$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft File: 2vWZnAdAuMks1UA3tpsETNValVg.mft (raw, json) Hash identifier: JaGbn7+J8LPW8X3POWH6vMeHL7kApAOQ9ExpeKlM3kc= Subject key identifier: 4D:71:17:97:17:29:7B:94:05:57:0E:E8:3D:DE:88:E8:C1:4B:31:08 Authority key identifier: DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 Certificate issuer: /CN=A91C31A2/serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft Manifest number: 01F3 Signing time: Thu 03 Apr 2025 02:04:44 +0000 Manifest this update: Thu 03 Apr 2025 02:04:44 +0000 Manifest next update: Thu 10 Apr 2025 02:04:44 +0000 Files and hashes: 1: 2vWZnAdAuMks1UA3tpsETNValVg.crl (hash: Dw0DLcEkAuGgpqDxJPj8bWBsFhCzk+xrCQt7b4fUVnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2 Validity Not Before: Apr 3 02:04:44 2025 GMT Not After : Apr 10 02:04:44 2025 GMT Subject: CN=67edecbc-e9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a7:7c:78:35:4a:fe:a4:22:34:21:ab:7b:9d: 42:34:6a:e9:ca:36:4e:35:e0:e6:28:50:80:b3:8a: 01:8f:64:ea:9f:39:9b:bb:30:2a:2a:34:d7:6a:a0: 98:e4:74:49:ae:b4:e3:14:98:1e:ae:a4:55:b4:a8: 5f:41:ad:5a:43:d6:e1:d1:cd:ea:8e:a1:98:f3:18: 1c:5f:32:c4:a5:e3:21:85:c1:82:04:67:97:d9:c4: 3b:7d:3e:44:95:3c:02:fd:1e:01:79:73:af:71:62: 95:a4:23:d2:57:1f:64:e7:bf:e6:3a:d3:58:16:dd: e2:65:92:1e:50:42:7a:aa:db:51:e8:1a:d1:b3:ea: f6:8a:76:83:3b:e4:6d:d1:5d:50:35:7e:89:1c:04: a7:47:06:41:2f:aa:9d:cc:03:e4:09:ac:8d:29:f8: fc:65:c6:02:20:d0:4d:32:e9:cf:6c:86:c8:ed:fe: 07:27:f3:4d:f0:3c:aa:ce:62:e1:9f:50:57:e2:96: d0:0b:bf:cf:48:a3:95:f5:b9:6c:25:63:b6:9c:fc: ca:5b:a3:3c:e5:20:ce:ef:20:30:d5:b3:9d:b1:42: 30:0f:c3:7c:c5:4b:eb:ed:f3:85:44:9d:70:a9:08: 2b:17:1d:68:05:dd:3b:85:32:79:a2:02:d0:79:07: ae:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:71:17:97:17:29:7B:94:05:57:0E:E8:3D:DE:88:E8:C1:4B:31:08 X509v3 Authority Key Identifier: keyid:DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b9:a6:1b:39:fe:ed:e9:c9:1c:40:d7:88:33:5e:24:13:d5: a5:c6:a9:ef:78:64:f6:c7:62:a9:2a:d5:27:65:d5:5f:21:c5: 2c:f1:18:e3:b2:6f:82:92:39:cc:69:3f:31:03:88:4e:9c:7e: e5:ea:fa:ba:cf:c5:47:3b:33:53:0c:8f:12:89:16:75:a3:48: 42:80:cc:c9:77:c1:a7:cb:cd:04:3e:ba:73:21:ce:7e:28:fc: 49:04:ee:0d:7c:af:5a:d3:72:2a:17:2e:72:c7:3b:05:37:7c: e4:54:d1:86:f7:62:92:f4:6f:0c:d5:82:26:69:08:88:73:4b: ea:bd:b3:6c:ed:22:f5:a2:05:5b:69:f7:f4:4d:70:08:4c:ff: d0:57:21:31:cc:89:a6:df:d4:0c:9a:13:2f:08:63:24:96:86: ff:ad:f7:da:9a:ec:f4:ee:08:9f:66:31:2c:ce:a5:26:b2:ab: 92:38:3c:cc:b8:22:5b:bb:99:37:ad:91:c1:b8:40:e4:22:ca: 7c:1a:c5:8a:98:03:cd:e2:cb:aa:d0:7a:7e:60:92:90:42:c1: 9a:35:fd:2d:10:24:89:c7:d7:2f:ee:6b:b0:e0:be:d9:89:da: 32:21:d4:a6:9f:94:3e:b2:33:4e:cd:52:55:39:3b:02:37:39: 95:01:91:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKERBRjU5OTlDMDc0MEI4QzkyQ0Q1NDAzN0I2OUIwNDRD RDU1QTk1NTgwHhcNMjUwNDAzMDIwNDQ0WhcNMjUwNDEwMDIwNDQ0WjAYMRYwFAYD VQQDEw02N2VkZWNiYy1lOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Kd8eDVK/qQiNCGre51CNGrpyjZONeDmKFCAs4oBj2TqnzmbuzAqKjTXaqCY 5HRJrrTjFJgerqRVtKhfQa1aQ9bh0c3qjqGY8xgcXzLEpeMhhcGCBGeX2cQ7fT5E lTwC/R4BeXOvcWKVpCPSVx9k57/mOtNYFt3iZZIeUEJ6qttR6BrRs+r2inaDO+Rt 0V1QNX6JHASnRwZBL6qdzAPkCayNKfj8ZcYCINBNMunPbIbI7f4HJ/NN8DyqzmLh n1BX4pbQC7/PSKOV9blsJWO2nPzKW6M85SDO7yAw1bOdsUIwD8N8xUvr7fOFRJ1w qQgrFx1oBd07hTJ5ogLQeQeuqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1xF5cX KXuUBVcO6D3eiOjBSzEIMB8GA1UdIwQYMBaAFNr1mZwHQLjJLNVAN7abBEzVWpVY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ERTAzMzMzNjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVNa3MxVUEzdHBzRVROVmFs VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2V1puQWRBdU1rczFVQTN0cHNFVE5WYWxWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFBMi9ERTAzMzMzNjM1NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVN a3MxVUEzdHBzRVROVmFsVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDuaYbOf7t6ckcQNeIM14kE9WlxqnveGT2x2KpKtUnZdVfIcUs8Rjj sm+CkjnMaT8xA4hOnH7l6vq6z8VHOzNTDI8SiRZ1o0hCgMzJd8Gny80EPrpzIc5+ KPxJBO4NfK9a03IqFy5yxzsFN3zkVNGG92KS9G8M1YImaQiIc0vqvbNs7SL1ogVb aff0TXAITP/QVyExzImm39QMmhMvCGMklob/rffamuz07gifZjEszqUmsquSODzM uCJbu5k3rZHBuEDkIsp8GsWKmAPN4suq0Hp+YJKQQsGaNf0tECSJx9cv7muw4L7Z idoyIdSmn5Q+sjNOzVJVOTsCNzmVAZFC -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:53 2025 by rpki-client