$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: //BzhjejVVozcl5tKUOd895fykajcnha2a+44pETT1w= Subject key identifier: 66:50:C7:E8:CD:3D:64:29:11:59:74:D0:07:02:09:81:1E:0A:C5:B1 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 0374 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 0370 Signing time: Sat 29 Mar 2025 01:10:08 +0000 Manifest this update: Sat 29 Mar 2025 01:10:07 +0000 Manifest next update: Sat 05 Apr 2025 01:10:07 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: dhhBnW4Sbu/+HCWcPBmMW/lK51vfIJfu01NYNfCY/PE=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: KeGUlxiblyObJWylXKCmQlAzDIkOWbFTSQRBaia1TDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45 Validity Not Before: Mar 29 01:10:07 2025 GMT Not After : Apr 5 01:10:07 2025 GMT Subject: CN=67e7486f-110a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:26:86:2f:9f:6c:6d:4b:15:35:43:ff:41:8a: e9:a5:30:58:b7:21:ad:f8:b1:d1:ad:9b:84:c7:36: 4f:30:99:86:9a:c3:d5:da:2f:6f:72:15:9d:2e:29: 20:48:a7:29:79:d8:58:06:fa:35:2b:a5:58:a8:51: 70:4c:b8:4e:17:48:d2:28:6d:0d:fa:06:3f:3e:17: ef:17:dd:5e:42:90:97:24:ab:00:03:e6:0a:b1:6b: 10:6d:57:86:8c:41:2a:81:a3:db:09:dc:46:94:df: bd:57:cc:fb:f5:89:db:bb:1c:e1:78:b2:63:36:42: a8:46:8a:a3:16:b9:70:d4:9a:b7:6d:f0:78:a0:ea: 46:57:36:07:12:c5:16:23:84:07:57:88:86:0b:e7: 72:c1:d5:27:4e:44:0c:6f:5d:13:d6:23:2e:6d:5a: 8f:61:0d:2a:bb:cd:87:23:5d:e1:d3:32:17:37:d8: 9d:18:5d:ea:ca:d8:9c:3f:50:b0:95:1d:0c:79:ce: f8:85:40:ce:b5:fb:07:dc:a4:bc:c3:7c:45:99:c8: b5:be:f0:89:32:26:90:0a:59:dd:c6:47:d6:32:76: a8:b0:d4:38:f7:43:1b:65:d3:e2:16:46:61:40:ef: 97:b2:49:e4:e4:e1:3e:67:04:b5:e6:44:a6:0a:23: e4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:50:C7:E8:CD:3D:64:29:11:59:74:D0:07:02:09:81:1E:0A:C5:B1 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:98:15:51:72:0a:2e:55:12:33:4a:9c:7a:4a:66:61:7a:fa: 31:25:01:11:98:05:26:5d:99:f5:aa:e9:4b:aa:ac:83:1d:a9: 8f:5c:7b:c1:31:d3:99:70:5c:00:6c:87:bf:01:8e:89:40:48: 61:47:17:f8:d1:73:f2:f1:cb:29:f1:50:e9:11:63:20:b8:d2: 4d:d8:98:fb:a3:6c:0a:90:36:fc:a6:77:1d:85:5f:d3:24:25: 3b:35:86:c5:5f:32:99:03:f5:33:0b:48:30:a7:52:e0:cb:a6: 08:95:69:69:b2:8d:ed:ea:2c:f8:ce:56:bf:2d:86:c6:30:63: 13:c4:e7:cf:7c:28:29:60:94:d2:bc:e3:4d:cb:c7:e5:41:cb: 7b:ba:08:c1:05:3f:e5:e7:08:d8:97:48:03:38:45:c7:38:65: 69:55:8d:83:c3:96:2c:33:0c:ed:b9:e6:e7:63:d4:79:df:41: f6:a8:b4:2c:a6:e9:43:71:22:fe:ac:d7:da:29:e8:0d:76:c1: 3d:5f:9e:3b:9f:fc:87:69:1b:38:fa:9b:b2:00:7c:bf:9b:2c: 50:46:69:75:6d:68:ea:96:4f:73:62:14:48:da:47:c9:d1:2f: 22:fd:a3:9c:b7:11:6e:e7:be:2c:66:51:11:10:4c:8b:52:5c: 4f:df:5a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwMzI5MDExMDA3WhcNMjUwNDA1MDExMDA3WjAYMRYwFAYD VQQDEw02N2U3NDg2Zi0xMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCaGL59sbUsVNUP/QYrppTBYtyGt+LHRrZuExzZPMJmGmsPV2i9vchWdLikg SKcpedhYBvo1K6VYqFFwTLhOF0jSKG0N+gY/PhfvF91eQpCXJKsAA+YKsWsQbVeG jEEqgaPbCdxGlN+9V8z79YnbuxzheLJjNkKoRoqjFrlw1Jq3bfB4oOpGVzYHEsUW I4QHV4iGC+dywdUnTkQMb10T1iMubVqPYQ0qu82HI13h0zIXN9idGF3qyticP1Cw lR0Mec74hUDOtfsH3KS8w3xFmci1vvCJMiaQClndxkfWMnaosNQ490MbZdPiFkZh QO+Xsknk5OE+ZwS15kSmCiPk6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZQx+jN PWQpEVl00AcCCYEeCsWxMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCemBVRcgouVRIzSpx6SmZhevoxJQERmAUmXZn1qulLqqyDHamPXHvB MdOZcFwAbIe/AY6JQEhhRxf40XPy8csp8VDpEWMguNJN2Jj7o2wKkDb8pncdhV/T JCU7NYbFXzKZA/UzC0gwp1Lgy6YIlWlpso3t6iz4zla/LYbGMGMTxOfPfCgpYJTS vONNy8flQct7ugjBBT/l5wjYl0gDOEXHOGVpVY2Dw5YsMwztuebnY9R530H2qLQs pulDcSL+rNfaKegNdsE9X547n/yHaRs4+puyAHy/myxQRml1bWjqlk9zYhRI2kfJ 0S8i/aOctxFu574sZlEREEyLUlxP31o4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:14:56 2025 by rpki-client