$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft File: redjNI0CWa0SzYi3ZNOYy4rHQMk.mft (raw, json) Hash identifier: 60Klb8zsFpRHnxDxr4QR1Kho0EFnCySTPk3nXrR+Voo= Subject key identifier: 63:07:7F:55:6C:9A:27:D2:F1:BA:F8:76:6A:7F:B4:E5:45:DE:60:C3 Authority key identifier: AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 Certificate issuer: /CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft Manifest number: 05C2 Signing time: Wed 02 Apr 2025 23:03:47 +0000 Manifest this update: Wed 02 Apr 2025 23:03:46 +0000 Manifest next update: Wed 09 Apr 2025 23:03:46 +0000 Files and hashes: 1: redjNI0CWa0SzYi3ZNOYy4rHQMk.crl (hash: 5SwtX+0PxYLz+2W84y98Iv1N+HwDKil8gLzAvU0bFJ4=) 2: B69C27DCB6D711EB9D603F7DC4F9AE02.roa (hash: OWf8PDQ8WMymcLSHEfIQAksI7XQ+plK8c+CWI6STWXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCC9 Validity Not Before: Apr 2 23:03:46 2025 GMT Not After : Apr 9 23:03:46 2025 GMT Subject: CN=67edc253-c1da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ba:40:9e:73:fc:00:e0:5d:f6:4d:35:10:58: c1:e2:4f:dd:82:85:e5:84:d5:34:a6:d8:b8:a2:56: 20:06:11:70:4f:2f:35:e8:d8:2a:58:75:19:41:b4: 73:ce:bc:64:89:d9:f8:af:62:93:af:59:53:61:91: d9:7b:68:dc:bd:ec:7d:bd:82:f6:1e:8e:aa:f5:08: 98:13:da:3f:40:6e:4e:8d:e9:2d:7c:5e:e4:6b:6f: a4:2c:65:07:0b:08:07:a3:db:b7:f2:af:83:bb:9e: 10:6b:b8:e5:46:29:87:76:d2:3b:08:9a:18:72:b3: f2:6c:13:27:62:18:25:c1:e2:f9:d6:fb:42:d7:7e: 64:25:e2:86:dc:96:a2:70:2a:9b:b7:e3:c7:bc:08: d0:bf:79:f2:07:26:74:da:f0:ee:01:3b:a4:89:c0: 9d:bf:07:8a:d6:c5:3a:16:1b:cc:42:f6:0f:31:bb: 22:2a:8a:65:80:12:d5:d6:5e:99:cf:6f:28:91:7b: 1d:b9:52:8a:35:66:06:80:b6:c2:c5:ca:ff:85:0d: d6:85:23:b3:af:c6:c9:8c:2b:f6:d0:77:a6:92:24: 08:21:32:06:79:45:ce:55:6e:a7:41:35:4c:f2:13: 63:07:a8:48:6d:9c:e6:29:20:34:8e:03:a5:a4:12: fc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:07:7F:55:6C:9A:27:D2:F1:BA:F8:76:6A:7F:B4:E5:45:DE:60:C3 X509v3 Authority Key Identifier: keyid:AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7d:a2:45:1c:6f:e1:75:77:44:0f:24:45:fc:d2:1e:e0:dd: 70:c2:9f:35:18:a3:99:86:44:3f:4b:70:39:e8:45:88:2f:7f: af:6b:13:cd:6c:e0:16:d2:f8:5b:b3:de:26:c5:2b:1d:6a:65: ab:10:cf:51:0d:fc:45:7c:f4:64:ef:ca:c5:77:e9:76:0b:89: a1:23:aa:ac:80:fd:32:64:6f:a0:d2:4f:67:93:94:bb:06:fe: 84:ba:2b:1f:09:bd:77:52:2d:80:11:3f:50:bf:dd:16:04:3b: 8e:c9:c1:08:0e:e7:ff:72:45:94:f6:8e:79:86:18:2e:3b:90: e7:73:9e:22:db:a6:60:46:f6:83:7a:96:b4:4d:72:b2:99:4b: c6:6b:93:82:da:ac:1f:68:da:4d:4e:27:b0:ff:e1:4c:0b:5b: ad:ab:1c:84:96:44:70:26:ac:9d:66:90:74:e4:1d:d2:97:19: 20:a4:1d:61:97:44:65:00:62:57:39:ca:12:52:bd:5a:53:0b: e9:04:8b:6e:92:54:71:a2:81:37:30:bb:5e:a2:14:48:bd:d1: 30:f8:0c:f6:e7:a9:16:08:d0:1f:eb:99:8a:4e:d1:47:c7:85: 35:39:6f:dd:fa:c5:40:7a:57:0f:bd:fd:bf:8f:00:1c:66:8b: f7:3f:2a:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQzkxMTAvBgNVBAUTKEFERTc2MzM0OEQwMjU5QUQxMkNEODhCNzY0RDM5OENC OEFDNzQwQzkwHhcNMjUwNDAyMjMwMzQ2WhcNMjUwNDA5MjMwMzQ2WjAYMRYwFAYD VQQDEw02N2VkYzI1My1jMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLpAnnP8AOBd9k01EFjB4k/dgoXlhNU0pti4olYgBhFwTy816NgqWHUZQbRz zrxkidn4r2KTr1lTYZHZe2jcvex9vYL2Ho6q9QiYE9o/QG5OjektfF7ka2+kLGUH CwgHo9u38q+Du54Qa7jlRimHdtI7CJoYcrPybBMnYhglweL51vtC135kJeKG3Jai cCqbt+PHvAjQv3nyByZ02vDuATukicCdvweK1sU6FhvMQvYPMbsiKoplgBLV1l6Z z28okXsduVKKNWYGgLbCxcr/hQ3WhSOzr8bJjCv20HemkiQIITIGeUXOVW6nQTVM 8hNjB6hIbZzmKSA0jgOlpBL8BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMHf1Vs mifS8br4dmp/tOVF3mDDMB8GA1UdIwQYMBaAFK3nYzSNAlmtEs2It2TTmMuKx0DJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNDOS9EMzBCMTVDMEI2 Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dhMFN6WWkzWk5PWXk0ckhR TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JlZGpOSTBDV2EwU3pZaTNaTk9ZeTRySFFNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNDOS9EMzBCMTVDMEI2Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dh MFN6WWkzWk5PWXk0ckhRTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBofaJFHG/hdXdEDyRF/NIe4N1wwp81GKOZhkQ/S3A56EWIL3+vaxPN bOAW0vhbs94mxSsdamWrEM9RDfxFfPRk78rFd+l2C4mhI6qsgP0yZG+g0k9nk5S7 Bv6EuisfCb13Ui2AET9Qv90WBDuOycEIDuf/ckWU9o55hhguO5Dnc54i26ZgRvaD epa0TXKymUvGa5OC2qwfaNpNTiew/+FMC1utqxyElkRwJqydZpB05B3SlxkgpB1h l0RlAGJXOcoSUr1aUwvpBItuklRxooE3MLteohRIvdEw+Az256kWCNAf65mKTtFH x4U1OW/d+sVAelcPvf2/jwAcZov3PyoI -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:49 2025 by rpki-client