$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: sAShovuE3XstQSJzpS6Bu1wo9Xm/Rr7dwtEg2edcgXo= Subject key identifier: 7C:7A:2D:D6:11:B5:AD:B1:72:08:A9:6C:9B:D8:34:D9:B6:D5:56:E5 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 047C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 0470 Signing time: Thu 03 Apr 2025 00:08:01 +0000 Manifest this update: Thu 03 Apr 2025 00:08:01 +0000 Manifest next update: Thu 10 Apr 2025 00:08:01 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: 91+NxL1EJLxnaGT7mGTy0qcACICJWwlEfZvBA96kan0=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA Validity Not Before: Apr 3 00:08:01 2025 GMT Not After : Apr 10 00:08:01 2025 GMT Subject: CN=67edd161-d803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:20:d0:ed:24:11:83:e1:ad:e7:44:df:b0:19: a6:a8:46:50:04:8b:d7:b8:9f:9a:78:2e:a0:d5:81: f5:e7:fe:9e:7b:37:75:4f:08:2e:73:ad:55:76:6b: c6:2b:f1:cb:90:a2:40:a6:da:5e:3d:82:9a:25:0d: 11:24:63:56:d6:5b:f0:71:33:c4:23:b4:7b:c4:7e: 18:87:77:18:6a:88:1e:2d:a0:6e:6f:2c:2c:15:28: 15:c7:ac:96:22:09:dd:af:de:d4:51:91:8e:40:10: ff:3b:15:41:4b:2d:96:f6:16:89:dd:3d:ce:6d:bc: 8e:79:43:d4:f1:ea:e9:2a:2b:fa:16:59:51:b8:51: 5f:71:88:de:57:26:b7:af:6d:3a:ef:33:be:29:32: b8:12:32:90:40:e1:40:ea:2b:b2:b9:7c:9e:95:3e: a7:67:76:81:a3:bd:9f:d5:49:20:bc:36:4c:a6:71: 3d:35:2c:30:ca:84:0a:56:3a:1e:35:69:58:30:0f: ae:93:51:b4:a6:45:52:7e:d7:64:88:51:29:3e:61: 61:69:40:65:9e:7b:36:bb:65:d5:c3:fb:67:1a:88: 02:d5:8c:b7:77:fd:9f:80:a7:3b:36:d2:fb:a9:75: 1c:b3:62:26:f3:c3:05:a5:c7:a2:c3:d4:df:b5:c4: 72:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7A:2D:D6:11:B5:AD:B1:72:08:A9:6C:9B:D8:34:D9:B6:D5:56:E5 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:5e:6d:ed:b3:3e:88:10:49:9d:db:98:b0:ed:dc:6a:94:c3: 28:4a:95:fa:95:16:b6:7b:6d:68:83:29:c4:8d:75:35:a3:c4: d1:a3:e7:b7:d3:ea:e7:bb:31:69:35:43:5e:9c:a2:28:86:5e: 96:18:ba:a9:a9:b0:9a:18:2d:42:db:4e:e4:d8:aa:eb:2f:1f: 1f:03:84:28:6d:1d:56:39:5c:7e:b6:d8:8b:6b:2b:5d:89:18: fd:83:e2:c6:37:cf:e6:89:51:04:7c:81:1b:00:cb:5a:28:14: 2c:f2:8e:00:c6:14:80:64:cc:48:2a:17:c6:62:9b:79:d0:93: ee:57:94:f6:87:5f:0d:8e:d0:07:0b:44:bf:fe:cc:cb:e8:78: c4:79:68:37:0d:67:26:29:84:d7:6a:5a:44:02:a7:80:75:fc: e4:9f:39:c9:31:73:32:4c:2e:a5:41:42:06:13:cc:1d:86:94: 1b:28:e3:07:5d:07:e4:e5:4b:de:76:d3:fe:ed:e2:0a:a5:f2: 21:e0:a2:8e:ca:19:db:77:1c:86:e3:66:ec:73:1e:1a:6e:67: 8b:92:a7:3a:72:b6:71:29:50:9c:ab:85:00:a1:24:15:40:2f: ad:d0:2f:e8:24:1a:14:71:49:19:62:b3:54:ed:9b:0e:94:6f: 47:82:56:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUwNDAzMDAwODAxWhcNMjUwNDEwMDAwODAxWjAYMRYwFAYD VQQDEw02N2VkZDE2MS1kODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyDQ7SQRg+Gt50TfsBmmqEZQBIvXuJ+aeC6g1YH15/6eezd1Twguc61VdmvG K/HLkKJAptpePYKaJQ0RJGNW1lvwcTPEI7R7xH4Yh3cYaogeLaBubywsFSgVx6yW Igndr97UUZGOQBD/OxVBSy2W9haJ3T3ObbyOeUPU8erpKiv6FllRuFFfcYjeVya3 r2067zO+KTK4EjKQQOFA6iuyuXyelT6nZ3aBo72f1UkgvDZMpnE9NSwwyoQKVjoe NWlYMA+uk1G0pkVSftdkiFEpPmFhaUBlnns2u2XVw/tnGogC1Yy3d/2fgKc7NtL7 qXUcs2Im88MFpceiw9TftcRyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHx6LdYR ta2xcgipbJvYNNm21VblMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXXm3tsz6IEEmd25iw7dxqlMMoSpX6lRa2e21ogynEjXU1o8TRo+e3 0+rnuzFpNUNenKIohl6WGLqpqbCaGC1C207k2KrrLx8fA4QobR1WOVx+ttiLaytd iRj9g+LGN8/miVEEfIEbAMtaKBQs8o4AxhSAZMxIKhfGYpt50JPuV5T2h18NjtAH C0S//szL6HjEeWg3DWcmKYTXalpEAqeAdfzknznJMXMyTC6lQUIGE8wdhpQbKOMH XQfk5UvedtP+7eIKpfIh4KKOyhnbdxyG42bscx4abmeLkqc6crZxKVCcq4UAoSQV QC+t0C/oJBoUcUkZYrNU7ZsOlG9HglZK -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:35 2025 by rpki-client