$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: fyhtwahCfEttLeGvsdGuicUSb8u19/CXQLBsidT4fdw= Subject key identifier: 38:71:62:6D:F1:1C:09:D6:B5:8A:03:36:7F:94:2A:5F:52:D8:11:70 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 99 Signing time: Thu 03 Apr 2025 05:34:37 +0000 Manifest this update: Thu 03 Apr 2025 05:34:37 +0000 Manifest next update: Thu 10 Apr 2025 05:34:37 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: DTxIJlZFbsw7fwwEbO+xPrhsB+P8jPT50ZwiYaKCi4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85 Validity Not Before: Apr 3 05:34:37 2025 GMT Not After : Apr 10 05:34:37 2025 GMT Subject: CN=67ee1ded-288a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:30:38:6f:a1:c7:f0:ef:4c:29:4f:69:3d:f4: 70:e1:cb:f5:d8:46:7c:77:dc:e1:f8:13:f2:e3:8f: b7:66:f2:1d:de:bb:88:13:d2:39:59:c5:a1:48:87: 12:82:13:7b:28:8c:c4:08:b2:3f:8c:28:60:07:64: 03:c8:a6:6a:2c:c7:4c:f2:f2:22:13:8c:51:d9:10: ff:98:a9:fd:a4:e5:19:ca:f6:ce:eb:77:53:ba:f9: b7:6f:89:04:9d:aa:5d:55:39:bd:13:6a:98:e2:40: 85:0e:7d:09:3c:ea:11:6a:de:32:64:ea:ec:40:94: b6:65:b6:f1:25:b2:ed:05:84:ca:c8:91:25:70:04: 6f:dc:17:f1:4c:3d:71:0d:1d:e6:ae:5e:47:80:17: e1:27:86:62:dc:c4:55:c1:aa:d2:5f:dd:3f:80:ad: ef:f4:4e:5d:f1:5f:da:2a:11:19:68:d7:4e:f1:44: f6:5e:b9:6b:b1:e1:04:1b:b0:24:1a:32:8b:69:e2: 48:d1:11:5f:d9:4a:b7:fd:38:12:82:a0:70:8e:1d: d4:0b:3f:cb:b9:2f:40:a4:95:d4:96:85:2c:c8:0c: ee:a8:09:e7:62:04:ca:e6:06:6d:4f:b7:4b:67:39: c1:37:5c:c3:bd:61:54:ae:84:bf:91:24:07:b8:68: a3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:71:62:6D:F1:1C:09:D6:B5:8A:03:36:7F:94:2A:5F:52:D8:11:70 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:67:14:85:36:ad:cc:ba:50:aa:fc:26:fe:1f:be:32:b7:57: 8b:47:3f:1e:93:6e:6f:c6:fd:4e:4a:29:85:6b:b5:2f:50:23: ff:b6:89:a5:ca:0e:d7:7c:d1:52:af:01:38:1b:1a:2a:e9:2b: 33:13:4c:85:fd:9a:0f:63:01:e2:15:e6:25:a4:33:d7:59:02: 8a:51:f6:1f:90:94:09:22:f9:95:6d:ea:d7:35:0a:e7:46:57: c3:0b:69:86:03:af:82:98:fe:ac:08:b3:64:69:c5:64:43:b6: 26:d6:c7:23:62:5f:45:62:2f:c4:c8:41:fc:b5:30:65:db:5c: 48:c6:77:59:81:aa:a3:6b:e1:17:f8:49:7b:cc:08:eb:a2:63: 55:25:9a:7c:c4:85:6b:40:4d:d2:6c:4c:2a:d2:fd:8f:11:05: 32:1e:93:fc:42:5e:fa:65:59:6e:e0:fc:2f:c4:8a:9a:15:47: 2f:7a:d5:ba:f7:9a:ec:de:e7:4f:01:28:67:7b:9c:89:4d:87: 46:50:6f:e2:39:31:ab:08:d7:40:f9:08:bb:b0:31:5a:80:2b: e2:f5:3c:ce:08:5d:69:f8:d4:c8:ee:9a:a9:00:50:d9:4d:b9: ba:a0:e1:3a:70:6b:4e:a1:d2:21:02:a4:d8:a0:08:6c:50:ff: 80:f5:43:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjUwNDAzMDUzNDM3WhcNMjUwNDEwMDUzNDM3WjAYMRYwFAYD VQQDEw02N2VlMWRlZC0yODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTA4b6HH8O9MKU9pPfRw4cv12EZ8d9zh+BPy44+3ZvId3ruIE9I5WcWhSIcS ghN7KIzECLI/jChgB2QDyKZqLMdM8vIiE4xR2RD/mKn9pOUZyvbO63dTuvm3b4kE napdVTm9E2qY4kCFDn0JPOoRat4yZOrsQJS2ZbbxJbLtBYTKyJElcARv3BfxTD1x DR3mrl5HgBfhJ4Zi3MRVwarSX90/gK3v9E5d8V/aKhEZaNdO8UT2XrlrseEEG7Ak GjKLaeJI0RFf2Uq3/TgSgqBwjh3UCz/LuS9ApJXUloUsyAzuqAnnYgTK5gZtT7dL ZznBN1zDvWFUroS/kSQHuGij9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhxYm3x HAnWtYoDNn+UKl9S2BFwMB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaZxSFNq3MulCq/Cb+H74yt1eLRz8ek25vxv1OSimFa7UvUCP/toml yg7XfNFSrwE4Gxoq6SszE0yF/ZoPYwHiFeYlpDPXWQKKUfYfkJQJIvmVberXNQrn RlfDC2mGA6+CmP6sCLNkacVkQ7Ym1scjYl9FYi/EyEH8tTBl21xIxndZgaqja+EX +El7zAjromNVJZp8xIVrQE3SbEwq0v2PEQUyHpP8Ql76ZVlu4PwvxIqaFUcvetW6 95rs3udPAShne5yJTYdGUG/iOTGrCNdA+Qi7sDFagCvi9TzOCF1p+NTI7pqpAFDZ Tbm6oOE6cGtOodIhAqTYoAhsUP+A9UOH -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:59 2025 by rpki-client