$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft File: 7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft (raw, json) Hash identifier: rl8Uisq4b+XbBARV5pUPNtSE94vf/cvYHeEGNyoyTJw= Subject key identifier: 7A:27:26:9E:00:FF:09:FF:4A:63:CD:E5:FF:75:AB:9E:AA:8A:37:A2 Authority key identifier: EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 Certificate issuer: /CN=A91C0FF9/serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46 Certificate serial: 064E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft Manifest number: 0649 Signing time: Fri 04 Apr 2025 22:38:39 +0000 Manifest this update: Fri 04 Apr 2025 22:38:38 +0000 Manifest next update: Fri 11 Apr 2025 22:38:38 +0000 Files and hashes: 1: 7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl (hash: pew6WprXpFP9pjSskPXAv2sS9yd1GYP4XZ+dUxekL48=) 2: 98536A8A8D1811EBA3DEC15BC4F9AE02.roa (hash: yBiHe4ubd0Yaxe8iEusni96SzNhOMH8U/S+1PM3373k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1614 (0x64e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FF9 Validity Not Before: Apr 4 22:38:38 2025 GMT Not After : Apr 11 22:38:38 2025 GMT Subject: CN=67f05f6f-fa60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6a:94:eb:ca:58:f2:18:4d:79:4f:60:fe:89: 5a:4f:c2:cf:b9:00:ea:ff:2b:5f:42:96:22:56:dd: 4c:8f:b9:93:eb:e4:79:e8:a6:4f:6a:3d:d5:00:8d: 90:79:30:73:21:02:47:88:b2:ca:5f:a1:60:3e:7e: 79:61:65:ca:3c:78:ea:53:cf:38:82:07:1d:53:97: b6:a6:09:a6:f6:ae:89:b1:b5:29:34:1d:45:d0:e0: 72:4c:d4:31:53:a8:69:e3:4a:ba:18:42:9c:56:20: f3:21:32:48:c1:cf:16:97:64:03:8d:44:00:00:71: fc:e6:02:ac:57:8e:59:72:74:84:2f:00:4a:37:8d: f4:36:d7:40:2f:c5:2e:e6:27:b3:3f:b8:25:ba:74: 95:68:5d:cf:f6:2a:56:82:29:fa:01:27:be:6f:9b: 75:70:93:1c:d2:94:7d:5d:b1:e9:c4:3c:85:c8:54: 25:b0:02:f0:1d:e6:6d:91:53:d8:8d:53:04:98:d5: 95:89:1e:53:b4:eb:4d:9b:18:5f:60:fe:13:9a:a0: e0:0e:95:68:ca:71:5b:3c:b7:1d:b7:46:b3:2d:04: 1c:f6:12:29:38:64:89:68:61:61:65:66:9c:14:18: ef:79:66:73:20:a7:23:90:02:6c:67:e7:43:2b:ef: 5a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:27:26:9E:00:FF:09:FF:4A:63:CD:E5:FF:75:AB:9E:AA:8A:37:A2 X509v3 Authority Key Identifier: keyid:EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:44:a2:d8:d1:e2:86:91:e7:73:2e:64:06:a2:94:b4:84:3f: b4:71:dd:d6:e0:ee:af:f9:9a:be:ff:c5:d5:86:9a:f5:e1:a3: 58:c4:f6:cf:80:4d:55:36:68:9a:de:a7:3f:d7:58:77:71:e2: ef:66:78:ff:15:99:34:89:64:22:21:dd:fb:3c:59:02:cc:b0: 2b:73:72:de:97:c7:70:d6:11:08:0a:3f:18:5f:d9:0d:b5:03: fc:8e:12:01:0a:79:54:f7:3e:87:52:62:16:3e:cc:40:eb:a6: f4:99:31:20:9d:01:c4:a4:c6:b0:c9:57:98:e2:ee:49:37:03: 82:b2:37:90:bb:52:75:34:c4:18:ae:ce:41:bb:43:70:77:ed: 3f:01:8a:35:04:06:13:15:1a:b7:ec:c9:b0:46:5c:49:50:b9: ba:54:58:4e:3b:53:ea:70:ac:80:a3:18:5d:11:7b:b7:71:ce: 39:32:2b:c6:c4:fa:2d:df:07:8f:71:11:43:ab:c5:eb:22:ed: 7c:a1:09:87:1a:4b:05:d8:39:1e:dd:fc:2d:52:ce:d5:3f:5b: f1:4d:e2:5b:3f:fc:31:6f:2e:db:b5:8a:d7:3a:6a:b5:e4:e5: 52:45:23:62:5f:02:9f:c3:c6:ae:38:bb:a7:ff:4d:65:fd:3b: 05:9d:e5:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGRjkxMTAvBgNVBAUTKEVFRkQzRTg2QUY3NEY5NDgzNDY0MDE2QjkzNEZDM0VG MTRDODJENDYwHhcNMjUwNDA0MjIzODM4WhcNMjUwNDExMjIzODM4WjAYMRYwFAYD VQQDEw02N2YwNWY2Zi1mYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2qU68pY8hhNeU9g/olaT8LPuQDq/ytfQpYiVt1Mj7mT6+R56KZPaj3VAI2Q eTBzIQJHiLLKX6FgPn55YWXKPHjqU884ggcdU5e2pgmm9q6JsbUpNB1F0OByTNQx U6hp40q6GEKcViDzITJIwc8Wl2QDjUQAAHH85gKsV45ZcnSELwBKN430NtdAL8Uu 5iezP7glunSVaF3P9ipWgin6ASe+b5t1cJMc0pR9XbHpxDyFyFQlsALwHeZtkVPY jVMEmNWViR5TtOtNmxhfYP4TmqDgDpVoynFbPLcdt0azLQQc9hIpOGSJaGFhZWac FBjveWZzIKcjkAJsZ+dDK+9ayQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHonJp4A /wn/SmPN5f91q56qijeiMB8GA1UdIwQYMBaAFO79PoavdPlINGQBa5NPw+8UyC1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZGOS9ERDZBNzY1MDgw Q0UxMUVCOTM1MDE4NjhDNEY5QUUwMi83djAtaHE5MC1VZzBaQUZyazBfRDd4VElM VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd2MC1ocTkwLVVnMFpBRnJrMF9EN3hUSUxVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZGOS9ERDZBNzY1MDgwQ0UxMUVCOTM1MDE4NjhDNEY5QUUwMi83djAtaHE5MC1V ZzBaQUZyazBfRDd4VElMVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuRKLY0eKGkedzLmQGopS0hD+0cd3W4O6v+Zq+/8XVhpr14aNYxPbP gE1VNmia3qc/11h3ceLvZnj/FZk0iWQiId37PFkCzLArc3Lel8dw1hEICj8YX9kN tQP8jhIBCnlU9z6HUmIWPsxA66b0mTEgnQHEpMawyVeY4u5JNwOCsjeQu1J1NMQY rs5Bu0Nwd+0/AYo1BAYTFRq37MmwRlxJULm6VFhOO1PqcKyAoxhdEXu3cc45MivG xPot3wePcRFDq8XrIu18oQmHGksF2Dke3fwtUs7VP1vxTeJbP/wxby7btYrXOmq1 5OVSRSNiXwKfw8auOLun/01l/TsFneUx -----END CERTIFICATE-----Generated at Sat Apr 5 11:28:40 2025 by rpki-client