$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: uj5yQM5U1Wnf9kwCGi75ozo4G2UyDwN0RyrgixLqbio= Subject key identifier: C4:FB:66:4B:46:7B:52:4C:01:17:63:B5:57:79:58:0D:D8:6A:1D:02 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0BFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0BF2 Signing time: Fri 04 Apr 2025 18:50:55 +0000 Manifest this update: Fri 04 Apr 2025 18:50:54 +0000 Manifest next update: Fri 11 Apr 2025 18:50:54 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: UeGdr/ZUSDjC39R8TuhSQ5XvvyjdPUWwObER/jxALGA=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3067 (0xbfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB Validity Not Before: Apr 4 18:50:54 2025 GMT Not After : Apr 11 18:50:54 2025 GMT Subject: CN=67f02a0f-3eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:92:2b:15:b6:cb:2c:91:ee:7b:e0:2c:e8: c1:f8:65:1a:94:3e:45:d9:fb:d6:d9:9c:73:04:f2: c8:4c:6a:9d:86:8f:c6:af:a1:7f:36:40:9f:89:38: 28:4c:76:dd:c3:23:ec:5f:fd:80:23:95:6d:1f:34: 05:20:0a:78:32:c8:3d:2e:fe:0c:ab:1c:09:70:d9: 68:45:88:6a:48:3b:22:93:a5:33:7b:de:a1:6c:a2: 1e:87:0a:bb:95:55:7e:ba:85:aa:e8:87:40:fc:85: b3:5d:c7:9e:d6:6f:e8:01:f3:e3:f9:10:e1:e6:9e: c7:90:86:bc:10:3f:d7:20:a1:eb:32:b0:52:b8:cc: 68:69:a8:44:19:51:3b:af:48:c4:9a:c5:7e:4c:08: 2f:d1:a9:49:74:4b:cd:ac:bf:f5:74:3d:b5:72:f9: f5:b2:07:9b:8e:ab:a6:fc:71:9f:c8:87:4b:fe:7f: ef:67:49:d9:eb:4b:2d:48:18:ed:70:d0:92:dd:4f: 22:d9:cf:d8:da:a4:5f:60:0b:00:6c:33:ea:04:76: 03:a8:36:77:dd:19:e5:e2:fe:ee:84:7b:81:03:0d: 30:e5:3f:7a:41:7e:a6:de:3a:3e:7a:f3:2e:b3:a0: 0f:f6:b2:2e:fe:37:22:05:8a:d7:ec:d9:de:e6:44: 92:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FB:66:4B:46:7B:52:4C:01:17:63:B5:57:79:58:0D:D8:6A:1D:02 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:10:e5:0f:ef:fe:2b:31:2e:ba:49:b5:c8:9e:60:02:67:77: 66:12:1f:fb:da:84:06:b1:04:72:32:5b:6e:94:4c:0d:5c:0d: 8e:62:b8:9c:a9:4f:76:0a:a4:98:bf:70:4d:89:3a:7c:eb:a0: 7b:e4:c1:51:42:95:34:df:c3:bb:78:61:36:a2:d2:7c:ec:7d: c3:40:89:95:a3:f5:6d:b5:c6:4e:5d:85:fb:92:85:0b:1c:3f: c9:65:1d:15:0d:06:b0:9d:3e:2c:da:fb:a8:8e:fd:60:4a:99: 1b:3e:4b:57:60:66:b7:3e:da:40:b3:ce:ab:39:e3:73:4c:cf: 0c:06:ec:a6:fe:62:09:07:b1:87:33:77:e2:24:45:73:87:4f: a7:4e:7d:d4:97:14:d9:60:35:53:9b:e9:f3:90:65:25:c4:fb: dc:77:64:fb:70:b0:24:47:19:7b:38:33:e6:a5:8f:3b:72:28: 42:20:da:c2:08:e4:7b:cf:05:0c:1b:4a:e0:be:88:05:fa:14: 71:11:3e:ff:cb:e8:41:5b:f3:03:3d:16:34:23:b0:5b:06:95: 9a:30:e2:f1:93:f2:48:83:78:11:1e:18:96:65:f0:a3:2e:7d: 9b:ca:86:06:aa:3e:15:e3:13:5f:0a:c8:3f:d1:a2:4f:9b:41: 96:23:9a:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUwNDA0MTg1MDU0WhcNMjUwNDExMTg1MDU0WjAYMRYwFAYD VQQDEw02N2YwMmEwZi0zZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9SSKxW2yyyR7nvgLOjB+GUalD5F2fvW2ZxzBPLITGqdho/Gr6F/NkCfiTgo THbdwyPsX/2AI5VtHzQFIAp4Msg9Lv4MqxwJcNloRYhqSDsik6Uze96hbKIehwq7 lVV+uoWq6IdA/IWzXcee1m/oAfPj+RDh5p7HkIa8ED/XIKHrMrBSuMxoaahEGVE7 r0jEmsV+TAgv0alJdEvNrL/1dD21cvn1sgebjqum/HGfyIdL/n/vZ0nZ60stSBjt cNCS3U8i2c/Y2qRfYAsAbDPqBHYDqDZ33Rnl4v7uhHuBAw0w5T96QX6m3jo+evMu s6AP9rIu/jciBYrX7Nne5kSSfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMT7ZktG e1JMARdjtVd5WA3Yah0CMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeEOUP7/4rMS66SbXInmACZ3dmEh/72oQGsQRyMltulEwNXA2OYric qU92CqSYv3BNiTp866B75MFRQpU038O7eGE2otJ87H3DQImVo/VttcZOXYX7koUL HD/JZR0VDQawnT4s2vuojv1gSpkbPktXYGa3PtpAs86rOeNzTM8MBuym/mIJB7GH M3fiJEVzh0+nTn3UlxTZYDVTm+nzkGUlxPvcd2T7cLAkRxl7ODPmpY87cihCINrC COR7zwUMG0rgvogF+hRxET7/y+hBW/MDPRY0I7BbBpWaMOLxk/JIg3gRHhiWZfCj Ln2byoYGqj4V4xNfCsg/0aJPm0GWI5px -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:48 2025 by rpki-client