$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: +Nk0Ros+w/Oka8b/TkR/PJD9ahRyJN7lk9QoCGfnA+8= Subject key identifier: C6:BA:78:85:67:11:64:4C:2A:0C:0F:52:E0:5A:82:D8:E1:F7:A6:2C Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 59 Signing time: Sat 29 Mar 2025 06:26:21 +0000 Manifest this update: Sat 29 Mar 2025 06:26:20 +0000 Manifest next update: Sat 05 Apr 2025 06:26:20 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: 0FrKggXSn12Fu3VxOzo9ScMGL9e1rUFXKorAPI/OeoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD Validity Not Before: Mar 29 06:26:20 2025 GMT Not After : Apr 5 06:26:20 2025 GMT Subject: CN=67e7928d-583d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:00:4a:cc:62:ec:ee:8f:96:bc:83:02:7d: ca:80:f3:fa:71:47:ee:fd:a8:d4:78:f3:d5:1e:b8: ac:55:28:d6:3b:02:d5:db:6b:27:f5:57:b8:a8:6a: 2f:a3:fe:9e:1e:e4:f0:64:5b:6f:ae:21:ac:bd:44: 4c:df:2c:e9:6a:9b:5b:ff:0c:eb:b5:0b:70:72:15: 4b:11:52:2f:45:7a:fe:a0:28:f4:de:56:47:6d:58: 7d:83:81:a3:83:7c:bc:5f:2b:b6:58:30:79:58:ef: 8b:dd:40:88:d2:97:46:1a:f6:90:0a:0e:fc:18:d3: 4b:cf:9e:ea:70:29:3e:4f:97:df:ff:19:55:4d:00: 83:f3:64:4e:83:88:09:f5:b7:80:fe:96:c9:d8:29: 62:5d:32:f6:53:54:b3:ba:ec:c0:56:2d:db:b3:ca: 7b:0c:57:57:18:6b:b4:0d:83:ca:ce:89:d6:00:5a: 5a:50:2d:9a:d4:55:f6:10:ee:f7:b6:51:c4:2f:ff: 2f:de:eb:48:eb:61:ea:42:81:4f:2b:81:3c:18:bc: 97:a5:5b:8d:84:d9:c9:7f:88:9e:83:c3:43:0f:f5: 77:0e:f3:ee:72:4f:84:70:8a:b4:6d:06:36:98:e1: 53:2b:33:2a:bf:e3:22:30:f2:a4:20:a6:27:f0:55: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BA:78:85:67:11:64:4C:2A:0C:0F:52:E0:5A:82:D8:E1:F7:A6:2C X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:43:57:b7:fc:9e:0b:5a:c3:94:a7:df:23:21:a4:c2:a6:9a: 5b:41:d4:ac:aa:d3:37:3b:b7:27:b5:e4:f1:75:fa:f9:7c:c7: d0:3f:29:92:9d:4f:f3:8a:2b:1a:50:a6:71:91:c8:62:86:da: 9e:4e:a1:10:5b:a5:c2:d1:75:a7:c4:95:cc:34:d2:35:15:5b: e1:2f:a9:dc:9c:1b:82:a3:4c:b9:29:47:c1:37:bc:4a:3e:87: bf:5f:b0:bf:63:5d:c9:a7:bd:bb:a6:ea:32:01:bf:da:20:4d: 24:a2:20:8d:28:3a:8e:90:fc:b6:db:a3:71:80:ea:29:c2:b4: 74:1a:1e:12:03:91:7d:38:28:bb:60:fa:72:90:06:cd:33:60: 77:8f:fa:82:ed:11:d6:c4:37:9f:fe:bf:6e:60:79:76:57:25: 0d:53:a5:e6:cd:61:40:fb:e0:cd:5e:63:2c:91:14:02:47:3d: d2:b7:00:95:58:4a:f6:2a:b7:cd:75:33:a3:20:62:05:66:6d: b7:7a:be:e4:ac:4f:ba:44:f2:c5:fb:a4:1d:7f:93:24:ff:3e: f2:66:25:45:29:16:6a:22:1a:26:71:f4:2e:0c:4b:ee:3a:36: 30:c6:a4:a5:09:5b:cd:da:ab:7c:37:b5:52:0c:c4:07:f4:27: 37:b1:83:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjhBRDExMC8GA1UEBRMoRDEwQzIwOTZGQjVEQjMwNEFCRDJGOTlGNDVBMjk0ODgy OTJEMzcyMTAeFw0yNTAzMjkwNjI2MjBaFw0yNTA0MDUwNjI2MjBaMBgxFjAUBgNV BAMTDTY3ZTc5MjhkLTU4M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAEQBKzGLs7o+WvIMCfcqA8/pxR+79qNR489UeuKxVKNY7AtXbayf1V7ioai+j /p4e5PBkW2+uIay9REzfLOlqm1v/DOu1C3ByFUsRUi9Fev6gKPTeVkdtWH2DgaOD fLxfK7ZYMHlY74vdQIjSl0Ya9pAKDvwY00vPnupwKT5Pl9//GVVNAIPzZE6DiAn1 t4D+lsnYKWJdMvZTVLO67MBWLduzynsMV1cYa7QNg8rOidYAWlpQLZrUVfYQ7ve2 UcQv/y/e60jrYepCgU8rgTwYvJelW42E2cl/iJ6Dw0MP9XcO8+5yT4RwirRtBjaY 4VMrMyq/4yIw8qQgpifwVdo5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxrp4hWcR ZEwqDA9S4FqC2OH3piwwHwYDVR0jBBgwFoAU0QwglvtdswSr0vmfRaKUiCktNyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2OEFEL0RFQkEyMzgwODZB MDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF3Z2x2dGRzd1NyMHZtZlJhS1VpQ2t0TnlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 OEFEL0RFQkEyMzgwODZBMDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dT cjB2bWZSYUtVaUNrdE55RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIpDV7f8ngtaw5Sn3yMhpMKmmltB1Kyq0zc7tye15PF1+vl8x9A/KZKd T/OKKxpQpnGRyGKG2p5OoRBbpcLRdafElcw00jUVW+EvqdycG4KjTLkpR8E3vEo+ h79fsL9jXcmnvbum6jIBv9ogTSSiII0oOo6Q/Lbbo3GA6inCtHQaHhIDkX04KLtg +nKQBs0zYHeP+oLtEdbEN5/+v25geXZXJQ1TpebNYUD74M1eYyyRFAJHPdK3AJVY SvYqt811M6MgYgVmbbd6vuSsT7pE8sX7pB1/kyT/PvJmJUUpFmoiGiZx9C4MS+46 NjDGpKUJW83aq3w3tVIMxAf0Jzexg5k= -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:57 2025 by rpki-client