$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.mft File: 0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.mft (raw, json) Hash identifier: Ia/mBdO4/MzlxWoOj710sHcLbvMNVNnpMOaxx4jB6iA= Subject key identifier: 4E:1A:29:25:A0:0C:FE:AA:5C:8A:77:88:E6:61:DB:A5:8B:84:58:71 Authority key identifier: D2:41:F5:71:CD:63:97:96:30:DC:1F:16:AD:48:99:D5:BE:D5:66:E5 Certificate issuer: /CN=A91A9CD5/serialNumber=D241F571CD63979630DC1F16AD4899D5BED566E5 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.mft Manifest number: 62 Signing time: Mon 07 Apr 2025 05:51:15 +0000 Manifest this update: Mon 07 Apr 2025 05:51:14 +0000 Manifest next update: Mon 14 Apr 2025 05:51:14 +0000 Files and hashes: 1: 0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.crl (hash: Cy5Cxs+v0h1DkQQNhDFfCOYjMo1PoqMFYu2QHSOxzNQ=) 2: D1E54D607FF211EFB2910061C4F9AE02.roa (hash: K3X3GoEdbp40UjZvhBO+XoTewllnOfMeBiUtz3yrvW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.crl rsync://rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9CD5 Validity Not Before: Apr 7 05:51:14 2025 GMT Not After : Apr 14 05:51:14 2025 GMT Subject: CN=67f367d2-25c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8b:47:d9:db:1a:d8:ed:78:3a:ed:1a:92:cd: c5:9f:51:6a:3a:8e:f5:54:27:fa:89:f5:fc:a4:5b: e6:f2:da:3e:df:12:0f:6f:ee:d4:03:41:3b:dd:d9: 3e:62:c2:fb:45:cf:3a:20:b3:32:f6:5e:42:bf:46: dd:ad:51:a2:03:06:23:c7:93:a9:05:42:6d:a3:52: b2:ac:bb:a1:7a:88:aa:ec:45:23:16:d2:27:51:e5: 3f:c0:dd:6e:1c:a9:ca:08:27:fa:eb:52:ec:6d:85: 10:0d:0b:17:71:61:82:9b:bf:af:6d:c0:f8:a3:e7: bd:dd:39:23:f1:9c:68:f0:5a:a0:9d:16:8c:dc:fd: 9e:e9:6d:b8:10:8a:41:76:b2:49:8e:83:26:fa:08: b2:12:20:79:8f:96:f8:52:31:db:d5:49:13:82:24: 6c:c5:8c:0c:4b:2f:3e:e1:51:19:51:b7:46:3c:e0: 29:e5:f3:c2:a2:73:a3:79:bc:11:44:3b:2f:7d:7f: ce:b0:45:e7:91:e2:ba:13:df:34:c3:21:f3:5f:0f: f7:8e:6a:9e:5e:0f:7d:01:e7:62:87:3b:cf:3d:e4: 51:64:8e:c8:c7:3c:17:34:2e:b2:1d:5d:45:fb:45: d1:7f:fd:2d:3d:89:ba:81:b7:e9:15:86:fe:d4:54: 51:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1A:29:25:A0:0C:FE:AA:5C:8A:77:88:E6:61:DB:A5:8B:84:58:71 X509v3 Authority Key Identifier: keyid:D2:41:F5:71:CD:63:97:96:30:DC:1F:16:AD:48:99:D5:BE:D5:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9CD5/71995F4E7FEF11EFA82DF639C4F9AE02/0kH1cc1jl5Yw3B8WrUiZ1b7VZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:27:1c:db:17:5b:f0:92:56:eb:ab:ce:17:19:88:b0:45:ff: 