5:A2:AF:CE:64:A8:07:BD:8B X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:91:c6:07:5c:de:da:80:3c:7d:3c:7c:84:6b:6b:d2:aa:65: 26:e5:ef:ed:b1:00:75:4f:01:9b:61:1f:30:51:cb:47:1d:15: a6:a7:60:b5:ab:37:cd:83:75:b8:89:bb:8f:47:73:8a:2c:98: 21:ee:61:64:36:09:3b:a1:ae:c6:db:35:c5:68:58:d9:cc:68: 6d:97:d2:33:4d:cc:2d:69:28:7a:ab:7c:4d:9a:af:8e:ff:fc: 31:f8:de:ff:a1:06:76:75:5f:ef:f1:a4:8d:4f:24:4b:e3:4e: 82:da:47:6c:fa:fd:fc:ce:fa:86:a0:4c:bc:c5:f6:80:e4:f4: 07:35:ab:63:d4:f9:07:cb:d3:d7:b4:8a:e8:24:71:62:86:29: bd:80:97:95:4f:89:98:d8:56:d6:e1:db:05:e8:47:2f:e7:62: be:b0:2c:18:83:6f:08:48:2c:9a:e7:0c:8b:82:60:b7:4c:0b: e9:3e:f3:c4:c3:2a:39:b1:ed:d7:f1:25:3e:25:83:1e:05:27: 5d:80:3d:f8:8b:d4:bf:24:11:7b:39:dd:01:98:3e:66:d7:07: 78:6f:04:fd:34:61:31:16:fb:77:6c:11:c0:42:d6:c5:dc:7b: 28:80:77:6c:cc:59:8e:ba:b4:2b:73:bb:73:28:93:5f:83:3d: 64:11:80:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjUwNDEzMDAyOTMzWhcNMjUwNDIwMDAyOTMzWjAYMRYwFAYD VQQDEw02N2ZiMDU2ZC0yZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux0EGl2G30uXrNtGEv0YSGuLWuRg57jyFO1EB31a09rtnydl6pqV24XqUz8C JME+3B4nqQ8yJmQtAcq+5uE3YT/njWvKCcCBAqf+BvwwcutU4/D/ZJYD5n/tzJ/i pe960SrWchNVAadDiqR3AmVwoC2NCZNynJF2vx9w2x58s8snywViZnAPU1TxbcU0 NnLNyKES7Vf67WxSy53TrVO5xp2UDQzm75467oB5In7T4GptvjKcVL09W6i2D7Y/ MuQbrMeyNNDe34Pu/qvp/KwC7Rmy0qPyFaH4MKIwI8Um3K9qdShnFAVhHIeaE+D4 FB/ed+4yUMdpKezrZJ6ZGmcg2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJc07mCC Z4jUwX525aKvzmSoB72LMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBukcYHXN7agDx9PHyEa2vSqmUm5e/tsQB1TwGbYR8wUctHHRWmp2C1 qzfNg3W4ibuPR3OKLJgh7mFkNgk7oa7G2zXFaFjZzGhtl9IzTcwtaSh6q3xNmq+O //wx+N7/oQZ2dV/v8aSNTyRL406C2kds+v38zvqGoEy8xfaA5PQHNatj1PkHy9PX tIroJHFihim9gJeVT4mY2FbW4dsF6Ecv52K+sCwYg28ISCya5wyLgmC3TAvpPvPE wyo5se3X8SU+JYMeBSddgD34i9S/JBF7Od0BmD5m1wd4bwT9NGExFvt3bBHAQtbF 3HsogHdszFmOurQrc7tzKJNfgz1kEYAL -----END CERTIFICATE-----Generated at Sun Apr 13 04:38:34 2025 by rpki-client