$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: L3jXkIIrXTy/wMSps0L2pp6+0JmxTiHi44gigebRPpo= Subject key identifier: 38:4F:0D:23:38:5F:11:EC:A3:47:BB:B1:0C:EE:76:1D:9B:0B:E0:8E Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 09FD Signing time: Fri 28 Mar 2025 20:05:57 +0000 Manifest this update: Fri 28 Mar 2025 20:05:56 +0000 Manifest next update: Fri 04 Apr 2025 20:05:56 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: 6ywiAZcwlu4k8KjAHlgOPol4tuvpt0eofYpurR8puNA=) 2: 11502BAC719111EAAC505266C4F9AE02.roa (hash: RDM7Lb5HfvMFUtS/P2rwwBWdJyjHtFv0PrhdCwgVU6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE Validity Not Before: Mar 28 20:05:56 2025 GMT Not After : Apr 4 20:05:56 2025 GMT Subject: CN=67e70125-d37b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:2c:fa:56:ca:13:60:0d:bd:e1:63:8b:f9: 13:6d:f3:d9:6a:d1:1f:b4:9e:ce:47:4f:18:af:a0: a5:9f:39:26:db:51:de:2b:bd:b8:0c:d1:23:a0:3f: 84:da:43:02:d8:21:42:b7:40:68:98:8c:77:42:d0: 05:79:81:35:2f:91:34:e8:ba:53:c0:ee:a8:81:ad: 2b:f0:08:14:0d:15:bd:68:e5:31:28:59:8b:dd:17: 4b:23:9c:73:b2:81:1a:0e:a0:69:b8:1f:c4:47:df: 0e:93:8c:7d:e6:f2:1a:ed:ad:17:a4:84:ee:2c:3a: 37:94:dd:56:2f:72:e3:be:f9:61:f6:2e:2e:3a:9d: 91:4e:89:f7:19:03:3a:1e:a7:41:ed:92:ad:f7:bb: cd:7e:24:9b:17:01:8a:b9:45:04:ef:7f:d1:ae:11: 1f:dd:bc:a1:85:bc:40:ec:08:ad:6b:74:8d:9c:ea: 74:82:4d:e1:57:fb:3b:b7:38:79:f9:b4:6a:c8:4c: c6:be:84:11:96:95:8f:41:c3:4f:3e:f2:e2:97:74: ee:fa:b6:5a:38:6a:84:58:6e:fb:1b:cf:04:aa:6d: 81:64:eb:18:b5:19:b3:7f:0f:86:50:41:1c:f4:ad: 05:c7:8e:d0:fa:90:39:72:0f:95:61:ad:13:60:38: df:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:4F:0D:23:38:5F:11:EC:A3:47:BB:B1:0C:EE:76:1D:9B:0B:E0:8E X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e7:52:8f:46:4e:39:84:f4:a5:f7:82:93:74:64:73:bf:45: ee:93:39:42:56:da:fd:46:ad:05:e2:fd:8f:41:29:86:f2:49: 13:93:5a:8d:e8:1f:bc:59:26:a9:cf:a0:20:2f:97:1c:e4:c7: 9f:a9:ab:63:93:dc:72:7d:c1:fc:96:70:a0:7c:d5:5f:ba:c7: 23:1d:8a:ac:ac:d8:fb:65:e6:b8:17:05:e1:b4:96:c3:e2:87: c8:bd:69:77:60:89:4f:0e:ba:eb:eb:9a:93:81:c3:9d:fc:58: a5:b5:42:e0:a7:79:07:1a:4a:f3:49:39:32:ce:89:0a:95:0e: 38:89:0c:98:3a:19:3a:fa:a5:98:74:e8:4f:76:b3:c8:b3:b3: 04:b6:87:78:0f:f5:c6:57:e4:26:c8:91:8e:7c:3c:e4:61:61: a8:5e:90:54:e7:b9:28:44:bc:44:e4:2f:c2:39:a1:91:70:31: a3:38:8f:f1:82:58:a1:65:e5:09:f6:4f:d8:e1:f8:b3:e9:67: 0a:54:ea:7b:e7:a2:69:63:83:2d:fd:90:3d:0e:74:1c:11:4d: c1:a3:93:29:22:22:0c:ca:8f:9d:ac:09:aa:00:38:2c:ef:7f: b6:5d:19:ce:3d:4a:c2:5c:ee:13:f9:19:02:8b:19:84:8d:a8: 78:5f:e7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjUwMzI4MjAwNTU2WhcNMjUwNDA0MjAwNTU2WjAYMRYwFAYD VQQDEw02N2U3MDEyNS1kMzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKss+lbKE2ANveFji/kTbfPZatEftJ7OR08Yr6Clnzkm21HeK724DNEjoD+E 2kMC2CFCt0BomIx3QtAFeYE1L5E06LpTwO6oga0r8AgUDRW9aOUxKFmL3RdLI5xz soEaDqBpuB/ER98Ok4x95vIa7a0XpITuLDo3lN1WL3Ljvvlh9i4uOp2RTon3GQM6 HqdB7ZKt97vNfiSbFwGKuUUE73/RrhEf3byhhbxA7Aita3SNnOp0gk3hV/s7tzh5 +bRqyEzGvoQRlpWPQcNPPvLil3Tu+rZaOGqEWG77G88Eqm2BZOsYtRmzfw+GUEEc 9K0Fx47Q+pA5cg+VYa0TYDjfcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhPDSM4 XxHso0e7sQzudh2bC+COMB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/51KPRk45hPSl94KTdGRzv0XukzlCVtr9Rq0F4v2PQSmG8kkTk1qN 6B+8WSapz6AgL5cc5Mefqatjk9xyfcH8lnCgfNVfuscjHYqsrNj7Zea4FwXhtJbD 4ofIvWl3YIlPDrrr65qTgcOd/FiltULgp3kHGkrzSTkyzokKlQ44iQyYOhk6+qWY dOhPdrPIs7MEtod4D/XGV+QmyJGOfDzkYWGoXpBU57koRLxE5C/COaGRcDGjOI/x glihZeUJ9k/Y4fiz6WcKVOp756JpY4Mt/ZA9DnQcEU3Bo5MpIiIMyo+drAmqADgs 73+2XRnOPUrCXO4T+RkCixmEjah4X+fQ -----END CERTIFICATE-----Generated at Fri Apr 4 18:17:22 2025 by rpki-client