$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft File: Aqo6dsRZSXsbRfJukESsxvLoBE8.mft (raw, json) Hash identifier: 8W3m8Ly0qTNiVpNSDOPwULFmCky6aSJIMG553sDdj8U= Subject key identifier: 83:CC:F6:0A:F0:9F:45:19:90:D4:B7:AE:1E:A1:83:78:B6:32:ED:21 Authority key identifier: 02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F Certificate issuer: /CN=A91BA5BA/serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft Manifest number: 0344 Signing time: Thu 03 Apr 2025 01:05:33 +0000 Manifest this update: Thu 03 Apr 2025 01:05:33 +0000 Manifest next update: Thu 10 Apr 2025 01:05:33 +0000 Files and hashes: 1: Aqo6dsRZSXsbRfJukESsxvLoBE8.crl (hash: 1Cttvs93NwsiG3dz80OiYM2t/IINz6qBTjynL6QNrzA=) 2: 87F2D334F2D811EC8F663D52C4F9AE02.roa (hash: /NuTqSUBTeFJ9CyVzXuBIUWT5gpveEGDRyxNvLNEQIM=) 3: 5FFA5548B5A311EEA95C5732C4F9AE02.roa (hash: GQNcpw13U6rTwcbD2+x10d2Oo9BkdgjUG3Bpk2yiXDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA5BA Validity Not Before: Apr 3 01:05:33 2025 GMT Not After : Apr 10 01:05:33 2025 GMT Subject: CN=67eddedd-e96d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:37:48:d6:51:f5:ae:5b:99:8e:ed:c5:24: d9:bb:06:67:aa:ed:15:1d:aa:72:ed:ae:4d:55:c3: c9:23:5f:8d:34:37:7c:fe:12:02:d6:ec:0f:d8:04: 9d:22:51:ab:57:0c:98:fd:ce:55:22:cc:c4:53:e9: fe:ba:2e:dd:29:84:c0:67:1b:45:ea:67:09:f6:b9: a1:38:7c:85:1c:e1:f4:23:22:3b:a9:e3:31:2c:47: 81:a3:28:60:ba:6f:ad:81:b0:43:b5:9c:f4:fc:19: e3:ae:89:47:0f:dc:aa:6a:92:03:71:32:02:0e:30: 23:c2:fe:2a:30:ed:c7:2c:12:a7:0e:88:dd:b2:6a: c5:d5:7b:2f:3f:28:4d:74:6b:ab:0b:47:b7:1a:2b: 46:c9:48:9b:7c:f6:43:42:e2:24:b9:45:13:6a:fd: 11:cf:3a:22:a6:01:e5:db:4b:b0:f2:09:10:2c:7f: 39:11:5c:40:62:49:41:fd:0b:ee:42:e5:c4:e9:71: b6:5a:a0:41:9d:b4:d7:5e:c2:9c:19:40:a7:1e:08: 36:44:f2:fd:d8:eb:34:e5:91:7b:86:3e:57:4c:fe: 57:05:db:cf:a7:00:55:7a:41:26:f9:e4:22:84:ce: e2:92:c6:4d:ae:60:13:76:65:ad:74:c2:40:d1:1c: 31:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CC:F6:0A:F0:9F:45:19:90:D4:B7:AE:1E:A1:83:78:B6:32:ED:21 X509v3 Authority Key Identifier: keyid:02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:82:36:8d:e6:45:4d:5e:85:39:cd:6a:e3:30:54:f1:cc:3e: 81:bc:ef:c1:c6:97:d2:c1:34:05:32:19:64:e7:b0:27:03:29: 4e:c5:71:8f:d3:8d:81:1a:6b:cb:e8:42:5c:a5:25:de:a3:d1: 35:82:b1:03:e3:67:65:bf:52:78:4c:76:68:0c:18:ad:d5:3e: 26:ca:0d:5c:ce:44:fd:8d:9d:3f:40:89:91:d3:51:db:5a:10: c5:94:85:58:35:10:c0:d6:49:ba:82:bc:3b:a7:68:e9:9a:87: 21:e7:74:45:79:a0:a6:4d:e7:d0:43:c9:49:91:ed:56:d8:85: 5d:b9:cd:c4:0a:01:04:49:e0:7f:d1:81:1b:99:ac:38:89:57: 76:21:c7:d5:c9:e0:55:1d:fa:75:d0:09:e5:f1:51:51:23:e2: c3:34:a9:49:95:b7:c2:a1:e8:32:3f:89:3b:f7:38:58:91:3d: 63:82:22:2b:02:ca:d1:94:85:f3:82:49:67:e1:06:46:64:17: 67:52:d0:1b:d1:74:e9:16:6f:c8:6a:d1:83:9b:21:28:e8:e3: a0:8b:3c:5c:46:3b:d6:64:22:69:ab:3c:c6:dc:8b:1f:32:aa: 8d:a7:7e:80:7a:7d:38:38:b2:bf:b3:a3:78:95:f3:46:ec:ff: 90:6e:da:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE1QkExMTAvBgNVBAUTKDAyQUEzQTc2QzQ1OTQ5N0IxQjQ1RjI2RTkwNDRBQ0M2 RjJFODA0NEYwHhcNMjUwNDAzMDEwNTMzWhcNMjUwNDEwMDEwNTMzWjAYMRYwFAYD VQQDEw02N2VkZGVkZC1lOTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgs3SNZR9a5bmY7txSTZuwZnqu0VHapy7a5NVcPJI1+NNDd8/hIC1uwP2ASd IlGrVwyY/c5VIszEU+n+ui7dKYTAZxtF6mcJ9rmhOHyFHOH0IyI7qeMxLEeBoyhg um+tgbBDtZz0/BnjrolHD9yqapIDcTICDjAjwv4qMO3HLBKnDojdsmrF1XsvPyhN dGurC0e3GitGyUibfPZDQuIkuUUTav0RzzoipgHl20uw8gkQLH85EVxAYklB/Qvu QuXE6XG2WqBBnbTXXsKcGUCnHgg2RPL92Os05ZF7hj5XTP5XBdvPpwBVekEm+eQi hM7iksZNrmATdmWtdMJA0Rwx8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPM9grw n0UZkNS3rh6hg3i2Mu0hMB8GA1UdIwQYMBaAFAKqOnbEWUl7G0XybpBErMby6ARP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTVCQS80MzI2Q0JDMEI3 Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNYc2JSZkp1a0VTc3h2TG9C RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxbzZkc1JaU1hzYlJmSnVrRVNzeHZMb0JFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTVCQS80MzI2Q0JDMEI3Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNY c2JSZkp1a0VTc3h2TG9CRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCgjaN5kVNXoU5zWrjMFTxzD6BvO/BxpfSwTQFMhlk57AnAylOxXGP 042BGmvL6EJcpSXeo9E1grED42dlv1J4THZoDBit1T4myg1czkT9jZ0/QImR01Hb WhDFlIVYNRDA1km6grw7p2jpmoch53RFeaCmTefQQ8lJke1W2IVduc3ECgEESeB/ 0YEbmaw4iVd2IcfVyeBVHfp10Anl8VFRI+LDNKlJlbfCoegyP4k79zhYkT1jgiIr AsrRlIXzgkln4QZGZBdnUtAb0XTpFm/IatGDmyEo6OOgizxcRjvWZCJpqzzG3Isf MqqNp36Aen04OLK/s6N4lfNG7P+QbtpD -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:28 2025 by rpki-client