$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: RuRFhnbKdTtzX1ogXbkJk8QV4tl8PSei4iBPw6Zodbw= Subject key identifier: 7B:0D:98:63:EA:F7:BD:74:70:56:EA:9B:93:E6:25:E9:90:E8:9F:6B Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 024A Signing time: Tue 15 Apr 2025 01:31:24 +0000 Manifest this update: Tue 15 Apr 2025 01:31:23 +0000 Manifest next update: Tue 22 Apr 2025 01:31:23 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: qu/0lV1BOxd5J3koc9Ae2PjukGXS+1rT4bMEj6Kvam8=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: TZ/n2fdCp6It0G4ugsLwMjkFuDgasyyKStMAe77+R34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 01:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94, serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: Apr 15 01:31:23 2025 GMT Not After : Apr 22 01:31:23 2025 GMT Subject: CN=67fdb6eb-ff94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1f:3f:39:c5:f9:7a:2f:da:59:c9:d6:ec:d2: 68:14:25:20:fb:01:e7:b4:71:20:c3:1d:88:71:db: 3e:83:c2:ae:6d:ee:55:3b:82:86:4d:28:ef:39:8d: 5f:90:7f:41:a8:b8:04:7e:58:8d:1a:e3:e8:9e:96: b2:89:70:e0:a8:10:c7:33:5e:73:61:d5:b1:38:bc: be:a3:4c:da:f8:b5:0d:16:c1:62:48:12:e6:18:ac: 11:9f:b9:8a:01:9b:09:f6:28:a6:27:ee:5d:ff:da: dd:22:9f:b9:bf:20:c0:f5:91:a8:99:17:bf:ac:e9: 7d:26:7e:0d:a1:39:00:0e:f1:94:e1:59:d1:53:54: fa:db:cf:36:c4:e1:e9:c4:39:0f:9d:d5:48:c0:7e: 73:f3:f6:88:12:34:92:c7:f5:e4:db:4b:bf:38:21: 1b:b9:27:b4:7b:af:db:21:87:2b:96:69:76:c1:08: d4:0e:8f:d6:63:97:5b:b1:a3:45:1f:28:0b:43:1f: b9:76:d1:0e:df:ee:e9:c0:d6:e6:94:38:5b:00:67: 87:c7:2e:40:46:cf:08:58:32:4e:a5:16:ba:a9:9d: d2:51:65:4d:6f:67:25:42:81:d1:44:8e:50:d2:d0: 1b:d8:7a:af:95:31:40:ae:fd:1b:aa:e4:aa:0c:20: cf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0D:98:63:EA:F7:BD:74:70:56:EA:9B:93:E6:25:E9:90:E8:9F:6B X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:79:7c:af:22:c3:11:6b:f1:3b:95:e6:bf:a7:d0:c6:c0:ef: 8c:9c:60:ee:cb:c3:d5:75:b6:c5:f0:1f:8f:4e:b7:9e:e4:18: 20:2a:f2:f6:97:a2:a8:e5:63:0d:5c:f1:fd:62:c8:07:86:78: d9:5f:f7:67:f0:6d:4d:7d:58:49:94:c1:3e:28:c3:45:2e:e2: b7:c7:b4:7e:05:bd:d0:17:be:30:a7:8a:1c:5b:c7:a9:c7:62: 1f:72:52:7c:3a:c6:88:22:10:17:6f:55:ef:ae:ec:c9:78:b5: a4:54:83:e8:02:ee:6f:fe:d6:29:d7:35:67:1f:b5:17:a9:b9: 5b:79:38:ff:0c:52:5a:24:83:db:29:fa:86:32:26:5d:68:9d: 27:ac:44:eb:97:a7:0c:b0:bb:5f:dc:11:0a:6b:fb:4a:51:dc: 25:12:15:f9:7e:ed:c1:84:9e:19:38:ed:81:ae:77:d1:e4:3d: f0:ec:a0:87:0e:88:51:c1:ac:59:63:de:10:fa:34:9a:9a:0b: 6c:9f:e6:70:d5:a8:ea:07:1b:7c:23:70:c9:5d:f1:93:2d:93: 19:88:e7:54:d4:8a:77:7e:b5:8c:7d:04:02:de:9f:32:de:02: 69:f9:10:6e:5f:6b:95:89:89:1b:ee:15:d4:04:16:86:53:20: a0:25:53:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjUwNDE1MDEzMTIzWhcNMjUwNDIyMDEzMTIzWjAYMRYwFAYD VQQDEw02N2ZkYjZlYi1mZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAth8/OcX5ei/aWcnW7NJoFCUg+wHntHEgwx2Icds+g8Kube5VO4KGTSjvOY1f kH9BqLgEfliNGuPonpayiXDgqBDHM15zYdWxOLy+o0za+LUNFsFiSBLmGKwRn7mK AZsJ9iimJ+5d/9rdIp+5vyDA9ZGomRe/rOl9Jn4NoTkADvGU4VnRU1T62882xOHp xDkPndVIwH5z8/aIEjSSx/Xk20u/OCEbuSe0e6/bIYcrlml2wQjUDo/WY5dbsaNF HygLQx+5dtEO3+7pwNbmlDhbAGeHxy5ARs8IWDJOpRa6qZ3SUWVNb2clQoHRRI5Q 0tAb2HqvlTFArv0bquSqDCDPlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsNmGPq 9710cFbqm5PmJemQ6J9rMB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfeXyvIsMRa/E7lea/p9DGwO+MnGDuy8PVdbbF8B+PTree5BggKvL2 l6Ko5WMNXPH9YsgHhnjZX/dn8G1NfVhJlME+KMNFLuK3x7R+Bb3QF74wp4ocW8ep x2IfclJ8OsaIIhAXb1XvruzJeLWkVIPoAu5v/tYp1zVnH7UXqblbeTj/DFJaJIPb KfqGMiZdaJ0nrETrl6cMsLtf3BEKa/tKUdwlEhX5fu3BhJ4ZOO2BrnfR5D3w7KCH DohRwaxZY94Q+jSamgtsn+Zw1ajqBxt8I3DJXfGTLZMZiOdU1Ip3frWMfQQC3p8y 3gJp+RBuX2uViYkb7hXUBBaGUyCgJVPM -----END CERTIFICATE-----Generated at Tue Apr 15 17:32:05 2025 by rpki-client