$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: XrJ95PPpKLcf/v75kFsZzrGC5dEptJtGFt2M6fAF0+g= Subject key identifier: D5:5F:CE:4B:5F:34:BC:96:B2:D2:64:24:6D:95:73:CA:77:8D:BB:BA Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: 47 Signing time: Thu 17 Apr 2025 06:15:13 +0000 Manifest this update: Thu 17 Apr 2025 06:15:12 +0000 Manifest next update: Thu 24 Apr 2025 06:15:12 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: UMshdz5ufzChC6W5uK/lfX8e55UYpgvVhyZmqb+Yodg=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Apr 17 06:15:12 2025 GMT Not After : Apr 24 06:15:12 2025 GMT Subject: CN=68009c70-5fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:21:2d:64:9a:02:a8:9e:0b:bd:7d:50:21:54: 55:84:8f:56:ef:ea:cf:22:af:9c:17:c5:ee:5f:e1: 74:00:b9:79:cf:18:87:a3:21:98:13:2c:a0:85:c9: 85:ba:55:8c:0b:38:ee:cb:14:83:22:a2:fc:11:f3: f6:57:8e:14:42:b0:e2:17:db:24:e0:a5:31:95:dc: e6:8a:22:8e:d7:21:4d:a8:03:38:e3:ba:78:0c:54: 01:8c:c9:39:46:7f:ab:72:86:17:7b:62:12:67:ae: 43:58:9c:91:a7:e5:32:f3:2e:9b:14:96:00:b7:c0: 3b:9f:00:3a:d6:e1:ff:7d:46:c7:cc:f2:c8:c4:17: 50:7e:b1:90:5e:84:00:8e:af:2a:e1:d9:5e:8f:70: 0a:80:4f:29:bc:05:12:24:fb:ab:56:11:d6:d5:83: 50:b4:74:e6:5e:2b:dc:5c:07:6c:00:32:c9:b7:ef: 34:d4:ac:ab:42:99:17:04:aa:1c:72:fc:fd:2e:87: ab:e9:fd:22:c4:3d:2c:ae:d1:3d:3f:d2:82:62:d9: a5:7c:1c:ae:76:2b:26:27:5b:40:1a:80:48:16:52: 2e:47:ae:55:98:ed:59:57:2e:3c:b1:72:e7:c9:8f: be:cf:f5:32:02:2d:26:d1:36:85:c9:93:ac:cd:0f: 28:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5F:CE:4B:5F:34:BC:96:B2:D2:64:24:6D:95:73:CA:77:8D:BB:BA X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:6b:2d:ed:43:20:91:d8:09:cd:58:74:92:8b:7f:4f:6a:36: 4a:ba:c1:5a:14:d2:3a:9e:0b:6f:42:6a:a0:ad:ce:f8:3a:43: 49:99:fb:a7:ee:12:0a:a2:56:f3:94:cf:94:6a:f6:75:06:5b: 82:2e:bd:5d:32:75:1c:fd:b6:9e:f6:99:b9:5b:89:43:d4:35: 93:c1:9a:00:4e:50:66:d1:e8:1f:8f:50:24:ee:c0:55:c8:ee: 6e:9d:37:eb:f9:9a:34:e6:88:0f:a0:89:9e:9d:c7:1d:02:25: 51:45:83:ea:09:fa:49:39:de:80:01:e3:d0:07:7b:63:91:eb: 6f:0f:bc:8b:cb:62:15:a9:09:22:c8:0f:d1:85:ce:28:9f:95: a7:c6:63:f9:ae:27:bc:8c:2f:35:b6:24:90:98:52:4f:ce:b8: c4:ec:bb:41:8d:2e:9c:f9:85:f9:32:74:75:9a:c9:d9:24:2e: 40:50:8b:39:b5:45:ed:bb:52:a4:b7:ce:cd:19:9e:96:12:59: f8:57:a7:0d:42:ec:68:46:e1:33:e4:a7:5c:98:57:8f:a7:9e: a3:23:46:3e:da:b8:d9:b2:06:3e:a0:cc:e5:16:82:64:20:45: 98:f6:51:0b:a6:5d:89:aa:30:59:0d:dd:69:3b:15:0e:1d:c4: f2:bb:b4:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoNkYzRTAyNjIwMEQ1NTM5RjI3RTBGM0FBNTBEMzIwQTI0 NTI4RDU3RDAeFw0yNTA0MTcwNjE1MTJaFw0yNTA0MjQwNjE1MTJaMBgxFjAUBgNV BAMTDTY4MDA5YzcwLTVmZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+IS1kmgKongu9fVAhVFWEj1bv6s8ir5wXxe5f4XQAuXnPGIejIZgTLKCFyYW6 VYwLOO7LFIMiovwR8/ZXjhRCsOIX2yTgpTGV3OaKIo7XIU2oAzjjungMVAGMyTlG f6tyhhd7YhJnrkNYnJGn5TLzLpsUlgC3wDufADrW4f99RsfM8sjEF1B+sZBehACO ryrh2V6PcAqATym8BRIk+6tWEdbVg1C0dOZeK9xcB2wAMsm37zTUrKtCmRcEqhxy /P0uh6vp/SLEPSyu0T0/0oJi2aV8HK52KyYnW0AagEgWUi5HrlWY7VlXLjyxcufJ j77P9TICLSbRNoXJk6zNDygtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1V/OS180 vJay0mQkbZVzyneNu7owHwYDVR0jBBgwFoAUbz4CYgDVU58n4POqUNMgokUo1X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBL0ZGRjJFNkE4QjYz MDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYno0Q1lnRFZVNThuNFBPcVVOTWdva1VvMVgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBL0ZGRjJFNkE4QjYzMDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4 bjRQT3FVTk1nb2tVbzFYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEJrLe1DIJHYCc1YdJKLf09qNkq6wVoU0jqeC29CaqCtzvg6Q0mZ+6fu EgqiVvOUz5Rq9nUGW4IuvV0ydRz9tp72mblbiUPUNZPBmgBOUGbR6B+PUCTuwFXI 7m6dN+v5mjTmiA+giZ6dxx0CJVFFg+oJ+kk53oAB49AHe2OR628PvIvLYhWpCSLI D9GFziiflafGY/muJ7yMLzW2JJCYUk/OuMTsu0GNLpz5hfkydHWaydkkLkBQizm1 Re27UqS3zs0ZnpYSWfhXpw1C7GhG4TPkp1yYV4+nnqMjRj7auNmyBj6gzOUWgmQg RZj2UQumXYmqMFkN3Wk7FQ4dxPK7tPM= -----END CERTIFICATE-----Generated at Sat Apr 19 07:19:44 2025 by rpki-client