$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: YxXtU6sYkcG3nfbI3zfcYL0SzPYa0mxaw6ka9RKj+Yk= Subject key identifier: 7E:A3:0C:18:AF:AD:C8:59:45:7D:52:0D:A6:82:DE:CD:3B:E9:A1:5F Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: CB Signing time: Wed 09 Apr 2025 04:37:54 +0000 Manifest this update: Wed 09 Apr 2025 04:37:53 +0000 Manifest next update: Wed 16 Apr 2025 04:37:53 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: uE3brQAIaDdjcl7ZZ23j641ADfBBZOcQouKAeo9Ut5g=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: WtIZQ/bC/mTF3o0eFavcTapTDeJCSmKxEjU8nMbUVMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC Validity Not Before: Apr 9 04:37:53 2025 GMT Not After : Apr 16 04:37:53 2025 GMT Subject: CN=67f5f9a2-d8d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a4:64:05:86:db:c6:21:d8:4e:78:5f:c6:e8: 29:e2:71:d1:e7:ed:c3:42:61:32:24:7f:46:79:65: cc:88:05:b4:b8:89:c9:34:a7:9a:18:85:4f:d1:2c: ff:51:50:b3:90:ca:53:9a:58:fe:99:45:ac:0a:64: e0:cf:d1:e5:4a:06:d0:d1:26:16:de:ef:71:d4:20: af:43:6c:ed:95:16:f8:91:b5:37:cc:c3:74:b4:13: ac:e9:c6:ab:2b:d1:43:c1:92:54:ce:f8:c6:b0:55: e1:5f:75:98:b1:ad:e2:21:41:06:74:18:6a:11:fa: c3:8b:4d:8a:e0:00:c3:b8:15:f5:e1:cd:21:2f:0f: c9:54:69:cb:c3:11:41:3e:b5:76:68:97:3a:3a:83: 34:53:45:a1:45:af:d6:55:c2:49:0f:bf:5c:7e:8c: ff:81:0d:69:69:37:83:15:10:70:f8:7a:fb:a8:f5: 14:f3:8e:e5:16:e3:ba:7f:3d:48:21:10:51:2b:a7: 91:6a:04:9b:d0:90:ec:10:0d:49:02:7b:97:43:97: 18:7a:9c:b0:a3:fd:69:f8:1e:e0:28:ab:cb:f5:f4: 15:68:21:07:5f:85:0a:b8:bb:5c:24:c4:55:63:f6: df:01:5e:13:62:44:e7:f4:6f:49:47:66:4d:cc:aa: a7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A3:0C:18:AF:AD:C8:59:45:7D:52:0D:A6:82:DE:CD:3B:E9:A1:5F X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b3:09:36:d0:f1:0e:c4:75:68:5e:59:23:cf:fa:9d:2f:e1: b2:ca:bf:a0:77:13:6b:7d:e6:cc:96:3d:58:da:6d:bc:5f:fc: d8:cf:8c:69:e7:51:8f:33:62:7f:57:7b:8a:0b:f2:20:dd:3c: 55:4c:25:0b:1b:00:1e:fc:dc:7d:f9:78:2b:a3:40:74:6e:cb: 4c:aa:30:82:c8:a8:70:2c:77:9b:3e:d9:9c:45:c4:e9:9f:48: 33:81:58:68:d2:bb:ef:55:c8:71:16:0d:0b:20:a9:dd:e7:a3: e0:55:77:f3:6f:8e:da:55:43:41:46:b3:3f:27:1c:9c:9a:58: 52:49:9a:3c:1d:77:e5:96:f4:03:5e:ba:53:b7:96:5b:92:fa: 36:08:5b:2b:7b:e4:b0:ee:22:92:0b:bb:fa:78:b8:26:34:8c: 59:9d:e6:f4:a5:6f:08:b5:17:8f:f5:c9:f4:00:b6:99:0d:1e: 68:9f:be:24:ed:1a:db:63:90:3b:f9:ea:c6:dd:85:b8:21:d5: 42:0e:19:98:07:e3:a0:5d:c7:34:88:18:70:13:03:94:91:e4: de:7e:7c:b7:23:fe:e5:b1:53:ea:2e:e2:ab:66:6d:9c:36:2c: 02:32:7b:f0:12:74:8b:3d:ae:49:27:f0:89:22:ec:86:71:29: ee:ef:2c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwNDA5MDQzNzUzWhcNMjUwNDE2MDQzNzUzWjAYMRYwFAYD VQQDEw02N2Y1ZjlhMi1kOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56RkBYbbxiHYTnhfxugp4nHR5+3DQmEyJH9GeWXMiAW0uInJNKeaGIVP0Sz/ UVCzkMpTmlj+mUWsCmTgz9HlSgbQ0SYW3u9x1CCvQ2ztlRb4kbU3zMN0tBOs6car K9FDwZJUzvjGsFXhX3WYsa3iIUEGdBhqEfrDi02K4ADDuBX14c0hLw/JVGnLwxFB PrV2aJc6OoM0U0WhRa/WVcJJD79cfoz/gQ1paTeDFRBw+Hr7qPUU847lFuO6fz1I IRBRK6eRagSb0JDsEA1JAnuXQ5cYepywo/1p+B7gKKvL9fQVaCEHX4UKuLtcJMRV Y/bfAV4TYkTn9G9JR2ZNzKqnSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6jDBiv rchZRX1SDaaC3s076aFfMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOswk20PEOxHVoXlkjz/qdL+Gyyr+gdxNrfebMlj1Y2m28X/zYz4xp 51GPM2J/V3uKC/Ig3TxVTCULGwAe/Nx9+Xgro0B0bstMqjCCyKhwLHebPtmcRcTp n0gzgVho0rvvVchxFg0LIKnd56PgVXfzb47aVUNBRrM/JxycmlhSSZo8HXfllvQD XrpTt5Zbkvo2CFsre+Sw7iKSC7v6eLgmNIxZneb0pW8ItReP9cn0ALaZDR5on74k 7RrbY5A7+erG3YW4IdVCDhmYB+OgXcc0iBhwEwOUkeTefny3I/7lsVPqLuKrZm2c NiwCMnvwEnSLPa5JJ/CJIuyGcSnu7yzj -----END CERTIFICATE-----Generated at Fri Apr 11 00:38:15 2025 by rpki-client