$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft File: AwUYVzXgl--zaoYGU7JTq-n-EVw.mft (raw, json) Hash identifier: O9EB6vw9QaksCqsAvh5SiZshESeEhQ1AcgnmZk7kJ1s= Subject key identifier: 9C:DC:62:EC:6C:DC:B7:C8:63:73:90:EA:4E:77:08:68:85:55:5D:9F Authority key identifier: 03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C Certificate issuer: /CN=A91AEE40/serialNumber=0305185735E097EFB36A860653B253ABE9FE115C Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft Manifest number: 0256 Signing time: Thu 03 Apr 2025 01:48:16 +0000 Manifest this update: Thu 03 Apr 2025 01:48:15 +0000 Manifest next update: Thu 10 Apr 2025 01:48:15 +0000 Files and hashes: 1: AwUYVzXgl--zaoYGU7JTq-n-EVw.crl (hash: 5owuy+DcaLFDb0O4wDlrtHng7V74kt4dVq9aNkB+kRY=) 2: 59179A7E0F3211EDA9D57685C4F9AE02.roa (hash: rMev8024uF8TEESVT+FsfOfbRH+3KQX0Th9l2lAdoEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE40 Validity Not Before: Apr 3 01:48:15 2025 GMT Not After : Apr 10 01:48:15 2025 GMT Subject: CN=67ede8df-0cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9d:f7:ee:b9:44:07:0a:a3:a6:82:e7:09:15: 36:4a:8c:cc:11:90:b7:c0:c3:b9:5b:09:04:f0:e1: 3a:35:25:ce:e1:da:c4:fa:97:b1:df:38:8c:36:6d: 40:e8:05:1f:b5:bc:95:d1:5d:ee:a3:6e:f8:5c:71: 33:ef:55:58:f2:ec:ff:a8:29:41:ea:8f:fb:c3:f9: 06:82:07:1e:f7:72:6d:68:b3:31:fa:39:93:70:74: bf:d0:35:cc:25:1c:94:ca:d7:b2:31:ba:09:4e:37: b7:e2:cc:c1:e1:8c:e4:81:49:a0:74:de:dd:45:bf: c4:8d:df:04:20:b7:c4:bc:19:37:44:0d:d3:0b:0e: 64:1d:3d:62:4c:ea:57:08:29:3b:e2:e8:19:15:d5: 6d:99:f4:0e:2d:19:34:bb:f1:2f:fc:2e:7a:2d:ee: 1a:a4:c5:6f:e5:ed:fa:e4:57:15:b3:ad:fb:e1:78: c8:59:ba:61:8e:c5:e5:f0:d8:11:2f:02:6a:57:e4: e9:c9:50:1e:e1:2a:ef:ce:b2:94:4a:e9:7a:86:f8: 3b:2d:54:1a:0f:1f:58:3e:77:66:c1:b6:b1:0c:01: f0:d3:3b:c8:55:02:18:42:ec:4a:02:54:4a:8d:73: 9b:13:a4:87:f2:a9:fa:c1:e1:94:ab:68:11:98:27: 26:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:DC:62:EC:6C:DC:B7:C8:63:73:90:EA:4E:77:08:68:85:55:5D:9F X509v3 Authority Key Identifier: keyid:03:05:18:57:35:E0:97:EF:B3:6A:86:06:53:B2:53:AB:E9:FE:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwUYVzXgl--zaoYGU7JTq-n-EVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE40/0EEC29F80F3011EDB3568A84C4F9AE02/AwUYVzXgl--zaoYGU7JTq-n-EVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8e:23:b9:48:4a:b4:4f:8c:e0:3f:63:8b:90:57:24:36:d6: