$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: /EMpZ6UyaXFL7YpLictjJZJkKLnpKaWO936pg5mUli8= Subject key identifier: D5:03:6E:C1:31:16:7C:4E:36:1B:B6:1D:1E:20:EF:24:AC:9D:2A:B7 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: B7 Signing time: Sat 05 Apr 2025 05:24:43 +0000 Manifest this update: Sat 05 Apr 2025 05:24:42 +0000 Manifest next update: Sat 12 Apr 2025 05:24:42 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: UuWfOg3DFVlfEvP6DFfXJq75TFEBs5lusE1WdueRqfs=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F Validity Not Before: Apr 5 05:24:42 2025 GMT Not After : Apr 12 05:24:42 2025 GMT Subject: CN=67f0be9a-4de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:d0:b6:ff:2d:da:8a:05:96:02:51:52:3f: ec:2a:65:36:2e:69:3b:1c:12:b7:6a:2d:54:18:c6: 43:fe:82:a8:a5:c6:1b:bf:f7:b6:26:ad:be:b8:b3: 9e:01:2c:6a:9c:56:f4:38:bd:2e:53:2f:b7:90:c4: 4d:f3:17:3d:19:9c:ff:c7:24:83:b1:b6:23:10:0a: 1d:f5:bd:8d:88:c6:c4:91:8b:ea:e1:a2:23:7d:7b: 0e:37:69:46:c1:13:c0:f3:15:7f:8c:a8:3c:af:94: 2e:84:5a:81:24:1e:35:92:2c:9c:a4:f2:32:68:8a: 62:88:33:a4:25:31:20:66:d3:b7:4d:8f:7b:58:ef: 2b:7e:a8:90:81:f8:bb:49:29:69:d1:00:15:8c:46: 8c:3d:db:cd:54:f7:a0:23:9c:83:ab:ec:74:da:71: e2:42:06:45:55:29:af:27:04:de:cd:fb:c2:1b:1e: d8:b4:df:b4:b5:dc:6d:46:43:7c:1f:b5:93:e8:8b: c6:9a:f5:b7:4b:c9:9c:71:b3:dd:e8:68:d1:de:1b: f3:4e:3e:c8:67:08:31:72:87:9d:19:b7:a0:cf:f7: 5e:ff:dd:c2:c5:53:3c:0d:db:f0:79:94:f0:33:eb: 78:2b:43:c8:10:55:2c:5b:d9:d6:65:80:0f:31:4a: 29:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:03:6E:C1:31:16:7C:4E:36:1B:B6:1D:1E:20:EF:24:AC:9D:2A:B7 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:25:ca:93:c2:b0:57:3b:b5:17:41:47:b8:49:a1:00:f6:96: 8a:18:d6:3b:57:e1:26:ac:2d:da:6e:50:8a:55:86:dc:0a:55: 21:eb:25:fe:93:16:3b:8f:23:cc:e1:b8:60:eb:58:3d:4a:d4: 6e:61:b0:f3:0e:57:ad:29:69:34:1c:71:9b:43:d1:22:5b:aa: 5f:d4:fc:2f:e7:ff:45:dc:e6:de:63:60:95:3d:73:2a:cb:c9: e5:1b:ce:d4:5f:a2:80:6c:52:a3:0f:55:04:d5:6a:26:8f:22: 1d:1b:f1:84:fc:ab:f7:f1:78:db:12:fe:ba:94:e6:88:a6:8e: 8d:58:f0:a8:32:61:53:c6:be:0f:9c:9c:6d:a4:29:16:5c:e6: 18:4d:81:6e:d4:4d:0b:78:2b:b9:f6:ce:74:77:9a:c0:4f:8f: 38:24:34:2b:17:81:d0:b0:48:e8:08:84:43:b2:84:7d:a1:dd: 37:76:5c:53:14:12:05:7d:35:21:1d:8b:1b:04:54:b8:2a:e3: 20:21:71:18:d5:fe:95:28:db:99:80:67:ee:c6:6e:fb:2a:19: 1a:65:fb:32:e1:3b:b6:c2:1f:2d:2b:7b:17:8c:3b:13:a0:f8: 4a:46:a1:23:af:ae:a4:01:70:3c:23:db:ec:78:6f:35:39:14: c0:f7:b4:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUwNDA1MDUyNDQyWhcNMjUwNDEyMDUyNDQyWjAYMRYwFAYD VQQDEw02N2YwYmU5YS00ZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6LQtv8t2ooFlgJRUj/sKmU2Lmk7HBK3ai1UGMZD/oKopcYbv/e2Jq2+uLOe ASxqnFb0OL0uUy+3kMRN8xc9GZz/xySDsbYjEAod9b2NiMbEkYvq4aIjfXsON2lG wRPA8xV/jKg8r5QuhFqBJB41kiycpPIyaIpiiDOkJTEgZtO3TY97WO8rfqiQgfi7 SSlp0QAVjEaMPdvNVPegI5yDq+x02nHiQgZFVSmvJwTezfvCGx7YtN+0tdxtRkN8 H7WT6IvGmvW3S8mccbPd6GjR3hvzTj7IZwgxcoedGbegz/de/93CxVM8DdvweZTw M+t4K0PIEFUsW9nWZYAPMUop3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUDbsEx FnxONhu2HR4g7ySsnSq3MB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYJcqTwrBXO7UXQUe4SaEA9paKGNY7V+EmrC3ablCKVYbcClUh6yX+ kxY7jyPM4bhg61g9StRuYbDzDletKWk0HHGbQ9EiW6pf1Pwv5/9F3ObeY2CVPXMq y8nlG87UX6KAbFKjD1UE1WomjyIdG/GE/Kv38XjbEv66lOaIpo6NWPCoMmFTxr4P nJxtpCkWXOYYTYFu1E0LeCu59s50d5rAT484JDQrF4HQsEjoCIRDsoR9od03dlxT FBIFfTUhHYsbBFS4KuMgIXEY1f6VKNuZgGfuxm77KhkaZfsy4Tu2wh8tK3sXjDsT oPhKRqEjr66kAXA8I9vseG81ORTA97SQ -----END CERTIFICATE-----Generated at Sun Apr 6 09:04:57 2025 by rpki-client