$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: v0WeISBop1uYKJLmDgIVJmCaIEH9o9lKRp9cwZBJy6E= Subject key identifier: 61:D9:0C:98:83:C1:A3:F3:CE:22:3F:E3:5C:AF:2C:C1:74:B8:99:B4 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: DD Signing time: Fri 04 Apr 2025 20:32:41 +0000 Manifest this update: Fri 04 Apr 2025 20:32:41 +0000 Manifest next update: Fri 11 Apr 2025 20:32:41 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: t+a00DGUb/UlcXTV4wUJv9lfZJhFHMEx8um81iZAZdo=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6 Validity Not Before: Apr 4 20:32:41 2025 GMT Not After : Apr 11 20:32:41 2025 GMT Subject: CN=67f041e9-f140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2b:f2:a3:15:3d:11:60:46:77:47:c0:9f:20: 43:4b:b3:78:22:da:da:85:cd:a3:6e:5c:99:56:7f: 5e:18:f2:4f:af:92:22:55:cb:e2:de:12:a0:9b:02: 56:8b:c8:5d:d4:b8:54:bd:d5:6a:ef:6c:35:d5:e1: 58:3f:8d:15:26:c3:20:83:bc:8c:6c:5e:3f:a3:e6: 7a:b8:19:47:39:00:2f:6a:e4:3c:f2:79:fa:e4:19: e8:dd:7b:a9:24:83:90:4b:2d:ff:72:86:55:ef:d7: f8:c3:52:5e:d6:3f:e7:db:d0:8b:6e:d9:74:c0:c3: 25:27:0b:0f:86:1f:dc:03:7e:c1:a0:9a:b3:f2:83: 4b:c9:19:cc:4f:51:74:ed:5d:02:81:87:b5:36:53: d6:e0:cc:b9:7f:43:13:d6:ce:39:1a:13:fd:d0:12: 87:e7:db:9b:9a:c8:d3:a1:43:3f:7d:a7:a2:01:30: d0:cd:30:76:55:e4:e9:8a:96:9e:78:84:83:62:96: 16:6a:23:96:d7:29:5a:31:54:15:7b:62:e1:c6:a6: db:00:38:40:9a:86:51:d9:cf:e1:b8:b7:6d:c2:e5: b8:5d:ec:32:4b:c3:c3:3f:37:e6:1d:a1:30:5c:ea: 6a:c0:d3:94:18:87:2e:3b:d9:64:65:75:fd:2b:85: c0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D9:0C:98:83:C1:A3:F3:CE:22:3F:E3:5C:AF:2C:C1:74:B8:99:B4 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d1:c7:67:f1:2c:f3:5f:20:21:f1:3b:42:09:dc:cf:f5:2c: 07:8c:34:e7:13:7f:0e:7a:96:52:a8:ad:f5:a6:84:ec:93:b0: 05:79:3f:ec:53:f1:98:ca:51:0d:51:b9:67:e5:bd:fa:9b:fd: 19:c7:07:45:9a:b1:fc:2d:e3:7d:6f:00:56:38:7f:9e:d9:e5: c7:29:5c:e3:53:c3:24:55:f4:2e:67:55:8d:c8:bf:26:c8:f0: 19:6f:7a:ed:c7:20:08:73:2f:56:57:58:a2:15:c8:c2:e8:43: fb:4b:19:34:e5:63:c2:8a:73:a5:14:57:14:1c:7a:dd:d7:90: d0:44:9c:fd:da:26:fa:99:1c:55:92:cc:79:8c:3f:f6:57:82: c3:71:65:61:5c:75:db:97:44:c2:84:ee:d4:0d:1d:03:6e:d6: c7:f2:80:30:4c:f9:07:ff:77:7c:38:6b:2e:71:52:0e:c7:7a: dc:82:4f:4b:1c:44:0c:1d:31:da:4e:a7:ec:39:38:14:61:89: 65:bf:96:ad:7a:b3:07:28:a7:7e:a3:48:9f:41:b7:dc:2e:a8: 0c:a7:16:5a:2f:8a:5a:df:bd:ec:e8:4d:da:d0:e0:53:32:c3: 78:7c:1d:c0:19:7c:eb:f4:a2:06:1d:71:ed:05:3d:a1:3f:88: f5:51:97:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNDA0MjAzMjQxWhcNMjUwNDExMjAzMjQxWjAYMRYwFAYD VQQDEw02N2YwNDFlOS1mMTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CvyoxU9EWBGd0fAnyBDS7N4Itrahc2jblyZVn9eGPJPr5IiVcvi3hKgmwJW i8hd1LhUvdVq72w11eFYP40VJsMgg7yMbF4/o+Z6uBlHOQAvauQ88nn65Bno3Xup JIOQSy3/coZV79f4w1Je1j/n29CLbtl0wMMlJwsPhh/cA37BoJqz8oNLyRnMT1F0 7V0CgYe1NlPW4My5f0MT1s45GhP90BKH59ubmsjToUM/faeiATDQzTB2VeTpipae eISDYpYWaiOW1ylaMVQVe2LhxqbbADhAmoZR2c/huLdtwuW4XewyS8PDPzfmHaEw XOpqwNOUGIcuO9lkZXX9K4XAmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHZDJiD waPzziI/41yvLMF0uJm0MB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP0cdn8SzzXyAh8TtCCdzP9SwHjDTnE38OepZSqK31poTsk7AFeT/s U/GYylENUbln5b36m/0ZxwdFmrH8LeN9bwBWOH+e2eXHKVzjU8MkVfQuZ1WNyL8m yPAZb3rtxyAIcy9WV1iiFcjC6EP7Sxk05WPCinOlFFcUHHrd15DQRJz92ib6mRxV ksx5jD/2V4LDcWVhXHXbl0TChO7UDR0DbtbH8oAwTPkH/3d8OGsucVIOx3rcgk9L HEQMHTHaTqfsOTgUYYllv5aterMHKKd+o0ifQbfcLqgMpxZaL4pa373s6E3a0OBT MsN4fB3AGXzr9KIGHXHtBT2hP4j1UZdV -----END CERTIFICATE-----Generated at Sun Apr 6 16:05:09 2025 by rpki-client