fb:65:d8:6c:04:8d:7c:12:c7:b0:df:10:65:4e:34:ec:d8:13: 98:f3:5a:27:aa:93:fb:0a:94:02:94:1c:01:8d:f8:c8:f4:20: 19:78:76:af:4b:e3:2c:a5:30:c9:d2:6c:1c:58:a3:0a:6e:41: ef:39:1d:0c:ba:8c:a5:5d:b4:44:d0:41:9a:55:92:1c:f7:f9: f0:f3:1b:f9:8e:86:85:ea:cc:94:f9:41:56:d4:26:03:9b:45: 35:78:8c:41:0e:ee:ae:94:07:8f:88:99:e9:4f:8a:37:b2:0b: 75:31:68:5b:0a:c6:08:18:ae:50:56:f0:f8:1f:b1:99:cf:c2: 12:7e:08:24:c1:9f:38:3f:3f:9b:c3:06:ba:42:46:d5:cc:db: fc:ca:dc:e0:7a:2a:75:87:21:4e:9f:37:29:c3:15:1d:42:68: 93:a8:c2:2a:62:39:2c:4b:a9:32:4a:d0:f5:8d:b3:4e:1d:57: f6:52:09:30:6a:f6:22:f9:9f:ca:c3:93:1c:ef:15:6d:28:97: 2d:50:78:05:53:bf:7a:b5:bd:57:68:df:e1:12:3b:05:9a:0d: 61:a9:b0:67:00:1f:e6:3b:9a:6e:f1:af:54:60:10:cf:e2:ac: bd:a3:91:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNDAxMTAvBgNVBAUTKDAzMDUxODU3MzVFMDk3RUZCMzZBODYwNjUzQjI1M0FC RTlGRTExNUMwHhcNMjUwNDAzMDE0ODE1WhcNMjUwNDEwMDE0ODE1WjAYMRYwFAYD VQQDEw02N2VkZThkZi0wY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4p337rlEBwqjpoLnCRU2SozMEZC3wMO5WwkE8OE6NSXO4drE+pex3ziMNm1A 6AUftbyV0V3uo274XHEz71VY8uz/qClB6o/7w/kGggce93JtaLMx+jmTcHS/0DXM JRyUyteyMboJTje34szB4YzkgUmgdN7dRb/Ejd8EILfEvBk3RA3TCw5kHT1iTOpX CCk74ugZFdVtmfQOLRk0u/Ev/C56Le4apMVv5e365FcVs6374XjIWbphjsXl8NgR LwJqV+TpyVAe4SrvzrKUSul6hvg7LVQaDx9YPndmwbaxDAHw0zvIVQIYQuxKAlRK jXObE6SH8qn6weGUq2gRmCcmSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzcYuxs 3LfIY3OQ6k53CGiFVV2fMB8GA1UdIwQYMBaAFAMFGFc14Jfvs2qGBlOyU6vp/hFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0MC8wRUVDMjlGODBG MzAxMUVEQjM1NjhBODRDNEY5QUUwMi9Bd1VZVnpYZ2wtLXphb1lHVTdKVHEtbi1F VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3VVlWelhnbC0temFvWUdVN0pUcS1uLUVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0MC8wRUVDMjlGODBGMzAxMUVEQjM1NjhBODRDNEY5QUUwMi9Bd1VZVnpYZ2wt LXphb1lHVTdKVHEtbi1FVncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSjiO5SEq0T4zgP2OLkFckNtb7ZdhsBI18Esew3xBlTjTs2BOY81on qpP7CpQClBwBjfjI9CAZeHavS+MspTDJ0mwcWKMKbkHvOR0MuoylXbRE0EGaVZIc 9/nw8xv5joaF6syU+UFW1CYDm0U1eIxBDu6ulAePiJnpT4o3sgt1MWhbCsYIGK5Q VvD4H7GZz8ISfggkwZ84Pz+bwwa6QkbVzNv8ytzgeip1hyFOnzcpwxUdQmiTqMIq YjksS6kyStD1jbNOHVf2UgkwavYi+Z/Kw5Mc7xVtKJctUHgFU796tb1XaN/hEjsF mg1hqbBnAB/mO5pu8a9UYBDP4qy9o5E2 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:51 2025 by rpki-client