$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: M65TsQkwA76hAgqTzC+Lf3pXgQrMATzhDTGPhvxl+SQ= Subject key identifier: 51:7A:58:F6:DF:C0:D6:CC:ED:CC:9E:A9:93:89:85:D4:31:D7:CE:DF Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 0365 Signing time: Sat 29 Mar 2025 01:13:40 +0000 Manifest this update: Sat 29 Mar 2025 01:13:40 +0000 Manifest next update: Sat 05 Apr 2025 01:13:40 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: 3XAYMh8ECOgb+KFa7a21i5tOrlHTEGQYRVzut0yUnVk=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1 Validity Not Before: Mar 29 01:13:40 2025 GMT Not After : Apr 5 01:13:40 2025 GMT Subject: CN=67e74944-0232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4c:5b:62:4e:50:d0:c5:3d:91:aa:39:f6:c5: ca:48:8b:35:5d:f1:f2:1e:f3:98:ae:85:91:6d:a1: 5a:98:a8:98:88:03:73:81:2b:ef:32:69:10:f0:b8: 7e:87:1a:c7:f6:ef:af:48:5c:62:03:38:e8:21:1f: 4f:81:a9:20:13:df:8b:0a:27:47:68:1b:15:9c:92: e2:6a:a1:46:90:f3:af:fd:ad:03:69:15:d4:fc:05: 38:87:81:af:e6:a5:80:4d:db:b5:98:e6:cd:62:d5: 54:87:51:22:7f:4d:ff:11:4a:b0:e5:61:02:9a:8c: 7b:db:fa:16:0b:10:67:e6:5e:41:14:fd:0b:4d:a1: fd:1b:c8:0b:fa:e7:90:ff:08:50:fa:19:1c:1d:af: 69:1d:ca:94:24:84:59:35:f8:57:7e:11:86:dd:24: b2:31:e4:ff:af:c0:a4:c7:f9:01:f9:54:65:1e:45: ca:d0:54:6a:e9:40:31:90:b1:a0:99:3d:c4:7b:8e: 71:14:63:99:9b:27:3e:c5:7d:1e:76:ee:7e:a2:fd: 9b:34:4d:90:0b:e4:d9:ba:ed:2a:91:0e:96:af:70: 26:cb:4a:49:5e:05:ff:58:c0:21:65:e4:3d:91:9f: f1:a3:42:3d:ef:54:f3:14:df:31:cb:6e:af:db:2d: d3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7A:58:F6:DF:C0:D6:CC:ED:CC:9E:A9:93:89:85:D4:31:D7:CE:DF X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:02:21:e1:d0:8d:3d:ec:65:99:8d:23:e4:6a:85:1e:40:a7: 58:26:e3:b0:af:4d:c1:d3:0e:3a:6b:0a:43:d9:89:9c:95:45: 7a:7b:51:ce:23:c4:91:18:75:5d:10:77:ab:cd:3a:41:6b:12: af:d4:62:78:06:67:d6:cc:b6:75:6d:95:13:1b:25:42:d0:5f: e5:8e:a3:7d:5c:68:6d:64:99:39:d3:8a:43:aa:f8:f4:6f:6e: 14:cb:cb:e9:3a:09:2e:c5:8c:d0:8c:49:45:7b:ef:a5:5c:08: 60:db:49:c9:69:cf:0b:b9:f6:5d:08:a3:cb:ae:36:a9:3f:83: 3d:67:e1:94:1f:95:92:23:35:e6:1e:7d:96:61:ba:25:72:02: 79:ad:fc:a2:79:88:38:1d:79:95:39:c7:09:d2:50:c3:d7:1f: a2:e3:7f:a8:17:fe:c6:bc:4d:3c:ea:6f:95:fc:ab:63:6a:ae: 49:36:af:29:e8:77:59:df:9f:98:3c:bf:09:14:bd:79:b7:ed: b8:53:c1:c7:e2:67:86:35:b3:33:10:05:ba:69:64:cc:89:a6: d2:fa:99:2e:b7:dd:2f:62:44:4e:7c:ae:bf:17:c8:22:9c:8f: 9b:dc:36:d0:3a:48:84:a4:d2:d7:27:44:30:b9:f8:69:86:23: 66:15:32:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwMzI5MDExMzQwWhcNMjUwNDA1MDExMzQwWjAYMRYwFAYD VQQDEw02N2U3NDk0NC0wMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUxbYk5Q0MU9kao59sXKSIs1XfHyHvOYroWRbaFamKiYiANzgSvvMmkQ8Lh+ hxrH9u+vSFxiAzjoIR9PgakgE9+LCidHaBsVnJLiaqFGkPOv/a0DaRXU/AU4h4Gv 5qWATdu1mObNYtVUh1Eif03/EUqw5WECmox72/oWCxBn5l5BFP0LTaH9G8gL+ueQ /whQ+hkcHa9pHcqUJIRZNfhXfhGG3SSyMeT/r8Ckx/kB+VRlHkXK0FRq6UAxkLGg mT3Ee45xFGOZmyc+xX0edu5+ov2bNE2QC+TZuu0qkQ6Wr3Amy0pJXgX/WMAhZeQ9 kZ/xo0I971TzFN8xy26v2y3TGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFF6WPbf wNbM7cyeqZOJhdQx187fMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaAiHh0I097GWZjSPkaoUeQKdYJuOwr03B0w46awpD2YmclUV6e1HO I8SRGHVdEHerzTpBaxKv1GJ4BmfWzLZ1bZUTGyVC0F/ljqN9XGhtZJk504pDqvj0 b24Uy8vpOgkuxYzQjElFe++lXAhg20nJac8LufZdCKPLrjapP4M9Z+GUH5WSIzXm Hn2WYbolcgJ5rfyieYg4HXmVOccJ0lDD1x+i43+oF/7GvE086m+V/Ktjaq5JNq8p 6HdZ35+YPL8JFL15t+24U8HH4meGNbMzEAW6aWTMiabS+pkut90vYkROfK6/F8gi nI+b3DbQOkiEpNLXJ0QwufhphiNmFTLR -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:03 2025 by rpki-client