$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft File: nDt48kQmDsRjG6DfYZRgi3Gof0g.mft (raw, json) Hash identifier: lgZ6U/3cjrM4LZYJ/+SEgt8TtdTUK1N5rl29GCyXQ3Q= Subject key identifier: CB:00:C3:84:94:47:90:10:B6:95:E3:6F:02:33:1E:74:BE:35:35:C3 Authority key identifier: 9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 Certificate issuer: /CN=A91BA0F9/serialNumber=9C3B78F244260EC4631BA0DF6194608B71A87F48 Certificate serial: 3465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft Manifest number: 509F Signing time: Fri 04 Apr 2025 15:18:17 +0000 Manifest this update: Fri 04 Apr 2025 15:18:16 +0000 Manifest next update: Fri 11 Apr 2025 15:18:16 +0000 Files and hashes: 1: nDt48kQmDsRjG6DfYZRgi3Gof0g.crl (hash: ZDQoPhjLPo5Q66+kK/wk9oTFB1qu7LCC32Atc6kTtpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13413 (0x3465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0F9 Validity Not Before: Apr 4 15:18:16 2025 GMT Not After : Apr 11 15:18:16 2025 GMT Subject: CN=67eff838-a861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:04:c6:76:05:2d:3d:7b:ff:56:4c:fa:97:75: 2d:f7:0e:bd:ee:3a:e7:c3:a8:4a:20:8f:5d:71:82: b3:a8:b9:a6:e5:76:91:de:fa:74:0c:72:b3:4a:ea: 06:83:68:e0:51:8b:5b:08:51:96:10:13:9a:79:9d: 3c:16:5e:23:26:36:92:39:28:23:fa:c5:23:c0:bc: 7a:c1:e6:24:89:0d:2e:52:c4:f4:36:93:22:34:22: a4:8e:8f:2b:a6:23:e5:b9:6f:77:a1:34:8a:85:dc: 36:78:09:61:3d:f8:0e:3f:50:d4:6d:48:aa:56:19: dd:d0:14:aa:cd:b7:0b:86:d4:6d:4a:9d:0a:42:ce: 86:14:17:e7:37:4f:26:9a:3d:8e:6b:de:a7:66:8b: d6:99:4a:f1:7f:1c:2f:6d:61:2b:87:09:f6:9c:ad: b5:a7:51:f4:29:52:12:79:51:6c:03:29:cd:aa:51: fb:fc:c0:93:d2:35:18:5b:86:46:68:aa:06:e5:f5: af:46:86:06:40:c6:bd:7f:95:97:1f:06:62:ed:cc: 8e:8a:b7:17:d3:b3:71:06:79:68:35:4e:07:f8:52: 20:79:86:fc:10:fc:45:06:82:ac:06:74:81:82:1e: f3:80:3a:d8:ee:1b:f3:dc:a5:04:62:13:7b:a5:8e: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:00:C3:84:94:47:90:10:B6:95:E3:6F:02:33:1E:74:BE:35:35:C3 X509v3 Authority Key Identifier: keyid:9C:3B:78:F2:44:26:0E:C4:63:1B:A0:DF:61:94:60:8B:71:A8:7F:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nDt48kQmDsRjG6DfYZRgi3Gof0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/nDt48kQmDsRjG6DfYZRgi3Gof0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:76:9b:f7:e8:04:a9:5d:70:c1:f2:31:12:7e:06:12:aa:0e: 0a:39:ef:6f:32:fc:33:57:60:69:dd:fc:d1:31:3f:86:cf:fa: d4:fb:16:73:ca:97:f3:16:fa:a9:dd:17:a5:7f:78:ba:a6:6b: cd:1d:33:23:75:5d:4f:50:79:ed:13:62:a8:d3:98:dd:0d:1b: 8a:1e:71:18:75:0b:86:ce:86:3b:06:b5:2c:d1:1c:4d:a3:98: 12:66:2c:09:46:91:38:20:f8:49:38:22:5f:b8:36:7f:5c:ab: 70:b5:96:35:aa:1f:30:af:13:d3:61:37:e6:2f:d4:d5:54:2f: bc:ff:35:1a:73:6a:19:0a:02:e0:47:22:09:e1:b7:4d:19:75: ef:9c:cd:b1:94:ab:83:2c:13:23:a7:0d:d1:75:98:ab:65:17: 84:c6:c1:83:6a:3b:db:c0:b2:82:17:2a:7c:69:e3:57:2c:46: 8a:bf:ab:8d:c0:7f:3f:82:5f:a4:0d:ea:24:9e:b8:3a:15:aa: 99:bc:fb:25:62:fe:66:20:7c:fe:9a:13:24:10:c8:18:9f:38: fa:c0:57:a9:ad:13:5b:a3:7f:ab:9d:6d:17:70:05:94:5d:d7: 92:b1:54:36:66:24:c0:d0:80:ef:9a:30:85:2a:70:a8:12:da: e3:d1:a6:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwRjkxMTAvBgNVBAUTKDlDM0I3OEYyNDQyNjBFQzQ2MzFCQTBERjYxOTQ2MDhC NzFBODdGNDgwHhcNMjUwNDA0MTUxODE2WhcNMjUwNDExMTUxODE2WjAYMRYwFAYD VQQDEw02N2VmZjgzOC1hODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQTGdgUtPXv/Vkz6l3Ut9w697jrnw6hKII9dcYKzqLmm5XaR3vp0DHKzSuoG g2jgUYtbCFGWEBOaeZ08Fl4jJjaSOSgj+sUjwLx6weYkiQ0uUsT0NpMiNCKkjo8r piPluW93oTSKhdw2eAlhPfgOP1DUbUiqVhnd0BSqzbcLhtRtSp0KQs6GFBfnN08m mj2Oa96nZovWmUrxfxwvbWErhwn2nK21p1H0KVISeVFsAynNqlH7/MCT0jUYW4ZG aKoG5fWvRoYGQMa9f5WXHwZi7cyOircX07NxBnloNU4H+FIgeYb8EPxFBoKsBnSB gh7zgDrY7hvz3KUEYhN7pY540wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsAw4SU R5AQtpXjbwIzHnS+NTXDMB8GA1UdIwQYMBaAFJw7ePJEJg7EYxug32GUYItxqH9I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBGOS9GQ0FBMkMwMDFE QTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURzUmpHNkRmWVpSZ2kzR29m MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25EdDQ4a1FtRHNSakc2RGZZWlJnaTNHb2YwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBGOS9GQ0FBMkMwMDFEQTgxMUUyQjBFMkNBQTMwOEIwMkNEMi9uRHQ0OGtRbURz UmpHNkRmWVpSZ2kzR29mMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxdpv36ASpXXDB8jESfgYSqg4KOe9vMvwzV2Bp3fzRMT+Gz/rU+xZz ypfzFvqp3Relf3i6pmvNHTMjdV1PUHntE2Ko05jdDRuKHnEYdQuGzoY7BrUs0RxN o5gSZiwJRpE4IPhJOCJfuDZ/XKtwtZY1qh8wrxPTYTfmL9TVVC+8/zUac2oZCgLg RyIJ4bdNGXXvnM2xlKuDLBMjpw3RdZirZReExsGDajvbwLKCFyp8aeNXLEaKv6uN wH8/gl+kDeoknrg6FaqZvPslYv5mIHz+mhMkEMgYnzj6wFeprRNbo3+rnW0XcAWU XdeSsVQ2ZiTA0IDvmjCFKnCoEtrj0aaY -----END CERTIFICATE-----Generated at Sun Apr 6 14:06:51 2025 by rpki-client