$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: x74E3ASeL/sdyIFr09LW7lRWbvJRrG739lV5Fy2qBhQ= Subject key identifier: 9B:AB:95:81:31:EF:08:46:A2:07:4E:8D:EB:18:77:E5:CE:08:42:7A Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 01DD Signing time: Wed 09 Apr 2025 01:51:51 +0000 Manifest this update: Wed 09 Apr 2025 01:51:51 +0000 Manifest next update: Wed 16 Apr 2025 01:51:51 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: QQHXyoFYnYxAt4rRefO2FIVzKYj8UEDsB4q4aqSyb1I=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: lUMcuws+kkSP+r54F6XS/v0f47726g1ZKxyTfmh7RHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E Validity Not Before: Apr 9 01:51:51 2025 GMT Not After : Apr 16 01:51:51 2025 GMT Subject: CN=67f5d2b7-eb41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5b:e0:1b:da:c0:9a:ef:54:1f:ad:23:de:9e: 59:19:41:f7:b9:c0:f8:1d:ba:a8:f6:b3:32:51:fd: c7:a7:d1:74:54:e0:73:00:ce:3d:a5:40:cc:d9:b5: ca:7b:7e:75:eb:9d:1d:46:d3:de:d1:ea:2c:e7:5a: f7:d1:fd:b3:62:1d:c9:98:6e:44:b4:97:77:f3:46: fd:fb:a2:8b:d8:f1:db:21:21:f2:54:63:f3:47:c3: da:9f:c6:33:28:7b:56:7f:4e:bb:58:42:71:0e:59: 8b:56:03:3b:f1:01:cf:9f:f1:2c:ab:e8:85:0b:12: 10:c0:f7:0a:a6:46:f3:6e:88:84:b6:1b:45:cc:91: 4b:af:16:3b:c6:77:09:e7:1e:27:4a:c5:89:12:92: f3:73:ed:33:db:99:14:11:c0:3e:18:d1:0e:3a:26: fd:45:7b:34:ef:13:7b:f8:b5:99:cc:29:ce:71:4b: 11:c4:b0:f9:55:4b:40:7b:97:36:50:35:b5:45:36: a9:4e:54:91:c5:d9:c5:5b:7c:20:09:31:54:37:4d: c7:2c:a3:a7:80:5a:d7:12:d0:aa:0d:1e:98:28:51: 35:41:09:d6:55:0f:51:a9:82:75:69:e2:9d:96:b4: c2:8a:61:87:c4:a0:83:90:9b:99:bb:08:51:31:b6: fb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:AB:95:81:31:EF:08:46:A2:07:4E:8D:EB:18:77:E5:CE:08:42:7A X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:26:80:f3:41:1a:b0:12:f1:2f:c0:7f:fd:f6:26:f5:7e:ca: 6f:3c:8b:f5:6d:58:9c:da:c6:bf:71:c6:86:40:b3:fc:15:5c: 14:9b:09:cb:2b:09:69:9a:8b:d8:6b:bb:42:30:a2:41:aa:f3: ae:d5:77:df:33:73:22:b7:c8:de:84:16:07:5a:54:46:aa:3d: 17:e1:a6:d5:3a:01:bc:80:07:68:40:65:6a:d6:0b:5f:54:15: 52:da:c5:b5:c9:e6:3d:8c:9d:cf:b4:a9:cb:ff:ed:b6:c9:bb: b0:95:5a:b0:bb:eb:e8:9d:cd:1e:bf:c9:00:3e:91:44:0f:a7: c2:75:d0:1f:95:1f:87:17:f2:bc:e6:af:cb:1e:cf:0b:81:3d: 5a:6c:1d:e2:c6:24:fe:38:8c:73:40:12:d1:58:ea:a9:e1:a5: bd:43:c0:0b:aa:b8:8e:b6:ca:e0:86:0c:b6:85:03:5a:8c:92: 6e:ef:79:dd:84:d3:b0:b8:18:6b:19:e2:82:ce:ca:53:c8:98: 25:0f:f2:38:df:4c:0d:a9:58:11:ed:37:e0:40:f5:ed:41:b1: 35:c7:da:73:59:37:f7:7c:4d:00:85:a0:1d:29:3b:a6:82:2e: 7b:a0:5a:07:46:8e:0e:d8:8e:cf:2a:db:51:e8:ba:1f:c6:83: 02:db:14:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUwNDA5MDE1MTUxWhcNMjUwNDE2MDE1MTUxWjAYMRYwFAYD VQQDEw02N2Y1ZDJiNy1lYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lvgG9rAmu9UH60j3p5ZGUH3ucD4Hbqo9rMyUf3Hp9F0VOBzAM49pUDM2bXK e351650dRtPe0eos51r30f2zYh3JmG5EtJd380b9+6KL2PHbISHyVGPzR8Pan8Yz KHtWf067WEJxDlmLVgM78QHPn/Esq+iFCxIQwPcKpkbzboiEthtFzJFLrxY7xncJ 5x4nSsWJEpLzc+0z25kUEcA+GNEOOib9RXs07xN7+LWZzCnOcUsRxLD5VUtAe5c2 UDW1RTapTlSRxdnFW3wgCTFUN03HLKOngFrXEtCqDR6YKFE1QQnWVQ9RqYJ1aeKd lrTCimGHxKCDkJuZuwhRMbb7vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJurlYEx 7whGogdOjesYd+XOCEJ6MB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhJoDzQRqwEvEvwH/99ib1fspvPIv1bVic2sa/ccaGQLP8FVwUmwnL KwlpmovYa7tCMKJBqvOu1XffM3Mit8jehBYHWlRGqj0X4abVOgG8gAdoQGVq1gtf VBVS2sW1yeY9jJ3PtKnL/+22ybuwlVqwu+vonc0ev8kAPpFED6fCddAflR+HF/K8 5q/LHs8LgT1abB3ixiT+OIxzQBLRWOqp4aW9Q8ALqriOtsrghgy2hQNajJJu73nd hNOwuBhrGeKCzspTyJglD/I430wNqVgR7TfgQPXtQbE1x9pzWTf3fE0AhaAdKTum gi57oFoHRo4O2I7PKttR6LofxoMC2xR9 -----END CERTIFICATE-----Generated at Thu Apr 10 20:22:41 2025 by rpki-client