$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: j+6iS4+oFgEbCoKbmxhBbDAk+iLEuqJs1BKvU3cJrXI= Subject key identifier: 81:BA:CB:A2:FA:B5:B8:77:6F:F4:20:B9:C9:5B:AF:26:FB:06:7B:D9 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 01DA Signing time: Sat 05 Apr 2025 02:15:58 +0000 Manifest this update: Sat 05 Apr 2025 02:15:58 +0000 Manifest next update: Sat 12 Apr 2025 02:15:58 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: b+/ik3MwaU4kdWBWfsT3i/jEVu7mP0e1cHjQH8al8KQ=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: AFcbY0/3GFwr3EcAHIPw3DWr7uIr3rpZ3pX3o3qycLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38 Validity Not Before: Apr 5 02:15:58 2025 GMT Not After : Apr 12 02:15:58 2025 GMT Subject: CN=67f0925e-b0f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3a:1c:85:4b:97:10:ed:05:76:7b:a8:39:2a: 20:66:fc:2e:c2:57:09:d1:0f:08:98:e4:ec:1c:75: 59:4f:11:91:e6:f6:ab:c7:2c:a9:74:eb:a6:1f:de: 1c:dd:77:5f:0f:c3:05:c8:c5:24:85:4e:14:a8:d5: 6d:89:3c:73:fc:8d:ef:9d:bf:69:35:d5:ec:f9:1d: 8c:05:9f:05:e9:e8:06:1a:7b:76:01:16:15:9c:90: e3:b7:42:86:d6:b5:61:63:b8:d7:d9:81:80:36:bb: 2d:af:ca:31:7a:81:b7:47:6b:41:40:e7:82:74:7e: 9e:15:6e:8c:e0:c9:24:c0:50:e2:60:cd:51:14:9d: 2b:3d:43:d4:e8:a8:8f:ed:07:6b:03:99:2b:7b:ed: 81:de:22:75:ec:18:25:6a:50:db:89:b3:b4:65:87: d7:7c:4c:30:a3:d1:9a:c2:81:f6:37:8b:1a:cd:70: 21:eb:c4:98:1b:6a:52:f1:f7:43:85:08:d3:82:5e: fd:b0:99:3a:af:b8:62:ae:2a:6a:44:97:d2:a4:dd: 9e:2c:e8:4e:47:54:c9:8c:1e:9e:60:9c:78:c7:71: 46:ad:3b:49:0b:3d:38:45:fd:53:2a:d8:37:c1:bf: 86:3a:80:ed:3b:ac:06:88:0f:0f:98:79:42:9f:13: 1b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BA:CB:A2:FA:B5:B8:77:6F:F4:20:B9:C9:5B:AF:26:FB:06:7B:D9 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:42:0e:e0:5a:3b:44:07:9b:3c:22:29:51:56:74:1a:a8:ad: 4f:08:82:b0:69:32:de:88:c1:81:6b:93:e4:8e:85:18:8a:eb: 90:b1:cd:7e:37:33:f4:15:7b:99:72:ce:f2:13:d9:e6:07:8a: 41:13:d2:7a:cd:66:56:f3:42:00:b0:c3:e5:5a:22:93:77:65: dd:88:aa:ea:0e:ca:be:0a:b0:2d:7b:d2:4f:82:71:8e:83:97: 2d:54:22:35:fa:c7:d2:ef:24:c5:51:63:46:7d:5d:aa:cb:45: 15:ed:40:85:ff:f1:82:2c:95:f7:2c:38:9d:c2:23:69:38:02: 57:3d:e0:5b:b9:9b:8f:5c:c9:85:9f:81:e7:0c:5a:e2:06:7e: f6:ff:49:d5:b2:7c:b3:f5:d3:c6:e7:e7:f9:08:2f:26:be:da: f6:29:31:75:43:36:47:61:fa:2f:d8:4f:c0:11:a5:10:12:95: 27:3f:63:93:df:7b:f2:3c:35:de:70:df:61:7d:f9:0f:7f:62: c0:14:12:d4:62:6f:58:7d:e9:72:0e:bc:65:f9:42:a7:61:9e: 03:0e:f1:6c:5f:5c:50:0b:8f:c3:1e:c0:38:b6:61:90:2e:e7: 02:95:52:57:fe:26:44:c0:57:20:78:90:7a:33:05:a3:cd:78: 0d:54:5b:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwNDA1MDIxNTU4WhcNMjUwNDEyMDIxNTU4WjAYMRYwFAYD VQQDEw02N2YwOTI1ZS1iMGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTochUuXEO0FdnuoOSogZvwuwlcJ0Q8ImOTsHHVZTxGR5varxyypdOumH94c 3XdfD8MFyMUkhU4UqNVtiTxz/I3vnb9pNdXs+R2MBZ8F6egGGnt2ARYVnJDjt0KG 1rVhY7jX2YGANrstr8oxeoG3R2tBQOeCdH6eFW6M4MkkwFDiYM1RFJ0rPUPU6KiP 7QdrA5kre+2B3iJ17BglalDbibO0ZYfXfEwwo9GawoH2N4sazXAh68SYG2pS8fdD hQjTgl79sJk6r7hiripqRJfSpN2eLOhOR1TJjB6eYJx4x3FGrTtJCz04Rf1TKtg3 wb+GOoDtO6wGiA8PmHlCnxMbxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIG6y6L6 tbh3b/Qguclbryb7BnvZMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Qg7gWjtEB5s8IilRVnQaqK1PCIKwaTLeiMGBa5PkjoUYiuuQsc1+ NzP0FXuZcs7yE9nmB4pBE9J6zWZW80IAsMPlWiKTd2XdiKrqDsq+CrAte9JPgnGO g5ctVCI1+sfS7yTFUWNGfV2qy0UV7UCF//GCLJX3LDidwiNpOAJXPeBbuZuPXMmF n4HnDFriBn72/0nVsnyz9dPG5+f5CC8mvtr2KTF1QzZHYfov2E/AEaUQEpUnP2OT 33vyPDXecN9hffkPf2LAFBLUYm9YfelyDrxl+UKnYZ4DDvFsX1xQC4/DHsA4tmGQ LucClVJX/iZEwFcgeJB6MwWjzXgNVFvW -----END CERTIFICATE-----Generated at Sun Apr 6 12:19:45 2025 by rpki-client