74:2f:4e:43:63:68:bf:92:ac:72:0c:73:0c:8c:ee:8e:71:7a: 8e:ed:25:56:57:d3:ce:62:ed:3b:e5:c8:f7:0f:74:a3:4a:3c: 23:ba:39:61:fb:6d:09:08:d2:2d:e4:51:fc:68:c7:8c:d9:5b: 33:7b:bf:96:79:5d:1b:02:01:54:f0:ad:d9:5b:dc:0e:53:e5: fa:27:d4:44:fa:3a:46:0c:b9:60:b4:68:fd:2f:22:69:48:64: b7:cf:2f:d1:f4:2e:08:40:23:81:8c:43:50:ec:36:86:e3:a2: c6:d1:30:e1:fd:a5:d4:84:21:f2:da:fc:de:d9:6a:b3:da:09: 6d:2d:46:fd:56:61:6d:00:44:c9:26:77:d6:82:ff:a8:d8:55: 14:64:e1:63:2a:73:4b:a0:75:fb:e5:99:23:4d:ba:67:ac:98: 9b:97:e1:75:71:5c:5d:53:95:56:23:79:2e:40:51:75:11:0c: 36:ee:55:2c:91:e2:5f:e4:ee:df:76:5e:e5:62:e6:84:08:b3: 2f:3d:72:ac:68:c5:83:d1:e8:75:4d:25:29:db:d3:e1:2f:3a: 6a:35:52:b3:e6:41:8b:bc:40:a4:54:41:fc:6e:88:4c:c3:c6: 9d:2c:76:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OUNENTExMC8GA1UEBRMoRDI0MUY1NzFDRDYzOTc5NjMwREMxRjE2QUQ0ODk5RDVC RUQ1NjZFNTAeFw0yNTA0MDcwNTUxMTRaFw0yNTA0MTQwNTUxMTRaMBgxFjAUBgNV BAMTDTY3ZjM2N2QyLTI1YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwi0fZ2xrY7Xg67RqSzcWfUWo6jvVUJ/qJ9fykW+by2j7fEg9v7tQDQTvd2T5i wvtFzzogszL2XkK/Rt2tUaIDBiPHk6kFQm2jUrKsu6F6iKrsRSMW0idR5T/A3W4c qcoIJ/rrUuxthRANCxdxYYKbv69twPij573dOSPxnGjwWqCdFozc/Z7pbbgQikF2 skmOgyb6CLISIHmPlvhSMdvVSROCJGzFjAxLLz7hURlRt0Y84Cnl88Kic6N5vBFE Oy99f86wReeR4roT3zTDIfNfD/eOap5eD30B52KHO8895FFkjsjHPBc0LrIdXUX7 RdF//S09ibqBt+kVhv7UVFHPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUThopJaAM /qpcineI5mHbpYuEWHEwHwYDVR0jBBgwFoAU0kH1cc1jl5Yw3B8WrUiZ1b7VZuUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5Q0Q1LzcxOTk1RjRFN0ZF RjExRUZBODJERjYzOUM0RjlBRTAyLzBrSDFjYzFqbDVZdzNCOFdyVWlaMWI3Vlp1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGtIMWNjMWpsNVl3M0I4V3JVaVoxYjdWWnVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 Q0Q1LzcxOTk1RjRFN0ZFRjExRUZBODJERjYzOUM0RjlBRTAyLzBrSDFjYzFqbDVZ dzNCOFdyVWlaMWI3Vlp1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJwnHNsXW/CSVuurzhcZiLBF/3QvTkNjaL+SrHIMcwyM7o5xeo7tJVZX 085i7TvlyPcPdKNKPCO6OWH7bQkI0i3kUfxox4zZWzN7v5Z5XRsCAVTwrdlb3A5T 5fon1ET6OkYMuWC0aP0vImlIZLfPL9H0LghAI4GMQ1DsNobjosbRMOH9pdSEIfLa /N7ZarPaCW0tRv1WYW0ARMkmd9aC/6jYVRRk4WMqc0ugdfvlmSNNumesmJuX4XVx XF1TlVYjeS5AUXURDDbuVSyR4l/k7t92XuVi5oQIsy89cqxoxYPR6HVNJSnb0+Ev Omo1UrPmQYu8QKRUQfxuiEzDxp0sdvs= -----END CERTIFICATE-----Generated at Tue Apr 8 22:11:06 2025 by rpki-client