$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: whD20wOESsrg4CRwGYex3ApwHGug5fs8nBiwjL8Soxk= Subject key identifier: B1:78:B6:8B:9D:43:F3:83:13:15:D5:44:15:4A:27:D9:6D:8F:46:07 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 5B Signing time: Sat 05 Apr 2025 06:26:09 +0000 Manifest this update: Sat 05 Apr 2025 06:26:09 +0000 Manifest next update: Sat 12 Apr 2025 06:26:09 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: rki+E3qxW3KuPd9TrvAGwB0ZNpaT7CWdq+wHqhVqT5U=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF Validity Not Before: Apr 5 06:26:09 2025 GMT Not After : Apr 12 06:26:09 2025 GMT Subject: CN=67f0cd01-7250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c6:c8:c9:5a:ce:3c:f6:ef:b0:05:dd:b9:d3: 88:79:99:0e:8d:64:f1:e4:03:d6:9b:7a:e4:e7:e7: e8:98:e6:25:d4:62:c3:0e:db:27:e9:27:8a:d3:6d: 64:8c:75:0f:6a:db:86:e2:15:7a:f4:3d:2e:9d:68: ea:c9:1c:80:7c:f2:7c:a7:48:e5:c9:94:68:a2:e0: 1b:ea:8b:d2:30:b3:0d:1c:6b:a8:e0:38:9d:ff:b7: 1f:1a:d2:81:43:f0:55:c9:0c:81:fc:d8:a8:ac:09: 73:27:48:29:5a:8d:80:79:dd:49:49:0c:a8:6c:4a: 0a:0b:ea:15:ce:fd:96:c9:80:06:a1:39:0b:7d:42: c3:7f:c9:56:7a:46:e3:ac:3c:6d:f4:bc:fb:88:d8: ab:1c:86:02:00:d6:44:e4:37:1a:d5:e7:b7:55:b3: 79:e9:bb:32:17:14:64:7d:cc:3b:2f:98:d1:fa:72: 60:c2:43:63:aa:13:f2:3b:a5:92:dd:9e:3e:a6:19: 9f:64:0f:29:81:54:44:9f:e0:23:e6:85:77:30:c0: 1b:bd:cf:3f:b2:e8:47:95:b9:76:ce:1e:a8:87:dc: b5:e9:40:9d:f7:e2:48:4d:4d:2d:53:21:65:78:8b: 0d:41:e3:50:fb:9a:8b:6a:f7:03:ce:1e:08:d9:c8: d2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:78:B6:8B:9D:43:F3:83:13:15:D5:44:15:4A:27:D9:6D:8F:46:07 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:e9:67:b3:6e:7d:8b:40:d6:34:d7:e5:5e:f1:1c:19:05:b2: 94:7f:d7:b6:46:53:db:65:3d:9d:37:78:b0:ca:6f:dc:21:c4: 4e:44:08:f9:34:cc:21:3a:60:c5:d6:03:5f:72:d8:fa:41:2b: 59:bf:e5:fc:54:ea:bf:7d:49:db:9a:70:ee:52:d3:9d:15:9b: 70:13:8b:ea:f2:96:82:d4:80:be:15:a4:d0:a8:60:17:da:4d: 7b:a1:ec:8c:aa:f7:46:6c:ed:83:07:e1:a1:37:ba:5d:2b:d2: f9:ee:50:d0:44:47:ac:47:12:53:e9:49:c1:b6:f6:a1:20:36: 99:b6:37:b3:fc:91:ab:94:fe:aa:15:25:53:43:b3:53:2a:06: d9:dc:50:cb:49:c1:3d:f4:f1:9d:cf:1e:ef:8d:a3:e4:1e:96: c6:43:da:db:1c:a3:28:df:e9:06:4b:77:39:b4:e4:fd:e4:ec: e4:18:e0:4f:99:49:c1:7a:b7:91:bb:59:4d:ae:dc:fe:11:83: 27:43:c4:aa:12:11:07:25:a3:58:be:9c:6a:c7:63:d8:2e:cc: 43:54:f8:0c:e0:a3:e1:2c:3b:38:a3:4c:c0:5d:2a:f8:b7:d6: 32:3a:14:35:94:75:14:da:74:12:d5:0b:76:3e:7d:14:be:b2: ae:d7:77:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QURBRjExMC8GA1UEBRMoNjhDMkI1ODhEMTY4NUE1ODc0MkQ4QTJFMTg4ODY1REIz MTEwM0NGNzAeFw0yNTA0MDUwNjI2MDlaFw0yNTA0MTIwNjI2MDlaMBgxFjAUBgNV BAMTDTY3ZjBjZDAxLTcyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQxsjJWs489u+wBd2504h5mQ6NZPHkA9abeuTn5+iY5iXUYsMO2yfpJ4rTbWSM dQ9q24biFXr0PS6daOrJHIB88nynSOXJlGii4Bvqi9Iwsw0ca6jgOJ3/tx8a0oFD 8FXJDIH82KisCXMnSClajYB53UlJDKhsSgoL6hXO/ZbJgAahOQt9QsN/yVZ6RuOs PG30vPuI2KschgIA1kTkNxrV57dVs3npuzIXFGR9zDsvmNH6cmDCQ2OqE/I7pZLd nj6mGZ9kDymBVESf4CPmhXcwwBu9zz+y6EeVuXbOHqiH3LXpQJ334khNTS1TIWV4 iw1B41D7motq9wPOHgjZyNL1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsXi2i51D 84MTFdVEFUon2W2PRgcwHwYDVR0jBBgwFoAUaMK1iNFoWlh0LYouGIhl2zEQPPcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBREFGLzg3MTU5Qzk2OENG MzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU1LMWlORm9XbGgwTFlvdUdJaGwyekVRUFBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB REFGLzg3MTU5Qzk2OENGMzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xo MExZb3VHSWhsMnpFUVBQYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAODpZ7NufYtA1jTX5V7xHBkFspR/17ZGU9tlPZ03eLDKb9whxE5ECPk0 zCE6YMXWA19y2PpBK1m/5fxU6r99SduacO5S050Vm3ATi+ryloLUgL4VpNCoYBfa TXuh7Iyq90Zs7YMH4aE3ul0r0vnuUNBER6xHElPpScG29qEgNpm2N7P8kauU/qoV JVNDs1MqBtncUMtJwT308Z3PHu+No+QelsZD2tscoyjf6QZLdzm05P3k7OQY4E+Z ScF6t5G7WU2u3P4RgydDxKoSEQclo1i+nGrHY9guzENU+Azgo+EsOzijTMBdKvi3 1jI6FDWUdRTadBLVC3Y+fRS+sq7Xd6M= -----END CERTIFICATE-----Generated at Mon Apr 7 00:09:48 2025 by rpki-client