$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: 9FB5ud7mLcQMLCCu+RFw9mJElMjYwEJXKG3F+KgevxU= Subject key identifier: 46:DF:28:B9:A1:54:1A:97:9D:6E:CD:DD:44:1F:75:6C:9C:3A:66:97 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 08B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 08AF Signing time: Fri 04 Apr 2025 20:41:37 +0000 Manifest this update: Fri 04 Apr 2025 20:41:36 +0000 Manifest next update: Fri 11 Apr 2025 20:41:36 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: BM2n8vdxJoSogqmjpDCNgG7m2AcciUaiXnwAZdwUEXw=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: qrOVzHUnQpUjj2NXO2uI9c1Lmn26rV+B/0QYiSJpTNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2229 (0x8b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530 Validity Not Before: Apr 4 20:41:36 2025 GMT Not After : Apr 11 20:41:36 2025 GMT Subject: CN=67f04401-ea0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:fc:f9:67:29:c0:4b:17:2b:fb:b6:b1:8f: 42:37:86:9a:b0:2d:9b:60:cf:db:b2:b7:43:0b:3b: ec:77:f5:d6:6e:44:d2:ad:5e:f5:9b:3a:32:05:97: b3:93:75:4a:02:38:cd:21:66:3f:23:0a:49:b0:2c: 6c:de:74:89:a4:66:44:b8:a1:24:8e:a4:97:b8:75: 17:09:a5:69:2f:eb:68:f0:6c:b5:d5:3a:8c:a7:a0: 0b:fd:2f:09:25:17:87:02:ee:a8:76:86:b4:28:7b: af:e4:ec:c7:5b:68:89:7a:a6:a5:76:71:ce:e7:58: 87:4f:47:83:b0:41:43:47:3b:96:00:17:c6:4b:92: 39:8f:f0:d8:02:b0:db:0b:7f:9d:21:81:f8:23:37: 55:a2:34:73:41:75:09:76:3c:a8:2d:4f:2f:6a:1e: ba:de:98:c6:a2:ad:4f:f3:ad:83:e2:70:b0:ca:91: fd:95:b9:de:8d:7a:82:4b:e8:18:c9:18:81:20:0f: 2e:80:4c:e5:a2:5f:49:00:b0:c9:9a:f4:b5:61:e9: 01:1a:b8:8a:fd:b5:6c:59:49:32:6d:26:1d:07:da: 90:8f:50:78:ee:7c:f7:c9:eb:3b:7b:48:f0:ff:30: ad:57:f0:59:80:44:ba:d8:6e:d8:d3:0d:eb:56:b3: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DF:28:B9:A1:54:1A:97:9D:6E:CD:DD:44:1F:75:6C:9C:3A:66:97 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:50:6e:3d:c0:9e:6e:e8:77:d8:de:bc:4b:15:a2:cf:20:44: 7d:33:d2:33:8d:38:3d:4d:2e:78:ac:fd:88:df:11:e0:bb:7b: 5d:96:33:f1:ab:21:4d:18:47:07:3e:be:22:df:d7:cc:7f:48: 48:ac:25:e9:c4:c0:e8:6e:3b:0a:86:6b:3c:00:e2:ea:14:9a: bf:b8:17:bb:fb:e4:82:bd:07:3e:7f:fd:2f:c6:66:40:7a:66: 9d:28:bb:72:13:d7:23:08:30:b4:9f:11:f1:17:23:b1:ec:72: ab:e0:01:71:fc:e4:45:3e:11:ab:23:59:5a:80:9a:2b:57:df: 52:34:8f:b8:af:21:58:9f:65:8d:b9:4c:ac:45:2b:9b:09:64: 8e:a2:7d:9a:89:7b:90:62:fe:3d:86:12:8f:1c:ac:ec:ac:b5: 95:f3:4e:2f:3b:0e:7c:d9:52:d1:9a:81:3d:83:63:54:cc:e2: 56:24:c8:81:ad:aa:6a:be:4b:aa:6a:28:ec:96:12:41:ce:e3: de:bc:06:e2:67:5d:fa:e3:4d:17:c2:04:ae:37:b4:c9:69:21: 62:9d:53:fe:d3:47:39:41:41:0c:78:8c:14:cf:ba:e4:43:f9: 0a:4f:18:08:f6:75:69:4b:21:46:64:9f:26:50:85:4b:72:54: 6d:36:0f:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwNDA0MjA0MTM2WhcNMjUwNDExMjA0MTM2WjAYMRYwFAYD VQQDEw02N2YwNDQwMS1lYTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArp38+WcpwEsXK/u2sY9CN4aasC2bYM/bsrdDCzvsd/XWbkTSrV71mzoyBZez k3VKAjjNIWY/IwpJsCxs3nSJpGZEuKEkjqSXuHUXCaVpL+to8Gy11TqMp6AL/S8J JReHAu6odoa0KHuv5OzHW2iJeqaldnHO51iHT0eDsEFDRzuWABfGS5I5j/DYArDb C3+dIYH4IzdVojRzQXUJdjyoLU8vah663pjGoq1P862D4nCwypH9lbnejXqCS+gY yRiBIA8ugEzlol9JALDJmvS1YekBGriK/bVsWUkybSYdB9qQj1B47nz3yes7e0jw /zCtV/BZgES62G7Y0w3rVrNZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbfKLmh VBqXnW7N3UQfdWycOmaXMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGUG49wJ5u6HfY3rxLFaLPIER9M9IzjTg9TS54rP2I3xHgu3tdljPx qyFNGEcHPr4i39fMf0hIrCXpxMDobjsKhms8AOLqFJq/uBe7++SCvQc+f/0vxmZA emadKLtyE9cjCDC0nxHxFyOx7HKr4AFx/ORFPhGrI1lagJorV99SNI+4ryFYn2WN uUysRSubCWSOon2aiXuQYv49hhKPHKzsrLWV804vOw582VLRmoE9g2NUzOJWJMiB rapqvkuqaijslhJBzuPevAbiZ136400XwgSuN7TJaSFinVP+00c5QUEMeIwUz7rk Q/kKTxgI9nVpSyFGZJ8mUIVLclRtNg+B -----END CERTIFICATE-----Generated at Sat Apr 5 11:44:36 2025 by rpki-client