$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: VFxF47QRZHdZvWzrxNH4qp3i/IkdzRd7RnOq+LLZT1g= Subject key identifier: 90:1E:69:F6:E0:10:B6:E0:79:BA:D3:70:61:E2:E0:7D:F6:B1:A7:8E Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 01C3 Signing time: Sat 29 Mar 2025 02:34:54 +0000 Manifest this update: Sat 29 Mar 2025 02:34:53 +0000 Manifest next update: Sat 05 Apr 2025 02:34:53 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: RKie9Vy/SD7WZ4ZeJr7L1asB5ZDzN2o9DpV6jJ8dH4k=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: N+dN6EXW9kLpuaXIDcRP+SypH2TkoWeKEFt5XA9cnJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44 Validity Not Before: Mar 29 02:34:53 2025 GMT Not After : Apr 5 02:34:53 2025 GMT Subject: CN=67e75c4e-327f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:b9:9b:f2:0d:73:8f:ed:c5:f4:d3:ad:90: 80:11:44:9b:78:d4:d0:5d:a7:b1:b8:f4:5f:b2:d3: f7:fc:10:01:47:9d:bc:18:b8:b5:83:39:ab:33:0b: 4b:69:08:eb:4a:ca:c9:cd:54:93:2b:dd:8a:5e:b6: 07:d7:9b:81:84:93:9d:62:1a:5e:9a:43:3a:12:12: a7:d0:7c:4a:0a:84:16:72:c0:13:c5:39:35:55:f3: 0c:57:5e:b6:3e:da:d9:f1:88:c2:df:f4:3e:63:23: e0:e4:ac:6e:1c:d3:12:f7:ec:db:fd:02:16:8f:7d: 18:19:b6:6a:b0:70:19:bd:e9:31:4a:d9:1e:3c:8a: 24:ca:90:00:1a:df:ab:7f:fd:d3:1d:7f:00:92:6d: 98:65:28:48:e6:13:27:ef:f2:78:d6:8e:ca:57:f8: cd:7f:9f:9c:d1:17:15:84:29:37:31:53:f1:4c:74: 05:a5:e5:98:78:f8:3d:ca:03:1f:aa:7e:6d:0b:23: eb:97:a8:a0:fa:1b:50:f2:1a:c5:01:72:45:ad:7a: 48:7b:7b:8c:57:6b:c0:8d:ec:3b:2d:48:00:81:da: a8:35:77:5f:db:57:e6:59:03:c2:45:da:ea:33:2b: 61:f6:a0:85:73:d4:ae:4c:fb:f1:d5:e1:7e:d3:c4: 69:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1E:69:F6:E0:10:B6:E0:79:BA:D3:70:61:E2:E0:7D:F6:B1:A7:8E X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:77:34:e4:91:6a:ac:6a:7c:ca:42:0d:e7:36:86:79:a0:a3: a9:a6:aa:81:b7:e4:21:32:33:e1:d7:22:f2:5c:b5:81:fb:6d: 81:35:d7:f9:f4:4f:c7:c5:64:3b:e5:34:99:18:36:55:a1:4d: 9d:14:ce:c9:74:09:f1:eb:05:bc:f6:5f:78:b5:bf:3b:ca:0a: e4:a3:f0:f2:4a:bb:f2:d7:f9:a2:2c:12:9a:53:e9:79:9d:6c: 9c:3e:5a:57:3e:c2:e0:94:54:d8:7f:d7:86:d7:f3:cc:8d:20: 89:e4:17:6e:18:25:2e:b6:ee:27:ca:16:c5:cc:be:42:ac:ca: 3f:a6:2b:87:34:e8:b6:4f:c3:4c:51:7a:95:df:91:e8:c1:72: 1e:c3:ee:29:e5:61:e4:a5:80:01:58:d1:0a:11:ca:e4:ae:b7: 31:3c:20:80:a5:eb:64:71:7e:d4:49:36:b4:eb:56:45:6d:5b: 7c:31:04:11:8f:87:6e:88:f9:86:f1:1e:f4:da:78:1f:ae:9c: b7:8f:ff:71:72:ee:73:8e:12:b9:d8:8d:f2:a8:5b:90:c1:c1: 94:aa:c9:ac:dd:8a:a9:0e:2c:f0:42:ef:2b:01:aa:7b:50:bf: 59:01:2b:f2:94:b7:bc:a5:38:a7:a0:4a:f6:f3:55:63:db:5e: 2b:d2:73:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjUwMzI5MDIzNDUzWhcNMjUwNDA1MDIzNDUzWjAYMRYwFAYD VQQDEw02N2U3NWM0ZS0zMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxti5m/INc4/txfTTrZCAEUSbeNTQXaexuPRfstP3/BABR528GLi1gzmrMwtL aQjrSsrJzVSTK92KXrYH15uBhJOdYhpemkM6EhKn0HxKCoQWcsATxTk1VfMMV162 PtrZ8YjC3/Q+YyPg5KxuHNMS9+zb/QIWj30YGbZqsHAZvekxStkePIokypAAGt+r f/3THX8Akm2YZShI5hMn7/J41o7KV/jNf5+c0RcVhCk3MVPxTHQFpeWYePg9ygMf qn5tCyPrl6ig+htQ8hrFAXJFrXpIe3uMV2vAjew7LUgAgdqoNXdf21fmWQPCRdrq Myth9qCFc9SuTPvx1eF+08RpEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAeafbg ELbgebrTcGHi4H32saeOMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUdzTkkWqsanzKQg3nNoZ5oKOppqqBt+QhMjPh1yLyXLWB+22BNdf5 9E/HxWQ75TSZGDZVoU2dFM7JdAnx6wW89l94tb87ygrko/DySrvy1/miLBKaU+l5 nWycPlpXPsLglFTYf9eG1/PMjSCJ5BduGCUutu4nyhbFzL5CrMo/piuHNOi2T8NM UXqV35HowXIew+4p5WHkpYABWNEKEcrkrrcxPCCApetkcX7USTa061ZFbVt8MQQR j4duiPmG8R702ngfrpy3j/9xcu5zjhK52I3yqFuQwcGUqsms3YqpDizwQu8rAap7 UL9ZASvylLe8pTinoEr281Vj214r0nN+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:58 2025 by rpki-client