$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: WZiUQjtdmMlWUwKoQ7EP54LMcBCgkcfCP9adMSuOUX0= Subject key identifier: B8:A9:57:1C:0D:53:17:29:EE:2D:59:85:31:A0:89:BC:5C:B8:C9:15 Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: B3 Signing time: Sat 05 Apr 2025 05:19:43 +0000 Manifest this update: Sat 05 Apr 2025 05:19:43 +0000 Manifest next update: Sat 12 Apr 2025 05:19:43 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: 1xuRAhDOBv8QhJif9P5ynEWq1Pq2+b911b5f2ztNpTI=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: dCFmmnGaeXc/Xyg5+AqlJy4nQ5RSSq2JLasc/NAHwbg=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: Om1Rc8FPcByfXN7P7h9FuPt4QrBbGaM+Ndfd120fzOc=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: KPY2wegfaa3tnC/Njnc64HaModZkMYm0j/OEMDfIXmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93 Validity Not Before: Apr 5 05:19:43 2025 GMT Not After : Apr 12 05:19:43 2025 GMT Subject: CN=67f0bd6f-28ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:07:d0:45:8a:4b:91:58:07:7b:c4:ee:74:28: 06:c3:59:e3:ad:3e:78:72:0c:38:74:85:b0:49:76: a9:e4:32:d3:99:d7:2b:a9:a4:e6:50:bd:5f:07:ad: 94:83:4a:a7:6a:4a:f9:3b:84:20:c5:ac:8f:42:d7: d0:a5:fe:f2:6f:c4:af:b0:7b:5f:02:91:a5:a3:e6: 97:4d:01:34:5d:36:b4:61:15:0a:18:5b:4d:73:c8: 7b:76:c9:e5:df:3d:04:89:b3:88:56:81:41:13:be: 42:f7:ea:de:0b:7b:49:43:03:bd:c5:3d:ca:17:05: e2:48:a2:6f:f7:de:86:4f:f0:6a:8d:d7:70:bd:13: cb:f3:97:7a:c3:7d:d9:9e:be:17:17:08:86:ff:dc: 38:4c:7f:ee:cc:d4:b3:ad:ff:97:1d:88:6c:90:f3: ba:55:f8:4b:74:49:c0:6e:79:c4:71:57:dd:1e:44: 6f:6f:c9:27:fd:6b:21:d6:98:c2:f5:5b:6b:d9:cc: 94:44:a7:32:bf:7f:36:2f:21:a5:c4:ce:1c:33:4c: 64:56:58:8f:da:79:33:7a:e0:a5:da:dc:d5:a5:ac: 10:53:b4:c9:b8:12:ab:f9:56:ed:46:62:67:45:6d: b9:8f:cc:79:56:08:0a:e4:c3:b1:85:6c:b9:5e:7d: cf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A9:57:1C:0D:53:17:29:EE:2D:59:85:31:A0:89:BC:5C:B8:C9:15 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:fc:53:8c:92:69:18:f0:b2:c4:63:7c:a4:f5:42:ae:25:84: 78:6b:64:8c:64:83:f5:93:86:d3:e0:53:a1:05:b1:d9:de:96: 65:79:b5:7c:30:ee:67:29:49:04:d7:ec:77:f0:5b:59:97:90: a6:b7:e9:17:69:f0:39:68:1f:46:ac:af:f6:43:d9:45:eb:d7: c1:c1:7b:87:4b:b6:32:e0:7d:ff:9c:d2:71:12:41:b4:cb:a5: a7:fe:c0:da:4b:c1:7b:17:be:dd:a4:26:12:cc:d8:a6:3f:81: 7a:48:f6:af:22:a2:44:c0:22:ea:d6:f9:de:e4:54:d7:ee:d8: bb:48:07:7f:bc:37:f9:e5:8f:fc:34:49:ae:28:69:3d:fc:b6: 01:fc:f7:23:40:1a:b2:ae:07:10:cf:17:64:57:8b:a7:be:87: 94:12:ce:a3:42:4e:1b:24:c6:47:cb:4f:9a:81:7f:12:17:64: 60:f4:7d:6f:13:7b:75:4e:7e:1c:b6:64:33:09:35:a3:be:21: 36:61:80:79:08:9c:74:ff:f8:c9:5c:68:68:5e:a6:f6:bc:f4: 37:42:87:13:2a:d4:ca:a6:50:96:57:1e:d9:bf:7b:25:29:09: 79:d7:db:db:ac:bb:dc:9c:db:a9:c8:fe:33:65:3f:98:1e:5d: 3e:e1:c5:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNDA1MDUxOTQzWhcNMjUwNDEyMDUxOTQzWjAYMRYwFAYD VQQDEw02N2YwYmQ2Zi0yOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugfQRYpLkVgHe8TudCgGw1njrT54cgw4dIWwSXap5DLTmdcrqaTmUL1fB62U g0qnakr5O4QgxayPQtfQpf7yb8SvsHtfApGlo+aXTQE0XTa0YRUKGFtNc8h7dsnl 3z0EibOIVoFBE75C9+reC3tJQwO9xT3KFwXiSKJv996GT/BqjddwvRPL85d6w33Z nr4XFwiG/9w4TH/uzNSzrf+XHYhskPO6VfhLdEnAbnnEcVfdHkRvb8kn/Wsh1pjC 9Vtr2cyURKcyv382LyGlxM4cM0xkVliP2nkzeuCl2tzVpawQU7TJuBKr+VbtRmJn RW25j8x5VggK5MOxhWy5Xn3PUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLipVxwN Uxcp7i1ZhTGgibxcuMkVMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp/FOMkmkY8LLEY3yk9UKuJYR4a2SMZIP1k4bT4FOhBbHZ3pZlebV8 MO5nKUkE1+x38FtZl5Cmt+kXafA5aB9GrK/2Q9lF69fBwXuHS7Yy4H3/nNJxEkG0 y6Wn/sDaS8F7F77dpCYSzNimP4F6SPavIqJEwCLq1vne5FTX7ti7SAd/vDf55Y/8 NEmuKGk9/LYB/PcjQBqyrgcQzxdkV4unvoeUEs6jQk4bJMZHy0+agX8SF2Rg9H1v E3t1Tn4ctmQzCTWjviE2YYB5CJx0//jJXGhoXqb2vPQ3QocTKtTKplCWVx7Zv3sl KQl519vbrLvcnNupyP4zZT+YHl0+4cWi -----END CERTIFICATE-----Generated at Sat Apr 5 19:09:19 2025 by rpki-client