$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: tpGUuawHKGh4kiduyOULyhmqAJHdimtRuTQyMxe4njs= Subject key identifier: 6D:1D:CD:9C:03:04:46:46:17:D5:DF:17:F2:29:B0:CB:97:78:98:9B Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 04D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 04C4 Signing time: Sat 29 Mar 2025 00:06:18 +0000 Manifest this update: Sat 29 Mar 2025 00:06:18 +0000 Manifest next update: Sat 05 Apr 2025 00:06:18 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: F7BQdPybFkY58WcPHEY+MuJzOcYOlCyYAZbpl8sQXXY=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1233 (0x4d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B Validity Not Before: Mar 29 00:06:18 2025 GMT Not After : Apr 5 00:06:18 2025 GMT Subject: CN=67e7397a-667e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:89:97:a6:9d:1c:24:bd:f4:3f:a8:76:91: 5c:91:8d:57:3c:db:98:e0:33:6a:2a:49:fe:0a:ea: 13:28:40:9d:09:e3:96:d3:a8:ae:56:39:9b:ac:05: f3:57:fc:e8:95:82:5c:fa:e1:54:a8:05:e6:f7:c3: 98:ea:f4:8f:1b:48:ae:64:d3:e8:31:f5:ed:29:db: a7:b8:e2:84:01:bf:25:b3:d7:53:de:eb:6b:ca:78: 17:bf:4c:94:31:0a:9a:cd:22:cd:26:65:6d:22:3c: dd:e3:89:8f:61:73:27:69:c1:2d:57:51:8c:70:c0: ff:8c:58:f8:f6:ec:f1:58:0d:d9:83:51:44:ed:a6: 3d:b4:f4:3e:f5:b6:18:c0:83:1c:62:e0:d6:34:c5: f2:2b:7b:06:cb:57:d1:56:a9:fb:af:ca:5b:5d:f8: 0e:66:ac:75:73:27:af:af:08:69:7b:9c:e5:d8:97: 15:d4:93:c1:f3:2d:f9:0d:5d:1b:aa:47:fe:ab:41: b7:07:09:2c:f5:53:f4:8b:d4:a5:4d:1e:d2:1b:24: a6:0d:af:f3:ff:04:de:f4:e9:a9:57:30:2b:66:c1: d7:b7:2c:7d:9b:8f:be:94:e2:c6:32:9b:30:b7:d6: ae:33:df:e5:73:8d:bd:5b:7f:44:ae:ba:c9:d4:4e: 41:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1D:CD:9C:03:04:46:46:17:D5:DF:17:F2:29:B0:CB:97:78:98:9B X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:58:d9:4a:11:47:3b:95:74:8b:73:ef:fa:08:e1:dd:b7:c8: ae:c7:3a:7d:af:40:57:1c:dd:80:27:73:da:2a:08:48:cd:c2: ae:e6:92:5e:7f:9b:0a:69:9a:01:61:c7:e3:f4:b4:93:cf:df: 3a:e9:58:20:3d:77:26:e8:38:5c:c9:ac:f0:4a:26:a5:d6:3d: 24:10:7d:96:2f:f7:ae:aa:2f:ea:43:86:8b:17:e0:3b:ce:d6: 2c:d4:cf:f4:55:24:d8:52:a9:98:23:21:36:e6:26:c1:ad:62: d6:2c:c0:05:88:30:f9:8c:1c:df:83:fd:5d:aa:0f:0c:73:78: 5b:83:52:3c:e4:55:c1:f3:01:55:3b:36:0e:c3:b2:01:7d:c1: ce:c8:c5:d8:88:f4:cb:c8:a1:0d:59:c4:a4:dc:d6:24:32:03: fb:db:ca:59:46:69:81:92:5f:4d:5a:9d:10:4e:96:96:7a:1c: de:97:d6:89:2c:c5:3a:5b:f8:cb:32:c4:25:05:53:33:16:d7: b5:68:d8:e3:4b:f6:37:8f:37:c7:d2:32:67:05:12:dc:0c:60: d4:af:5d:c7:8a:26:e5:a0:86:80:2a:4f:b5:1c:6a:8b:08:63: 45:12:45:16:fa:02:df:62:bd:d0:6b:a5:4b:00:2c:bd:de:f2: f4:45:d4:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwMzI5MDAwNjE4WhcNMjUwNDA1MDAwNjE4WjAYMRYwFAYD VQQDEw02N2U3Mzk3YS02NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC2Jl6adHCS99D+odpFckY1XPNuY4DNqKkn+CuoTKECdCeOW06iuVjmbrAXz V/zolYJc+uFUqAXm98OY6vSPG0iuZNPoMfXtKdunuOKEAb8ls9dT3utryngXv0yU MQqazSLNJmVtIjzd44mPYXMnacEtV1GMcMD/jFj49uzxWA3Zg1FE7aY9tPQ+9bYY wIMcYuDWNMXyK3sGy1fRVqn7r8pbXfgOZqx1cyevrwhpe5zl2JcV1JPB8y35DV0b qkf+q0G3Bwks9VP0i9SlTR7SGySmDa/z/wTe9OmpVzArZsHXtyx9m4++lOLGMpsw t9auM9/lc429W39ErrrJ1E5B3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0dzZwD BEZGF9XfF/IpsMuXeJibMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZWNlKEUc7lXSLc+/6COHdt8iuxzp9r0BXHN2AJ3PaKghIzcKu5pJe f5sKaZoBYcfj9LSTz9866VggPXcm6DhcyazwSial1j0kEH2WL/euqi/qQ4aLF+A7 ztYs1M/0VSTYUqmYIyE25ibBrWLWLMAFiDD5jBzfg/1dqg8Mc3hbg1I85FXB8wFV OzYOw7IBfcHOyMXYiPTLyKENWcSk3NYkMgP728pZRmmBkl9NWp0QTpaWehzel9aJ LMU6W/jLMsQlBVMzFte1aNjjS/Y3jzfH0jJnBRLcDGDUr13HiibloIaAKk+1HGqL CGNFEkUW+gLfYr3Qa6VLACy93vL0RdSx -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:49 2025 by rpki-client