$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: +BTC+3tSjHd8GMQie5mi/DKhiTxYryNvskeiOpRn+3w= Subject key identifier: 0C:80:01:AB:B5:8D:4A:4B:57:52:22:0A:29:93:2D:C1:61:8D:C8:73 Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: C7 Signing time: Thu 03 Apr 2025 05:03:48 +0000 Manifest this update: Thu 03 Apr 2025 05:03:48 +0000 Manifest next update: Thu 10 Apr 2025 05:03:48 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: SRyNUe3dTGQhG+M3DoOpwsZEYaKG03U5h70FuTmLCJQ=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC Validity Not Before: Apr 3 05:03:48 2025 GMT Not After : Apr 10 05:03:48 2025 GMT Subject: CN=67ee16b4-ce47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:35:1c:6c:8e:a0:0f:22:3d:8f:b1:46:b7:0e: 87:84:d6:2a:86:fc:69:a0:aa:11:0f:06:93:67:fe: 19:02:36:bb:35:c2:9a:78:ab:33:2c:fc:38:8b:2a: 96:68:fe:a8:a2:0d:aa:ce:cb:21:f8:ab:60:e0:06: 0f:75:06:af:eb:07:47:c2:ec:00:ad:b3:89:ac:38: da:1b:29:00:fe:ac:7e:cd:cb:7f:f7:c9:b4:30:75: fc:68:25:ae:79:ef:80:d4:e5:ba:0c:fb:8a:51:59: 64:af:b8:0e:2a:59:e7:9d:88:d6:1c:5f:52:60:f2: 11:d7:a7:0c:9d:80:15:ac:9a:93:97:79:c0:71:0c: 1e:e4:7e:0d:8f:d1:18:0e:6b:dd:4a:7c:2d:dc:ed: 22:b5:f0:26:65:7c:33:56:eb:be:84:98:93:05:1d: a3:8c:73:06:97:ae:12:0a:f5:e9:c1:f2:ce:4a:a3: ab:88:5e:0d:f0:fc:ee:ad:64:11:fa:68:88:f4:f5: d8:b2:01:b6:a1:f7:79:31:ee:e1:ce:47:5d:7b:fd: ae:ab:88:cd:14:c6:0f:99:e4:02:f7:a9:2f:e7:60: 62:24:32:2d:af:89:5a:e1:55:76:38:87:d0:39:65: 8d:36:ad:d4:99:6d:71:d0:38:42:45:0d:61:7b:27: 2b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:80:01:AB:B5:8D:4A:4B:57:52:22:0A:29:93:2D:C1:61:8D:C8:73 X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a1:0d:49:6e:6c:92:8c:f3:9f:db:85:2d:85:63:a9:8d:05: 5d:b5:89:61:3d:79:ad:ac:76:65:80:ef:f7:79:a9:6f:21:47: 84:92:8b:9c:49:2a:3a:5a:25:2e:9b:9e:96:f7:11:0f:03:16: 82:ca:a8:2a:a1:68:11:43:6f:7a:df:ed:19:3f:c2:d0:72:bc: 1c:7d:cd:ef:6e:8c:d1:00:ac:5f:95:3e:48:2a:a3:d8:a9:89: 8d:a1:00:f8:80:2d:e9:51:f8:19:1e:cf:92:64:4f:f4:ec:29: dd:5a:4a:28:76:08:59:07:0e:de:a5:bf:94:94:42:8f:1a:d8: 37:33:8a:6b:7f:7b:f2:a1:44:db:8c:44:9f:52:d2:97:c4:94: d7:3b:d1:57:da:6e:3f:55:ed:8c:5d:33:e6:d9:fa:e4:e7:fc: 77:1b:b2:98:a4:48:d9:0d:08:0e:ff:03:6d:a6:23:7b:5d:0b: 36:9e:08:42:ae:77:06:ad:8d:03:52:b8:f2:fb:e2:28:6d:cf: 83:a9:b4:10:33:88:52:89:25:c3:41:64:7c:13:b0:ad:d1:dc: 40:8f:9c:80:94:5f:46:ae:ba:25:a4:0e:ce:64:ac:21:d6:a1: f5:7a:03:b5:33:f6:76:f1:40:9c:1f:e3:40:21:7e:9d:00:b4: 75:37:25:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUwNDAzMDUwMzQ4WhcNMjUwNDEwMDUwMzQ4WjAYMRYwFAYD VQQDEw02N2VlMTZiNC1jZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDUcbI6gDyI9j7FGtw6HhNYqhvxpoKoRDwaTZ/4ZAja7NcKaeKszLPw4iyqW aP6oog2qzssh+Ktg4AYPdQav6wdHwuwArbOJrDjaGykA/qx+zct/98m0MHX8aCWu ee+A1OW6DPuKUVlkr7gOKlnnnYjWHF9SYPIR16cMnYAVrJqTl3nAcQwe5H4Nj9EY DmvdSnwt3O0itfAmZXwzVuu+hJiTBR2jjHMGl64SCvXpwfLOSqOriF4N8PzurWQR +miI9PXYsgG2ofd5Me7hzkdde/2uq4jNFMYPmeQC96kv52BiJDItr4la4VV2OIfQ OWWNNq3UmW1x0DhCRQ1heycrLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyAAau1 jUpLV1IiCimTLcFhjchzMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAboQ1JbmySjPOf24UthWOpjQVdtYlhPXmtrHZlgO/3ealvIUeEkouc SSo6WiUum56W9xEPAxaCyqgqoWgRQ2963+0ZP8LQcrwcfc3vbozRAKxflT5IKqPY qYmNoQD4gC3pUfgZHs+SZE/07CndWkoodghZBw7epb+UlEKPGtg3M4prf3vyoUTb jESfUtKXxJTXO9FX2m4/Ve2MXTPm2frk5/x3G7KYpEjZDQgO/wNtpiN7XQs2nghC rncGrY0DUrjy++Iobc+DqbQQM4hSiSXDQWR8E7Ct0dxAj5yAlF9GrrolpA7OZKwh 1qH1egO1M/Z28UCcH+NAIX6dALR1NyWQ -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:53 2025 by rpki-client