$ rpki-client -vvf rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft File: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft (raw, json) Hash identifier: A1Oup7UffpYfNMUFCqyU28Hv24lpi2dWYi3IPxr4XRI= Subject key identifier: 55:70:E5:5E:18:5B:30:F3:DB:35:84:68:A7:23:F6:32:1E:6A:68:C5 Authority key identifier: A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 Certificate issuer: /CN=A91C77BD/serialNumber=A3EB7C435063BC54D3573D81DBDC1873987663E0 Certificate serial: 2156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft Manifest number: 214D Signing time: Fri 04 Apr 2025 15:58:21 +0000 Manifest this update: Fri 04 Apr 2025 15:58:20 +0000 Manifest next update: Fri 11 Apr 2025 15:58:20 +0000 Files and hashes: 1: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl (hash: z+9vd5iRaWAkdq2lY4PeQerNfufkMljWlTqLg0OTO2o=) 2: A257A95EA9DC11E9AA03780DC4F9AE02.roa (hash: Kqxe3AlQssfHaUaGQ94xh+g433EOzW+NAhxS/kOyvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8534 (0x2156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C77BD Validity Not Before: Apr 4 15:58:20 2025 GMT Not After : Apr 11 15:58:20 2025 GMT Subject: CN=67f0019d-bbfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:42:37:e3:42:42:e4:f3:d7:2d:13:f5:56: 6d:b1:f9:5f:bb:5b:69:b5:d4:61:c3:02:86:83:5b: 89:61:46:a2:e3:c4:ef:80:ec:ec:dc:24:49:b5:7b: e5:9b:d7:d0:c3:72:a4:98:ae:b9:f4:c3:0c:06:33: b4:0c:ea:4c:3b:ed:9b:6a:00:43:c2:83:12:d5:4c: 83:b4:fb:22:62:bf:4c:4a:2c:31:e4:6a:d8:6f:8c: e6:3c:1f:05:86:86:04:44:1a:39:30:01:d4:bc:a8: 49:8b:82:5d:ce:18:bb:06:8f:23:c4:df:38:ba:41: cf:88:91:d1:80:54:a0:77:8d:13:68:34:ea:27:81: 56:0e:5c:ff:7d:ba:bf:6e:01:47:60:5c:35:fc:b9: c2:f3:42:04:0e:03:1b:07:cb:65:97:17:df:cd:5e: 04:1f:22:f7:8c:d0:3a:f4:45:0b:cd:69:84:21:c4: c2:34:ce:19:a8:41:27:56:5f:45:c1:56:87:be:b6: d7:ef:e3:a4:77:a2:db:cd:7a:c4:9e:20:e4:b3:e5: be:23:15:65:44:28:86:67:5e:ea:8b:aa:bc:b6:e4: 70:71:a0:96:9e:d5:b1:bd:7a:9c:75:23:38:ee:fd: 9d:ac:84:7d:12:c8:07:23:9a:2f:8a:fb:bb:81:e3: 6d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:70:E5:5E:18:5B:30:F3:DB:35:84:68:A7:23:F6:32:1E:6A:68:C5 X509v3 Authority Key Identifier: keyid:A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:95:42:00:f2:ce:45:47:d0:26:da:a7:87:18:16:42:c6:44: 65:b2:67:45:40:91:96:ba:76:12:c5:99:15:31:86:69:0f:d5: 4c:92:41:ee:16:1b:b0:74:fb:7a:6c:12:ff:16:35:04:70:16: e3:10:ed:ba:78:07:35:a0:09:24:3f:b4:79:99:37:b4:22:f7: 5f:8e:a9:8b:d8:e6:75:89:26:e8:34:1b:93:01:39:7d:e1:0d: 28:6b:63:61:f0:37:6c:5d:33:09:68:8a:2c:dc:34:38:78:80: 73:45:79:d6:ae:92:71:e5:76:25:e1:13:f3:44:fd:58:8d:71: e0:ec:c4:c1:da:13:70:83:72:1c:7c:dd:bf:a4:98:08:50:6b: b8:85:90:45:74:e3:61:bd:c1:93:1d:3e:c6:d6:e4:f2:bc:3b: 63:41:c0:51:80:f5:10:82:68:56:ac:ac:78:3f:47:a7:26:fc: d5:30:a8:8e:af:c1:89:8c:dc:12:fc:21:19:de:95:29:8c:53: 60:68:76:1e:ae:c1:98:ad:04:90:d2:31:52:4a:8a:80:b1:ce: 58:19:3b:a6:d6:6d:eb:28:36:0e:50:cc:68:bb:cb:df:3f:e6: 44:60:54:ca:bc:0a:12:41:75:41:9b:2a:c0:36:e4:55:12:77: 29:7d:54:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3QkQxMTAvBgNVBAUTKEEzRUI3QzQzNTA2M0JDNTREMzU3M0Q4MURCREMxODcz OTg3NjYzRTAwHhcNMjUwNDA0MTU1ODIwWhcNMjUwNDExMTU1ODIwWjAYMRYwFAYD VQQDEw02N2YwMDE5ZC1iYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyVCN+NCQuTz1y0T9VZtsflfu1tptdRhwwKGg1uJYUai48TvgOzs3CRJtXvl m9fQw3KkmK659MMMBjO0DOpMO+2bagBDwoMS1UyDtPsiYr9MSiwx5GrYb4zmPB8F hoYERBo5MAHUvKhJi4Jdzhi7Bo8jxN84ukHPiJHRgFSgd40TaDTqJ4FWDlz/fbq/ bgFHYFw1/LnC80IEDgMbB8tllxffzV4EHyL3jNA69EULzWmEIcTCNM4ZqEEnVl9F wVaHvrbX7+Okd6LbzXrEniDks+W+IxVlRCiGZ17qi6q8tuRwcaCWntWxvXqcdSM4 7v2drIR9EsgHI5ovivu7geNt1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVw5V4Y WzDz2zWEaKcj9jIeamjFMB8GA1UdIwQYMBaAFKPrfENQY7xU01c9gdvcGHOYdmPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzdCRC8zODkzNzE5OERG NDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZGVFRWejJCMjl3WWM1aDJZ LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdDhRMUJqdkZUVFZ6MkIyOXdZYzVoMlktQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzdCRC8zODkzNzE5OERGNDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZG VFRWejJCMjl3WWM1aDJZLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJlUIA8s5FR9Am2qeHGBZCxkRlsmdFQJGWunYSxZkVMYZpD9VMkkHu FhuwdPt6bBL/FjUEcBbjEO26eAc1oAkkP7R5mTe0IvdfjqmL2OZ1iSboNBuTATl9 4Q0oa2Nh8DdsXTMJaIos3DQ4eIBzRXnWrpJx5XYl4RPzRP1YjXHg7MTB2hNwg3Ic fN2/pJgIUGu4hZBFdONhvcGTHT7G1uTyvDtjQcBRgPUQgmhWrKx4P0enJvzVMKiO r8GJjNwS/CEZ3pUpjFNgaHYersGYrQSQ0jFSSoqAsc5YGTum1m3rKDYOUMxou8vf P+ZEYFTKvAoSQXVBmyrANuRVEncpfVS6 -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:55 2025 by rpki-client