$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: C0MCG5WDmGpa2q92xb9G2E3DgrKPgeDMFC7aWfDtGPg= Subject key identifier: 5D:5D:A7:E3:7F:00:66:AF:49:C8:14:E5:81:90:42:42:75:1B:2F:0E Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 01EA Signing time: Thu 03 Apr 2025 02:06:20 +0000 Manifest this update: Thu 03 Apr 2025 02:06:20 +0000 Manifest next update: Thu 10 Apr 2025 02:06:20 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: DgtXwio2rpByTURumpaeZSYIXoGw4HLi4eyI4t2llxE=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68 Validity Not Before: Apr 3 02:06:20 2025 GMT Not After : Apr 10 02:06:20 2025 GMT Subject: CN=67eded1c-4edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cc:42:e1:1d:9c:81:f4:f8:b5:b8:fe:3a:ed: 86:7b:e3:92:20:3a:6e:a8:19:2c:9b:a7:88:18:2f: 2d:3c:6c:48:ec:39:df:35:e4:62:39:97:04:6f:9d: 7a:ac:a2:5f:13:29:39:fd:66:e4:83:ef:ef:8a:75: 39:61:89:64:87:cd:97:c8:e0:89:a9:34:0b:44:c9: 5a:73:84:20:99:6d:78:85:4b:07:94:b1:ff:81:8f: 39:4d:68:73:30:9e:b5:16:7e:9e:95:5e:b7:24:c1: dc:46:c7:b1:10:bb:a1:a7:12:c0:99:cd:87:c4:76: ee:21:c2:0f:97:86:7c:03:27:31:d0:da:cb:ca:6c: 22:15:e9:ba:a8:77:fe:c8:3b:4c:1c:ac:a3:d0:c1: 06:a6:ff:6e:62:6e:fa:b4:28:0c:b6:64:4f:d5:20: e8:d9:2c:fd:e4:f6:09:67:e3:72:ee:82:af:82:4d: a8:c7:f1:79:ca:c6:c5:26:94:75:6f:e3:af:83:c2: fe:2e:45:48:52:c2:dd:5b:06:fb:f6:ba:40:32:dc: 27:72:50:eb:5b:03:d8:4c:41:84:40:ea:0a:3f:41: 31:48:af:aa:cb:7c:94:56:45:aa:7d:07:6a:28:6d: 70:cd:d8:61:8b:1b:4f:16:e3:90:1b:31:65:38:f2: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5D:A7:E3:7F:00:66:AF:49:C8:14:E5:81:90:42:42:75:1B:2F:0E X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:65:6d:b8:d8:0c:7a:4d:85:e4:e8:fc:20:eb:d7:64:11:3c: 85:7b:f2:f9:81:ff:9d:d2:ff:18:d4:80:d6:e0:ca:93:60:7f: e3:f6:19:e4:c0:bf:63:68:27:27:d4:65:a8:c2:b3:69:d0:8a: e1:5a:0a:92:05:4b:ec:8f:07:05:f3:a5:f0:e8:ac:b0:89:7c: 93:24:f4:f9:01:1d:a9:1a:95:89:53:14:a8:6f:16:87:ef:4b: 12:cb:8d:51:14:83:e2:0d:aa:1e:b4:88:a8:ed:d3:9a:cb:7d: b1:2c:32:f8:b9:92:8c:23:58:d4:c5:b0:1c:e8:5c:a1:1a:80: cf:48:e6:9c:c7:ea:c3:f9:53:23:4e:73:0e:bb:9c:08:6b:bd: 0d:bd:8d:0d:ed:f3:5d:10:ea:af:50:ea:86:2d:48:59:38:ad: 8f:30:b5:d3:35:c8:88:a5:a1:25:da:18:4f:b0:15:37:f6:74: 7f:25:44:b3:f8:2e:87:78:e8:4c:1d:d7:3e:30:29:d3:21:c9: 6c:4a:6b:91:58:4d:8b:99:08:ba:a8:40:2e:bb:c9:0e:60:3d: 09:ad:51:ad:08:cc:57:39:f2:ee:4e:cd:12:10:bf:36:28:8c: 79:68:86:55:60:9b:df:eb:68:ed:0c:a4:3e:50:ef:b9:2b:f0: 05:c5:9e:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUwNDAzMDIwNjIwWhcNMjUwNDEwMDIwNjIwWjAYMRYwFAYD VQQDEw02N2VkZWQxYy00ZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cxC4R2cgfT4tbj+Ou2Ge+OSIDpuqBksm6eIGC8tPGxI7DnfNeRiOZcEb516 rKJfEyk5/Wbkg+/vinU5YYlkh82XyOCJqTQLRMlac4QgmW14hUsHlLH/gY85TWhz MJ61Fn6elV63JMHcRsexELuhpxLAmc2HxHbuIcIPl4Z8Aycx0NrLymwiFem6qHf+ yDtMHKyj0MEGpv9uYm76tCgMtmRP1SDo2Sz95PYJZ+Ny7oKvgk2ox/F5ysbFJpR1 b+Ovg8L+LkVIUsLdWwb79rpAMtwnclDrWwPYTEGEQOoKP0ExSK+qy3yUVkWqfQdq KG1wzdhhixtPFuOQGzFlOPJQZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1dp+N/ AGavScgU5YGQQkJ1Gy8OMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYZW242Ax6TYXk6Pwg69dkETyFe/L5gf+d0v8Y1IDW4MqTYH/j9hnk wL9jaCcn1GWowrNp0IrhWgqSBUvsjwcF86Xw6KywiXyTJPT5AR2pGpWJUxSobxaH 70sSy41RFIPiDaoetIio7dOay32xLDL4uZKMI1jUxbAc6FyhGoDPSOacx+rD+VMj TnMOu5wIa70NvY0N7fNdEOqvUOqGLUhZOK2PMLXTNciIpaEl2hhPsBU39nR/JUSz +C6HeOhMHdc+MCnTIclsSmuRWE2LmQi6qEAuu8kOYD0JrVGtCMxXOfLuTs0SEL82 KIx5aIZVYJvf62jtDKQ+UO+5K/AFxZ5E -----END CERTIFICATE-----Generated at Fri Apr 4 18:29:22 2025 by rpki-client