$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft File: 9pu293YHOZ_TQrEkyvjejeR_cw8.mft (raw, json) Hash identifier: rw+H+EERnmVff9G58g9cjjHkT9M9nbWXOkI56sjVUP4= Subject key identifier: C6:44:5E:EA:4E:31:7A:25:32:D0:09:CE:A5:C3:AE:76:31:71:EF:5C Authority key identifier: F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F Certificate issuer: /CN=A91CBB1B/serialNumber=F69BB6F77607399FD342B124CAF8DE8DE47F730F Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft Manifest number: 0198 Signing time: Sat 29 Mar 2025 03:00:10 +0000 Manifest this update: Sat 29 Mar 2025 03:00:09 +0000 Manifest next update: Sat 05 Apr 2025 03:00:09 +0000 Files and hashes: 1: 9pu293YHOZ_TQrEkyvjejeR_cw8.crl (hash: T4wxTkRlhFQfkRz2sM4GSAb1esZWYBCqg9zJhW5Zaco=) 2: A606B22CA65211EDB3A5967CC4F9AE02.roa (hash: OlmuxEBq0fJDq+ub9McrhDdVwDRZLRD2yDkFBtrKAKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB1B Validity Not Before: Mar 29 03:00:09 2025 GMT Not After : Apr 5 03:00:09 2025 GMT Subject: CN=67e76239-e313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:77:b0:71:f6:f6:41:3f:11:d9:9c:83:ee:bf: e0:2c:4c:90:70:b7:89:dc:27:c1:75:c2:a2:db:a8: 68:54:88:f4:fc:8f:f7:f9:26:28:26:4e:b1:68:18: 19:81:14:01:b5:f5:7d:e8:e4:2d:1b:f6:b8:32:0f: bd:2d:15:92:42:5c:ac:c5:0f:2f:bd:69:8b:df:36: 34:ca:2b:d4:a8:0c:65:41:86:ee:13:5e:65:70:43: e8:1c:b5:d4:4b:b3:be:bd:41:66:52:44:a7:58:51: 80:54:c7:b4:f7:24:09:ad:56:65:23:7c:2b:41:88: 22:11:46:ec:ac:72:d4:8a:91:7e:d4:84:f9:d3:e4: e9:1b:c2:f4:16:d5:a5:50:8c:c5:05:5f:97:8f:df: 65:90:1e:67:48:13:02:a1:9a:6d:2f:01:23:85:8f: 32:e7:46:02:da:71:2c:c0:c8:c0:1e:e0:61:16:f5: eb:d1:f6:81:e8:4b:5c:51:ce:97:3d:eb:74:fd:a3: f9:6e:b4:e6:b9:f0:bb:03:6b:67:8f:b8:17:50:fe: e8:16:dc:7f:ff:18:e2:f5:c6:b0:6f:7a:b1:a0:75: 42:5c:1d:b4:95:09:e9:35:71:dc:cb:10:72:7a:c0: 5b:54:3d:df:2a:93:f8:fa:89:13:ec:70:ee:b2:8b: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:44:5E:EA:4E:31:7A:25:32:D0:09:CE:A5:C3:AE:76:31:71:EF:5C X509v3 Authority Key Identifier: keyid:F6:9B:B6:F7:76:07:39:9F:D3:42:B1:24:CA:F8:DE:8D:E4:7F:73:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pu293YHOZ_TQrEkyvjejeR_cw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB1B/2AD13986A64F11ED9802CA76C4F9AE02/9pu293YHOZ_TQrEkyvjejeR_cw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d9:b7:d5:11:0b:02:15:d4:c9:2d:aa:99:05:9d:12:de:cc: 