$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: yPUmmrCzDOXSCXlRp2zHK4O9/LM+sjX+ckwpt0zCaUw= Subject key identifier: 0B:4B:C8:86:AF:AD:C1:25:70:50:94:5C:73:3D:47:12:0A:4A:7A:5F Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 0312 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 030E Signing time: Thu 03 Apr 2025 01:13:25 +0000 Manifest this update: Thu 03 Apr 2025 01:13:25 +0000 Manifest next update: Thu 10 Apr 2025 01:13:25 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: LkukZ4Bm+gsVQUdLO0X85fp2Srus54V/3Oby3+QCt4U=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 786 (0x312) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B Validity Not Before: Apr 3 01:13:25 2025 GMT Not After : Apr 10 01:13:25 2025 GMT Subject: CN=67ede0b5-ab48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7f:3e:25:6c:38:07:3e:f7:7f:35:af:46:53: 9b:2d:c4:92:f6:67:de:88:e4:da:a2:75:b2:26:88: c5:e0:21:4a:54:ee:76:39:08:e4:90:36:71:d5:09: 8c:86:9c:16:f6:61:e7:48:1b:e2:79:73:04:75:4f: fb:3b:5d:66:dd:be:6f:62:c6:6b:7b:dd:a1:d6:88: 76:95:8c:92:a1:19:e0:13:69:48:b1:e3:82:f9:4e: 54:75:63:6f:e0:03:e0:46:30:a4:5a:69:67:02:ce: 90:10:86:f3:76:08:53:f8:3b:ec:2b:49:47:b3:ba: d1:b4:7e:08:49:b9:71:ab:a4:6d:f1:b8:ac:a8:03: 05:6f:8d:e4:65:4d:d6:89:1e:52:63:1b:89:30:74: 50:06:53:ae:cc:fd:90:89:a4:8c:16:1a:de:40:27: b1:12:86:05:fc:1d:1b:73:c0:67:b3:10:5b:c9:bb: cf:5d:91:4f:03:fb:ee:ad:b4:a9:2c:c0:2f:f6:db: 9e:8b:33:ea:71:00:91:b0:38:b2:df:f5:f1:74:cb: 72:e0:c2:0e:c8:25:f4:c9:77:28:23:56:98:92:9d: 80:bd:db:fc:d3:3a:46:47:cc:6e:4b:1d:d8:3d:e2: a0:e5:1c:c8:4d:3a:f7:9e:6b:eb:f8:ec:27:15:b1: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4B:C8:86:AF:AD:C1:25:70:50:94:5C:73:3D:47:12:0A:4A:7A:5F X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a4:89:b2:fa:65:cb:49:a3:77:a7:4a:18:cc:d3:0d:aa:90: f0:ac:fe:d4:4c:3a:cd:b0:09:af:89:bb:aa:2d:9d:c4:95:fb: ee:c9:63:f4:97:f5:30:74:d4:71:0f:81:bd:38:25:7e:b9:36: 3d:50:cc:45:a6:c1:b0:a3:ba:ee:d2:88:b8:76:5b:55:29:8f: a8:e7:6a:97:45:19:f6:e6:d0:cb:d7:4f:60:f5:7c:f7:56:30: 1d:3d:db:32:9e:9d:1a:07:8c:85:3c:2c:bd:83:3f:45:a8:fb: d9:e6:a1:a6:e6:12:79:2c:44:40:26:2c:69:31:d0:bf:9a:79: a7:43:23:ee:13:22:db:e2:c9:52:bb:48:31:4f:2c:e8:f9:f1: 6c:33:12:0d:41:98:24:f3:98:d7:16:44:eb:d4:30:10:58:f0: f0:61:54:df:4e:22:40:2e:41:78:e2:07:fa:31:b6:a9:d4:69: e2:98:3d:a8:4a:e5:c6:d2:61:42:46:78:1f:72:2c:1b:91:f1: 2c:2a:0c:ae:f0:19:c1:81:c9:b1:eb:46:42:ff:ab:44:31:ce: 9f:6e:bd:a0:b7:fe:f0:84:f6:4a:3c:d4:32:a5:bd:a3:db:57: 11:4a:47:ad:3b:1f:28:f3:5b:17:10:e7:c2:11:f6:e8:0b:8d: ad:54:e6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUwNDAzMDExMzI1WhcNMjUwNDEwMDExMzI1WjAYMRYwFAYD VQQDEw02N2VkZTBiNS1hYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu38+JWw4Bz73fzWvRlObLcSS9mfeiOTaonWyJojF4CFKVO52OQjkkDZx1QmM hpwW9mHnSBvieXMEdU/7O11m3b5vYsZre92h1oh2lYySoRngE2lIseOC+U5UdWNv 4APgRjCkWmlnAs6QEIbzdghT+DvsK0lHs7rRtH4ISblxq6Rt8bisqAMFb43kZU3W iR5SYxuJMHRQBlOuzP2QiaSMFhreQCexEoYF/B0bc8BnsxBbybvPXZFPA/vurbSp LMAv9tueizPqcQCRsDiy3/XxdMty4MIOyCX0yXcoI1aYkp2Avdv80zpGR8xuSx3Y PeKg5RzITTr3nmvr+OwnFbEMdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtLyIav rcElcFCUXHM9RxIKSnpfMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBppImy+mXLSaN3p0oYzNMNqpDwrP7UTDrNsAmvibuqLZ3ElfvuyWP0 l/UwdNRxD4G9OCV+uTY9UMxFpsGwo7ru0oi4dltVKY+o52qXRRn25tDL109g9Xz3 VjAdPdsynp0aB4yFPCy9gz9FqPvZ5qGm5hJ5LERAJixpMdC/mnmnQyPuEyLb4slS u0gxTyzo+fFsMxINQZgk85jXFkTr1DAQWPDwYVTfTiJALkF44gf6Mbap1GnimD2o SuXG0mFCRngfciwbkfEsKgyu8BnBgcmx60ZC/6tEMc6fbr2gt/7whPZKPNQypb2j 21cRSketOx8o81sXEOfCEfboC42tVOYo -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:39 2025 by rpki-client