$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: +UM2y+Kfmwm3tSBZZNMdyAc/AkUUDp72pyVx+1s5aNs= Subject key identifier: 2D:42:12:B5:6E:B3:62:23:48:39:20:0D:B2:B1:AF:69:4A:1B:F6:28 Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: F7 Signing time: Sat 29 Mar 2025 05:05:20 +0000 Manifest this update: Sat 29 Mar 2025 05:05:19 +0000 Manifest next update: Sat 05 Apr 2025 05:05:19 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: Huo6S4lfSSIkEyJEJqKRSaLfFLR3ASWj2g/NMlBJMi8=) 2: 860FE244E7F211EEA82C4340C4F9AE02.roa (hash: MOt4/rtczZ2XuWNA4OgwbPaAH6x2sV9WPLPyaiDEfR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A Validity Not Before: Mar 29 05:05:19 2025 GMT Not After : Apr 5 05:05:19 2025 GMT Subject: CN=67e77f90-049b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:df:05:df:8a:6a:c4:f0:47:db:f7:cd:cf:34: fa:47:fa:cc:c1:5b:28:5c:88:f9:ec:69:70:d0:a1: 2c:98:20:7c:79:66:c6:b6:e8:c2:af:73:fd:67:aa: 3d:19:cc:ff:c8:3e:50:e4:ce:e7:b6:e7:e5:84:94: ce:90:d8:34:09:35:cc:bf:f1:e5:7f:af:3c:5c:49: fa:3e:6f:d4:69:ab:06:d0:f4:ed:ea:7a:b9:aa:e4: e1:51:30:58:9e:a0:6a:dd:50:18:9a:13:59:af:cd: 88:8e:50:a3:e5:48:92:c5:a6:62:72:ed:0a:ca:43: f0:f8:62:35:f4:6e:b5:23:b3:c8:18:ab:3b:84:ee: 77:d2:fc:05:f4:fb:b3:32:41:cd:b5:8b:32:70:29: 36:59:76:e1:b5:7c:5c:ab:f9:a0:03:cb:83:e7:8a: c0:b6:71:6d:75:87:c0:cb:e2:4c:e4:41:d2:92:9e: 5e:eb:4f:7b:d9:d4:d6:2f:ad:b1:e7:29:81:5e:9f: 6f:b9:73:7d:85:6a:2a:05:6f:e1:d0:29:8c:7c:bb: bc:b9:e0:11:53:be:9c:79:32:06:67:d9:98:da:16: 94:d5:1f:1f:71:69:15:4b:63:55:c4:59:a7:19:39: 85:ae:1a:23:45:d9:74:93:3b:0c:be:4c:8e:57:45: 4c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:42:12:B5:6E:B3:62:23:48:39:20:0D:B2:B1:AF:69:4A:1B:F6:28 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ec:56:d5:fa:74:d0:08:9b:98:fd:56:74:f9:12:94:3b:70: fe:7d:58:7d:6c:42:9a:1a:65:5a:6a:e0:c7:b6:1c:d8:16:c1: 62:0f:53:22:15:c3:86:8f:5f:00:ae:dd:b4:68:29:7f:c8:40: 85:e2:21:c8:9d:fb:da:13:48:8f:f7:8b:25:c9:38:85:ca:19: 29:86:b3:fa:1f:7f:c4:88:23:42:db:8a:7e:7d:e3:c2:78:0b: 9d:57:c7:1a:a1:59:6f:8c:76:1a:54:90:a3:46:44:cc:bd:98: 41:64:a5:97:3a:a6:6c:a3:d2:4f:37:60:a2:af:3b:8f:83:72: f4:bb:b4:8f:28:0d:51:3f:5a:10:a0:a2:f1:17:32:89:33:10: 52:81:0d:55:30:ef:99:92:f8:55:1f:ae:3d:2d:89:ba:a3:d5: 0f:0c:2a:0c:df:14:92:85:e5:a0:69:41:7b:ac:55:5b:23:92: 9b:39:9d:0e:3b:9b:2b:c1:3c:aa:df:d6:4c:69:ed:31:1e:69: 51:08:ac:3d:d2:b5:af:91:89:9a:1f:c5:da:49:b5:ab:f0:33: a2:d4:55:0c:68:b3:12:fa:7a:c0:ad:b3:79:41:14:a2:e1:ac: 8c:21:2a:ee:0e:0b:64:8a:c8:19:9f:fa:f7:c6:64:16:f3:63: 25:41:9f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjUwMzI5MDUwNTE5WhcNMjUwNDA1MDUwNTE5WjAYMRYwFAYD VQQDEw02N2U3N2Y5MC0wNDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt8F34pqxPBH2/fNzzT6R/rMwVsoXIj57Glw0KEsmCB8eWbGtujCr3P9Z6o9 Gcz/yD5Q5M7ntuflhJTOkNg0CTXMv/Hlf688XEn6Pm/UaasG0PTt6nq5quThUTBY nqBq3VAYmhNZr82IjlCj5UiSxaZicu0KykPw+GI19G61I7PIGKs7hO530vwF9Puz MkHNtYsycCk2WXbhtXxcq/mgA8uD54rAtnFtdYfAy+JM5EHSkp5e60972dTWL62x 5ymBXp9vuXN9hWoqBW/h0CmMfLu8ueARU76ceTIGZ9mY2haU1R8fcWkVS2NVxFmn GTmFrhojRdl0kzsMvkyOV0VMNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1CErVu s2IjSDkgDbKxr2lKG/YoMB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD7FbV+nTQCJuY/VZ0+RKUO3D+fVh9bEKaGmVaauDHthzYFsFiD1Mi FcOGj18Art20aCl/yECF4iHInfvaE0iP94slyTiFyhkphrP6H3/EiCNC24p+fePC eAudV8caoVlvjHYaVJCjRkTMvZhBZKWXOqZso9JPN2CirzuPg3L0u7SPKA1RP1oQ oKLxFzKJMxBSgQ1VMO+ZkvhVH649LYm6o9UPDCoM3xSSheWgaUF7rFVbI5KbOZ0O O5srwTyq39ZMae0xHmlRCKw90rWvkYmaH8XaSbWr8DOi1FUMaLMS+nrArbN5QRSi 4ayMISruDgtkisgZn/r3xmQW82MlQZ/8 -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:48 2025 by rpki-client