21:6d:d4:42:0d:b4:ea:28:03:7b:b7:76:67:3e:67:60:3a:de: d0:67:46:33:69:94:d3:01:23:17:7e:96:f5:a8:40:fd:0b:62: a1:30:ba:e2:43:a2:1e:78:0b:cc:f1:8c:c6:c3:09:e1:fb:56: da:36:0e:fa:0a:b2:a5:e8:14:6b:a7:36:0b:ea:80:2f:15:e0: e1:2e:a8:2e:70:a8:08:b8:7a:ad:64:fe:44:82:f7:04:a8:fb: f0:42:25:0f:1c:34:20:ae:f9:cd:f6:5f:2e:b2:67:3f:e7:a2: eb:b5:bd:38:ba:a4:a9:ca:30:e5:cb:f2:04:a7:f8:3a:f3:f2: 07:b2:34:99:fd:f9:bf:af:2a:76:34:44:cb:d7:c0:c1:a0:35: 18:c9:e0:4c:d3:5c:c3:1f:bb:50:ea:14:bd:8d:c0:54:b6:c0: 68:2c:c3:ae:ac:36:6e:c2:8a:0e:1c:91:f4:1c:77:ee:65:4d: dd:62:6b:35:22:15:0e:c1:f1:1a:c6:bc:fe:62:d1:01:76:6e: ed:7a:97:61:80:dd:7c:23:9b:8b:67:da:24:6a:9e:11:36:c3: c4:78:32:2d:40:e1:5a:4c:51:f0:67:6d:82:e4:b4:50:13:f6: d2:70:1c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMUIxMTAvBgNVBAUTKEY2OUJCNkY3NzYwNzM5OUZEMzQyQjEyNENBRjhERThE RTQ3RjczMEYwHhcNMjUwMzI5MDMwMDA5WhcNMjUwNDA1MDMwMDA5WjAYMRYwFAYD VQQDEw02N2U3NjIzOS1lMzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXewcfb2QT8R2ZyD7r/gLEyQcLeJ3CfBdcKi26hoVIj0/I/3+SYoJk6xaBgZ gRQBtfV96OQtG/a4Mg+9LRWSQlysxQ8vvWmL3zY0yivUqAxlQYbuE15lcEPoHLXU S7O+vUFmUkSnWFGAVMe09yQJrVZlI3wrQYgiEUbsrHLUipF+1IT50+TpG8L0FtWl UIzFBV+Xj99lkB5nSBMCoZptLwEjhY8y50YC2nEswMjAHuBhFvXr0faB6EtcUc6X Pet0/aP5brTmufC7A2tnj7gXUP7oFtx//xji9cawb3qxoHVCXB20lQnpNXHcyxBy esBbVD3fKpP4+okT7HDusouX2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZEXupO MXolMtAJzqXDrnYxce9cMB8GA1UdIwQYMBaAFPabtvd2Bzmf00KxJMr43o3kf3MP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIxQi8yQUQxMzk4NkE2 NEYxMUVEOTgwMkNBNzZDNEY5QUUwMi85cHUyOTNZSE9aX1RRckVreXZqZWplUl9j dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwdTI5M1lIT1pfVFFyRWt5dmplamVSX2N3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIxQi8yQUQxMzk4NkE2NEYxMUVEOTgwMkNBNzZDNEY5QUUwMi85cHUyOTNZSE9a X1RRckVreXZqZWplUl9jdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo2bfVEQsCFdTJLaqZBZ0S3swhbdRCDbTqKAN7t3ZnPmdgOt7QZ0Yz aZTTASMXfpb1qED9C2KhMLriQ6IeeAvM8YzGwwnh+1baNg76CrKl6BRrpzYL6oAv FeDhLqgucKgIuHqtZP5EgvcEqPvwQiUPHDQgrvnN9l8usmc/56Lrtb04uqSpyjDl y/IEp/g68/IHsjSZ/fm/ryp2NETL18DBoDUYyeBM01zDH7tQ6hS9jcBUtsBoLMOu rDZuwooOHJH0HHfuZU3dYms1IhUOwfEaxrz+YtEBdm7tepdhgN18I5uLZ9okap4R NsPEeDItQOFaTFHwZ22C5LRQE/bScBxG -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:11 2025 by rpki-client