$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: Jj9HcjPjo+/CdLsp8iS108Afwvhmsr3LCg/elYV7r+w= Subject key identifier: 5A:AD:8E:8F:57:B1:6C:51:DE:07:21:E9:2C:A1:C2:36:3F:5B:16:AC Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 082B Signing time: Wed 02 Apr 2025 20:48:45 +0000 Manifest this update: Wed 02 Apr 2025 20:48:44 +0000 Manifest next update: Wed 09 Apr 2025 20:48:44 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: v+bO+4MmZ4RQE81w17SAby4zvPG3T9jFZ/pu7LWsTq0=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48 Validity Not Before: Apr 2 20:48:44 2025 GMT Not After : Apr 9 20:48:44 2025 GMT Subject: CN=67eda2ac-de97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:47:e0:b8:d9:ad:77:95:a3:09:88:66:ad: de:53:f5:68:67:4f:2e:9e:65:f9:c0:07:0a:60:a6: 76:fb:ae:db:29:69:2c:98:59:44:62:2b:e9:fa:c1: 61:00:90:d7:26:15:73:00:1b:db:55:34:8f:e9:bd: 17:7d:3d:08:1f:3a:39:b5:ab:c6:68:69:82:a6:f5: 9c:a0:9c:b8:00:d0:48:f2:3f:c6:6f:1b:5a:28:9c: 68:81:66:e4:6d:84:37:55:ff:bd:81:b1:a1:12:97: b9:8c:ed:61:9c:1a:fa:de:0f:f8:3d:59:6d:c3:ca: 28:d9:6f:90:4b:54:7f:8a:ee:7b:0e:10:f1:ab:aa: a8:11:ec:97:f3:f8:d8:30:24:cc:b7:df:f2:21:bd: 35:52:25:7a:4f:a5:f0:4d:f9:a7:71:8c:d9:ff:4a: c2:87:42:bb:13:5e:73:c8:b8:13:84:ea:a7:ad:9f: 47:3c:44:47:fc:46:8c:c2:85:6c:95:e2:6a:13:97: 99:bf:b0:0c:44:e1:5c:17:9d:38:be:2a:1f:ab:83: 5f:74:7b:d9:69:40:ca:ed:94:87:8d:21:e9:8a:3a: 02:e1:b3:e9:ae:18:cc:aa:e6:c1:52:17:c6:92:f5: f3:02:0d:92:10:62:77:41:ff:cd:2b:47:11:ff:80: b2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AD:8E:8F:57:B1:6C:51:DE:07:21:E9:2C:A1:C2:36:3F:5B:16:AC X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:cc:f9:bd:3b:1a:91:d5:e8:c1:4a:9c:87:51:ab:f1:67:13: 86:d0:7c:30:3f:08:e2:33:60:00:32:54:c3:bd:1a:97:a7:30: 10:45:f4:39:e5:37:44:86:9b:d6:71:dc:17:3e:e2:9c:03:93: e2:ca:d4:b6:a9:45:86:30:9b:cd:56:dd:18:d0:9e:f3:b1:87: 08:38:32:7c:f2:23:54:e7:d0:af:9f:a6:d2:96:06:de:cc:0f: 54:d5:f9:f3:56:09:7e:47:63:b9:d7:03:95:e2:e7:8d:a2:42: c9:c9:b4:ea:42:16:42:01:3b:6d:d4:68:87:49:f6:40:e3:8c: 6d:3e:3e:ec:78:0a:cc:70:98:32:d7:26:77:36:d7:42:3c:77: 6e:5a:92:24:d2:2f:85:d8:94:cd:f3:b0:41:60:2e:a2:79:31: 51:7a:05:c7:07:62:83:de:0c:86:a2:9f:0a:55:e3:ba:f1:f7: 44:73:ae:bf:fd:15:db:8a:08:3f:ff:fd:b1:07:42:7e:d6:f7: 17:29:08:f0:e7:ea:df:a2:48:0d:c9:69:28:4d:6b:74:a0:45: 78:dc:00:bd:a1:2e:05:c0:24:9d:58:fb:ee:3d:e5:af:eb:98: e2:58:eb:c0:a0:5f:26:ef:e6:91:6a:e8:30:d9:32:ca:58:76: 5b:bd:bf:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUwNDAyMjA0ODQ0WhcNMjUwNDA5MjA0ODQ0WjAYMRYwFAYD VQQDEw02N2VkYTJhYy1kZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC5H4LjZrXeVowmIZq3eU/VoZ08unmX5wAcKYKZ2+67bKWksmFlEYivp+sFh AJDXJhVzABvbVTSP6b0XfT0IHzo5tavGaGmCpvWcoJy4ANBI8j/GbxtaKJxogWbk bYQ3Vf+9gbGhEpe5jO1hnBr63g/4PVltw8oo2W+QS1R/iu57DhDxq6qoEeyX8/jY MCTMt9/yIb01UiV6T6XwTfmncYzZ/0rCh0K7E15zyLgThOqnrZ9HPERH/EaMwoVs leJqE5eZv7AMROFcF504viofq4NfdHvZaUDK7ZSHjSHpijoC4bPprhjMqubBUhfG kvXzAg2SEGJ3Qf/NK0cR/4CyrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqtjo9X sWxR3gch6SyhwjY/WxasMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBzPm9OxqR1ejBSpyHUavxZxOG0HwwPwjiM2AAMlTDvRqXpzAQRfQ5 5TdEhpvWcdwXPuKcA5PiytS2qUWGMJvNVt0Y0J7zsYcIODJ88iNU59Cvn6bSlgbe zA9U1fnzVgl+R2O51wOV4ueNokLJybTqQhZCATtt1GiHSfZA44xtPj7seArMcJgy 1yZ3NtdCPHduWpIk0i+F2JTN87BBYC6ieTFRegXHB2KD3gyGop8KVeO68fdEc66/ /RXbigg///2xB0J+1vcXKQjw5+rfokgNyWkoTWt0oEV43AC9oS4FwCSdWPvuPeWv 65jiWOvAoF8m7+aRaugw2TLKWHZbvb/C -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:15 2025 by rpki-client