$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: XYM7E2flsVQHfLFI5bqzfHYIsm1mCCJNLt9RsYhHqCM= Subject key identifier: 4C:92:97:02:AF:88:7A:97:18:F3:61:56:E1:70:96:7C:89:84:9A:3C Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 08E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 08D1 Signing time: Fri 04 Apr 2025 20:39:11 +0000 Manifest this update: Fri 04 Apr 2025 20:39:11 +0000 Manifest next update: Fri 11 Apr 2025 20:39:11 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: Apl4jbKwwI6wQuzZje8nPe9fwgxSPI4t05gUNoQHEGM=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2276 (0x8e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4 Validity Not Before: Apr 4 20:39:11 2025 GMT Not After : Apr 11 20:39:11 2025 GMT Subject: CN=67f0436f-49d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:df:7e:57:4e:36:4f:37:f4:a8:17:4c:61: 3e:55:d2:c3:0d:a8:54:94:a9:04:88:2b:2c:ef:9e: c3:61:51:0e:c4:9b:b4:39:08:ea:70:26:b1:cb:ec: 49:b9:16:3e:88:d2:01:5f:60:18:a2:33:d7:3a:db: 71:ba:ce:b8:55:28:40:9b:43:c2:07:18:34:b0:da: 5c:4f:d8:56:bc:81:00:f7:1d:99:12:7f:7a:ef:f3: a9:31:39:23:7e:b2:34:4b:a6:0a:5d:16:b6:d1:76: 71:45:ab:e1:3e:ba:b9:89:00:27:09:0f:f0:f3:cf: ac:2f:b6:04:84:b9:9a:af:89:64:bf:ab:e4:c0:f1: bd:62:48:63:3f:f3:37:03:80:3f:ac:55:af:11:da: 7c:c8:d4:a7:06:4e:b0:8e:fc:3f:61:85:d2:8e:54: 66:74:ee:63:23:09:46:b6:8b:84:78:0f:50:a0:7c: cf:8a:a5:0b:8d:93:d0:73:70:a7:8b:9b:83:67:da: d7:fb:be:83:1a:b8:fa:e1:7f:02:4d:f0:c5:b5:05: 2b:3b:e1:84:7d:3c:17:18:4a:75:f3:ad:dc:3f:54: e8:f9:b9:0d:36:30:53:de:79:93:ff:8b:55:9b:fa: 33:73:80:4d:24:15:d5:a7:64:e8:ee:f9:06:64:1e: ec:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:92:97:02:AF:88:7A:97:18:F3:61:56:E1:70:96:7C:89:84:9A:3C X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:03:fb:50:15:56:49:78:ae:fc:61:44:d8:c8:b6:af:ef:89: a3:68:3a:93:2f:82:d1:49:cf:1d:21:ec:e4:21:34:84:a0:af: c9:14:3e:22:1d:9b:6d:ab:53:80:9a:9e:d4:df:3d:56:e1:e3: 19:00:da:0c:9b:9d:41:02:51:90:6a:74:45:51:87:da:5a:33: 05:ac:61:ef:d9:8a:c0:17:bc:a1:cb:da:55:0c:55:13:aa:7f: c6:67:3e:49:39:48:3f:e3:1f:d5:fa:89:1f:05:cb:c2:12:38: 5f:62:09:e7:2d:f3:c9:b9:99:da:48:74:f0:26:23:4a:29:16: 23:96:96:b5:1c:c3:76:1b:8e:8a:f4:2c:7c:ff:b4:a4:1e:cd: 1e:eb:52:16:aa:b5:74:45:a4:8c:ea:31:fc:4c:57:28:41:1a: e9:6d:f5:0d:cf:77:dd:e1:da:47:28:35:e5:19:47:37:6f:d4: 17:13:cb:b0:31:e4:d0:2a:3a:a7:cd:b3:d2:51:b0:40:09:80: 94:49:f8:67:0b:81:05:4f:43:92:d3:b1:20:8d:6d:9f:6c:da: 17:5b:ae:db:98:78:1c:50:aa:32:7a:f4:1c:1f:4c:41:db:b6: 02:79:c6:a5:f9:4b:05:4e:48:41:27:e9:72:38:4b:09:3d:ab: ed:88:c9:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUwNDA0MjAzOTExWhcNMjUwNDExMjAzOTExWjAYMRYwFAYD VQQDEw02N2YwNDM2Zi00OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4/ffldONk839KgXTGE+VdLDDahUlKkEiCss757DYVEOxJu0OQjqcCaxy+xJ uRY+iNIBX2AYojPXOttxus64VShAm0PCBxg0sNpcT9hWvIEA9x2ZEn967/OpMTkj frI0S6YKXRa20XZxRavhPrq5iQAnCQ/w88+sL7YEhLmar4lkv6vkwPG9YkhjP/M3 A4A/rFWvEdp8yNSnBk6wjvw/YYXSjlRmdO5jIwlGtouEeA9QoHzPiqULjZPQc3Cn i5uDZ9rX+76DGrj64X8CTfDFtQUrO+GEfTwXGEp1863cP1To+bkNNjBT3nmT/4tV m/ozc4BNJBXVp2To7vkGZB7sAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEySlwKv iHqXGPNhVuFwlnyJhJo8MB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOA/tQFVZJeK78YUTYyLav74mjaDqTL4LRSc8dIezkITSEoK/JFD4i HZttq1OAmp7U3z1W4eMZANoMm51BAlGQanRFUYfaWjMFrGHv2YrAF7yhy9pVDFUT qn/GZz5JOUg/4x/V+okfBcvCEjhfYgnnLfPJuZnaSHTwJiNKKRYjlpa1HMN2G46K 9Cx8/7SkHs0e61IWqrV0RaSM6jH8TFcoQRrpbfUNz3fd4dpHKDXlGUc3b9QXE8uw MeTQKjqnzbPSUbBACYCUSfhnC4EFT0OS07EgjW2fbNoXW67bmHgcUKoyevQcH0xB 27YCecal+UsFTkhBJ+lyOEsJPavtiMkj -----END CERTIFICATE-----Generated at Sun Apr 6 02:34:03 2025 by rpki-client