$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: +99SqaivXOv6atqF+tuGd0FeS3AzoPpqKYx+bdbi+n4= Subject key identifier: AC:5C:10:5C:DD:31:89:40:C9:B8:A4:0F:8D:7A:41:6E:E9:A2:5D:A2 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: B3 Signing time: Thu 03 Apr 2025 05:21:39 +0000 Manifest this update: Thu 03 Apr 2025 05:21:38 +0000 Manifest next update: Thu 10 Apr 2025 05:21:38 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: ToOs2p56J/OoleftRyq6ja6+MQfx2pTU9wWlf3lvzEc=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: 9x3A7j08LRpC1gpJOubZns71PbS9EeGE42Z1Nuk8UHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD Validity Not Before: Apr 3 05:21:38 2025 GMT Not After : Apr 10 05:21:38 2025 GMT Subject: CN=67ee1ae3-58c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:34:aa:97:e2:e5:56:8c:b4:d8:fd:00:85:8c: 8e:fb:86:a5:0a:54:d2:c6:ad:1b:1e:5f:36:48:2a: 82:4b:19:54:56:7f:ce:a4:8b:8b:6b:81:90:8b:5d: 44:98:98:66:b3:62:36:4e:76:d3:2c:63:fb:26:59: f8:7d:b9:f2:2b:ce:85:e9:66:68:2e:14:32:f8:98: 6f:1e:51:e9:43:58:3d:d0:9f:63:18:9b:ae:1e:62: dd:2f:f4:ab:97:3f:86:6d:fe:73:74:44:46:5f:7b: 91:1d:12:20:96:a8:0a:19:4d:06:05:70:c4:c5:5c: f1:80:d5:72:6b:55:26:12:0c:a9:3c:c0:98:ea:7f: a1:d0:cc:42:2d:28:8e:2b:c7:31:85:53:e7:0e:5b: 56:9d:55:76:04:ed:89:3c:1c:43:6c:10:01:e4:1c: 63:a3:c7:97:cd:e0:71:f6:06:43:8d:24:51:93:98: 4e:01:35:d0:fa:49:ea:58:00:47:ba:85:d7:46:c2: bc:a2:94:5b:9e:5c:5a:68:3d:12:43:a2:d3:83:5f: 5d:a2:30:b6:59:a3:2a:18:e3:81:2d:11:2f:2d:77: ff:51:f4:d2:0e:24:12:38:5d:71:db:a9:65:f2:51: a4:a5:9b:0a:2b:41:18:6d:c5:38:d4:1d:ea:17:fe: 68:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5C:10:5C:DD:31:89:40:C9:B8:A4:0F:8D:7A:41:6E:E9:A2:5D:A2 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:70:6c:a7:16:9a:29:1d:6b:e0:45:47:23:a0:6d:a0:01:b4: f2:94:15:46:51:32:de:93:8d:a4:1b:0c:4b:69:0c:20:f7:8e: f0:2c:93:d6:7f:be:f4:2a:e4:a0:f6:b1:e2:3b:c2:4e:4c:fc: 5c:d4:6a:bc:98:a5:54:65:8a:13:d4:d4:cd:d8:fd:d8:a8:62: a7:2e:b0:a8:9a:0e:8e:90:3e:96:5c:63:85:bd:dc:3f:30:3b: 7a:5f:f8:00:c0:29:da:c3:25:b7:65:03:3e:70:10:45:3c:61: 53:f9:88:fd:05:db:30:cc:09:0f:e5:08:57:0e:37:51:cd:8d: 34:27:4c:91:92:67:32:a1:0f:76:8e:04:4f:ba:1d:4f:72:68: 6c:68:b5:c8:2f:99:f7:9a:94:9a:fa:2c:8c:5d:18:59:54:8d: bd:a9:cc:26:94:47:a9:08:5a:00:34:57:71:eb:a9:45:f8:a5: 94:98:60:fc:34:c8:ed:b3:cf:4f:07:83:f0:53:c1:99:74:2d: 0b:12:bf:06:bf:66:e9:e0:11:68:95:35:ae:ab:51:2c:5c:ff: 3f:4c:15:ad:e0:36:d5:c5:16:c0:78:8b:50:61:b1:5a:e0:dd: ab:a6:eb:60:14:0c:8f:7d:50:6b:50:18:50:56:a2:bc:c9:fc: c0:98:13:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM3REQxMTAvBgNVBAUTKDNGRTNBRTM1NUE5Mjc3QjkxRDczRTJBQzUyRjUzODdG MDk1RjE4OUEwHhcNMjUwNDAzMDUyMTM4WhcNMjUwNDEwMDUyMTM4WjAYMRYwFAYD VQQDEw02N2VlMWFlMy01OGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zSql+LlVoy02P0AhYyO+4alClTSxq0bHl82SCqCSxlUVn/OpIuLa4GQi11E mJhms2I2TnbTLGP7Jln4fbnyK86F6WZoLhQy+JhvHlHpQ1g90J9jGJuuHmLdL/Sr lz+Gbf5zdERGX3uRHRIglqgKGU0GBXDExVzxgNVya1UmEgypPMCY6n+h0MxCLSiO K8cxhVPnDltWnVV2BO2JPBxDbBAB5Bxjo8eXzeBx9gZDjSRRk5hOATXQ+knqWABH uoXXRsK8opRbnlxaaD0SQ6LTg19dojC2WaMqGOOBLREvLXf/UfTSDiQSOF1x26ll 8lGkpZsKK0EYbcU41B3qF/5oGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxcEFzd MYlAybikD416QW7pol2iMB8GA1UdIwQYMBaAFD/jrjVakne5HXPirFL1OH8JXxia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzdERC8yNDg1NUQ4MDA5 NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3a2RjLUtzVXZVNGZ3bGZH Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3 a2RjLUtzVXZVNGZ3bGZHSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmcGynFpopHWvgRUcjoG2gAbTylBVGUTLek42kGwxLaQwg947wLJPW f770KuSg9rHiO8JOTPxc1Gq8mKVUZYoT1NTN2P3YqGKnLrComg6OkD6WXGOFvdw/ MDt6X/gAwCnawyW3ZQM+cBBFPGFT+Yj9BdswzAkP5QhXDjdRzY00J0yRkmcyoQ92 jgRPuh1PcmhsaLXIL5n3mpSa+iyMXRhZVI29qcwmlEepCFoANFdx66lF+KWUmGD8 NMjts89PB4PwU8GZdC0LEr8Gv2bp4BFolTWuq1EsXP8/TBWt4DbVxRbAeItQYbFa 4N2rputgFAyPfVBrUBhQVqK8yfzAmBOu -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:45 2025 by rpki-client