$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: BsxXzgtlrVZ3IYbt7q7MB8NT0nQ9YtikaZNReaaIOvM= Subject key identifier: 5D:FB:1B:09:25:E9:99:D1:C4:87:B5:DA:47:AB:7F:39:E5:21:FA:3B Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 04FC Signing time: Sat 29 Mar 2025 00:01:32 +0000 Manifest this update: Sat 29 Mar 2025 00:01:31 +0000 Manifest next update: Sat 05 Apr 2025 00:01:31 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: sf3jvgXGYITZkBtg2k0I+lXi0O3X2fisFs0Ckq+jiiU=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52 Validity Not Before: Mar 29 00:01:31 2025 GMT Not After : Apr 5 00:01:31 2025 GMT Subject: CN=67e7385b-a729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:41:98:bc:b8:c8:34:f8:b3:87:b9:7d:e3:cf: 5c:a8:c4:75:99:8a:f2:01:a4:cf:6d:05:86:1d:d1: 10:54:16:33:9e:69:7e:0c:28:66:7f:73:ef:9d:a6: 6a:85:51:28:b1:52:78:25:b6:47:82:e1:b2:89:72: a2:39:e8:3a:af:84:63:e0:a8:f3:e9:94:76:a4:e9: 09:0f:29:26:37:a2:e8:ca:b0:35:23:86:c0:0c:31: cb:61:ce:e7:87:8a:8d:8e:a0:af:f2:7b:b6:8e:f8: 25:f0:57:49:b9:3c:51:9b:3d:98:84:a5:ed:bf:89: 27:fd:58:ad:63:37:ce:ee:d0:ec:c9:39:9c:55:76: ef:22:d6:45:20:55:0a:ba:50:f1:a0:c3:29:2f:d8: 6b:b7:a4:84:6a:cb:ce:dd:4c:09:d3:3f:b0:cf:a4: 0b:35:af:b6:97:48:6b:27:80:71:22:93:df:5b:48: db:d0:6e:ab:21:80:7e:2c:5a:4e:30:08:85:19:f2: 6e:f7:cb:05:8d:bd:60:c2:f6:75:e5:dd:dc:27:78: da:f6:4f:1c:af:2e:34:69:e5:8c:97:36:d2:56:5b: 1c:98:cc:9f:c9:3a:69:eb:7b:29:fa:0c:72:f1:9c: f1:07:84:fe:40:20:09:e4:00:3b:1d:b5:2c:07:09: 6c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FB:1B:09:25:E9:99:D1:C4:87:B5:DA:47:AB:7F:39:E5:21:FA:3B X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:27:0b:0b:26:a9:a5:f3:8e:dc:81:9f:d4:33:fd:e9:0a:34: d4:8f:a3:da:aa:2b:e3:3a:38:2c:1e:c8:43:b4:35:e6:ec:d4: df:df:b3:42:78:35:28:ec:3e:fb:d6:de:b9:7f:e7:a2:5d:67: b8:47:bd:89:0d:13:47:70:54:b4:86:cd:26:16:40:77:6e:50: 23:98:a0:86:25:38:8c:29:21:d1:40:a3:f9:de:ad:10:29:3f: eb:09:4d:5a:32:4d:97:2b:d5:8c:93:cf:d9:11:9b:88:4d:bb: af:40:fa:1f:34:fc:b9:75:9f:95:bc:09:a0:5d:05:8f:89:d2: 1c:b9:22:7a:f5:15:b2:29:6d:6b:1c:c4:03:49:22:e7:78:ac: 2f:c4:70:01:7a:7e:6e:3a:29:4e:4b:4e:6b:55:e0:99:b2:5b: 60:14:67:7b:df:ab:cb:05:8f:4a:03:91:40:3f:68:5d:27:0d: 42:30:6d:31:02:ce:53:05:2c:a6:93:fe:e0:e1:48:5a:b2:3f: 76:03:18:2d:80:94:1f:b5:6e:3f:c0:b2:54:53:c0:9f:2c:7f: e6:7a:27:40:84:47:c0:8c:54:bc:36:ad:f5:cb:c7:7e:65:98: f0:96:ce:95:40:13:9f:98:9b:88:fc:07:00:71:81:51:c9:1f: 93:e6:dc:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTAzMjkwMDAxMzFaFw0yNTA0MDUwMDAxMzFaMBgxFjAUBgNV BAMTDTY3ZTczODViLWE3MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZQZi8uMg0+LOHuX3jz1yoxHWZivIBpM9tBYYd0RBUFjOeaX4MKGZ/c++dpmqF USixUngltkeC4bKJcqI56DqvhGPgqPPplHak6QkPKSY3oujKsDUjhsAMMcthzueH io2OoK/ye7aO+CXwV0m5PFGbPZiEpe2/iSf9WK1jN87u0OzJOZxVdu8i1kUgVQq6 UPGgwykv2Gu3pIRqy87dTAnTP7DPpAs1r7aXSGsngHEik99bSNvQbqshgH4sWk4w CIUZ8m73ywWNvWDC9nXl3dwneNr2TxyvLjRp5YyXNtJWWxyYzJ/JOmnreyn6DHLx nPEHhP5AIAnkADsdtSwHCWxDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXfsbCSXp mdHEh7XaR6t/OeUh+jswHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI0nCwsmqaXzjtyBn9Qz/ekKNNSPo9qqK+M6OCweyEO0Nebs1N/fs0J4 NSjsPvvW3rl/56JdZ7hHvYkNE0dwVLSGzSYWQHduUCOYoIYlOIwpIdFAo/nerRAp P+sJTVoyTZcr1YyTz9kRm4hNu69A+h80/Ll1n5W8CaBdBY+J0hy5Inr1FbIpbWsc xANJIud4rC/EcAF6fm46KU5LTmtV4JmyW2AUZ3vfq8sFj0oDkUA/aF0nDUIwbTEC zlMFLKaT/uDhSFqyP3YDGC2AlB+1bj/AslRTwJ8sf+Z6J0CER8CMVLw2rfXLx35l mPCWzpVAE5+Ym4j8BwBxgVHJH5Pm3LY= -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:44 2025 by rpki-client