$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: YdjcAq1fh6nzYKv/Dsc08bb+qv5zgU4fMuElMwY3qEU= Subject key identifier: 11:7C:8F:36:0A:F2:2D:50:88:2A:B1:9E:3F:3E:28:99:D0:F2:CB:97 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 0175 Signing time: Sat 05 Apr 2025 03:13:13 +0000 Manifest this update: Sat 05 Apr 2025 03:13:13 +0000 Manifest next update: Sat 12 Apr 2025 03:13:13 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: ZIj2rFvSVdEkknryy5rlRcM8PoEg5m2zvT8u8lf4QDU=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: L46j7D5JqRMEtMeerHLvKLCnSiPpfI4fJUlK6SBHvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677 Validity Not Before: Apr 5 03:13:13 2025 GMT Not After : Apr 12 03:13:13 2025 GMT Subject: CN=67f09fc9-0122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e9:68:a0:01:7d:89:ad:ac:eb:d7:83:13:c8: 1d:d5:55:c5:9a:84:f0:8a:0a:f7:bd:ad:5b:aa:b3: be:d1:00:a0:dd:29:73:ab:3d:9b:b6:13:7a:02:96: 32:e6:45:bb:a6:46:8e:b7:7d:9f:10:36:de:93:13: 61:98:f2:4d:5f:52:5a:9c:50:74:d9:98:f6:97:a9: 5e:49:cd:f8:04:9b:d7:5b:4f:e4:e1:c6:ad:89:17: 0a:46:7f:d2:37:41:ad:41:60:ba:59:99:73:a4:ba: f8:f8:ef:75:27:cb:93:ad:a3:1e:b9:71:c1:74:42: 61:86:78:7a:b2:a9:83:35:58:50:ec:ac:d0:41:9d: c9:42:69:6f:7c:06:30:92:b2:f0:1b:ce:26:dd:48: bd:d0:e8:03:a5:6d:2d:22:96:cf:47:4c:18:72:1d: e6:50:6a:9a:b1:12:4c:07:b0:4a:60:aa:e7:e5:96: e9:ef:80:b0:8e:62:e6:04:a6:1d:c0:41:43:8a:f3: 07:26:de:de:81:ba:e2:6d:ae:fd:14:c7:0a:c9:38: 1c:e7:27:ce:8a:df:ec:17:c1:01:5e:0d:51:10:71: 51:28:9c:77:84:60:44:db:25:ae:10:28:0a:ad:7a: 0d:76:ba:1a:a6:fc:04:fc:f3:73:50:10:9c:dc:3d: 8c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:7C:8F:36:0A:F2:2D:50:88:2A:B1:9E:3F:3E:28:99:D0:F2:CB:97 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:aa:e8:2e:78:22:3b:21:fe:a1:20:b2:13:ed:73:43:f5:fb: bb:ab:25:1a:f5:d0:bb:ae:28:d7:48:be:f8:d9:f1:76:8c:03: f0:1d:d5:84:0f:85:74:5a:fd:ce:7f:a0:60:ae:7c:26:ed:2b: 09:4f:0c:20:1c:44:8e:80:02:08:9c:af:c2:5b:c5:a3:10:14: a9:f7:34:63:10:8c:d6:11:c7:7a:92:53:13:ce:30:5c:14:22: 73:d1:e6:9c:c0:36:42:81:2a:a8:79:21:ea:fe:18:a7:a4:66: cc:41:b5:08:db:c7:e6:87:97:9e:97:58:6a:10:ed:38:81:b4: d3:5b:e4:af:82:ec:c9:f5:50:96:14:b3:eb:1a:f6:ac:3e:b9: 58:e9:23:35:c3:72:ac:c3:ab:e4:60:f5:01:1d:34:6f:66:5a: 69:fe:38:08:ac:26:c9:6a:f9:f6:fc:3f:25:db:63:be:69:e9: 22:34:90:1b:91:d0:98:ce:69:fa:e1:69:30:68:cb:8c:9c:cd: d4:7a:32:2a:67:0e:8d:89:52:e1:d7:6c:c3:e8:86:90:d2:c3: f4:90:e2:65:cd:87:7b:0a:e3:48:a4:2d:f0:4a:7d:fd:c3:8e: cd:84:b0:04:8b:01:c3:59:1c:0f:d0:ed:df:22:66:a5:7e:89: d1:c8:59:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNDA1MDMxMzEzWhcNMjUwNDEyMDMxMzEzWjAYMRYwFAYD VQQDEw02N2YwOWZjOS0wMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ulooAF9ia2s69eDE8gd1VXFmoTwigr3va1bqrO+0QCg3Slzqz2bthN6ApYy 5kW7pkaOt32fEDbekxNhmPJNX1JanFB02Zj2l6leSc34BJvXW0/k4catiRcKRn/S N0GtQWC6WZlzpLr4+O91J8uTraMeuXHBdEJhhnh6sqmDNVhQ7KzQQZ3JQmlvfAYw krLwG84m3Ui90OgDpW0tIpbPR0wYch3mUGqasRJMB7BKYKrn5Zbp74CwjmLmBKYd wEFDivMHJt7egbriba79FMcKyTgc5yfOit/sF8EBXg1REHFRKJx3hGBE2yWuECgK rXoNdroapvwE/PNzUBCc3D2MAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBF8jzYK 8i1QiCqxnj8+KJnQ8suXMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrqugueCI7If6hILIT7XND9fu7qyUa9dC7rijXSL742fF2jAPwHdWE D4V0Wv3Of6Bgrnwm7SsJTwwgHESOgAIInK/CW8WjEBSp9zRjEIzWEcd6klMTzjBc FCJz0eacwDZCgSqoeSHq/hinpGbMQbUI28fmh5eel1hqEO04gbTTW+SvguzJ9VCW FLPrGvasPrlY6SM1w3Ksw6vkYPUBHTRvZlpp/jgIrCbJavn2/D8l22O+aekiNJAb kdCYzmn64WkwaMuMnM3UejIqZw6NiVLh12zD6IaQ0sP0kOJlzYd7CuNIpC3wSn39 w47NhLAEiwHDWRwP0O3fImalfonRyFnj -----END CERTIFICATE-----Generated at Sun Apr 6 17:58:35 2025 by rpki-client