$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft File: MAKFsSjLjblfHkH_vS68Io1FPvw.mft (raw, json) Hash identifier: XuFm5YT9cw1mk9V3pv6Y2XomhlsQ7omalWBxiFeYvm8= Subject key identifier: 18:2A:1A:21:AA:18:65:C2:0C:FE:DB:27:87:54:A0:1B:F7:CA:F4:BE Authority key identifier: 30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC Certificate issuer: /CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft Manifest number: 0447 Signing time: Sat 05 Apr 2025 00:20:39 +0000 Manifest this update: Sat 05 Apr 2025 00:20:39 +0000 Manifest next update: Sat 12 Apr 2025 00:20:39 +0000 Files and hashes: 1: MAKFsSjLjblfHkH_vS68Io1FPvw.crl (hash: 6vQ8IXT8rWY3W6Qb0fxppjtiSP42cyD2rHcjrbE7SxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D Validity Not Before: Apr 5 00:20:39 2025 GMT Not After : Apr 12 00:20:39 2025 GMT Subject: CN=67f07757-8263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:49:ef:8f:86:1d:e0:75:89:6b:ad:4d:18: c9:70:6c:8a:93:ba:68:0c:76:a8:85:88:b8:dc:43: 63:63:bd:24:db:7e:d7:2b:cb:8e:30:51:77:1b:93: 21:fd:4f:36:29:81:bb:2e:06:1a:a8:8e:c1:c0:bc: d5:1b:52:3b:6c:d8:b9:4c:e9:68:5b:a4:66:22:2f: a2:b9:ac:f7:dd:39:c5:59:8d:3b:67:af:a9:40:e9: 93:1a:99:72:7b:2f:da:8c:95:66:2f:80:29:13:3e: 04:81:5b:26:d7:4e:9e:58:21:d2:98:39:bb:f2:67: a5:65:a5:15:f9:a4:65:9a:8a:15:7c:89:7d:30:1d: ca:ff:4b:0f:32:e1:2a:d0:56:c6:db:a7:ff:54:c9: 59:36:77:e0:ee:c2:29:93:c9:6d:71:fb:b5:5a:21: 3d:a0:f5:de:dd:1e:75:33:d1:62:49:46:88:e1:5c: 29:a7:18:d4:fe:32:f8:c5:8e:27:87:d5:2b:6e:17: d9:7a:99:95:e7:ae:a1:d5:c3:b9:9b:3c:40:1f:23: 34:b0:2c:00:49:31:56:bf:23:be:b6:9a:0c:38:ef: a9:fa:55:0a:b2:58:81:9e:2c:81:6a:62:8a:4e:2a: 5e:6d:53:43:47:03:c5:79:03:b9:8c:0c:71:73:4a: fd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2A:1A:21:AA:18:65:C2:0C:FE:DB:27:87:54:A0:1B:F7:CA:F4:BE X509v3 Authority Key Identifier: keyid:30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:83:de:b3:33:54:0e:a8:83:9e:1e:45:5a:eb:29:da:af:0c: 5f:00:8b:07:76:47:47:f0:5d:2f:65:98:e3:be:84:3c:b8:af: 66:c6:5b:fb:6f:a3:ae:ae:d6:18:98:2f:62:b8:cb:63:d4:7e: 27:6a:89:66:87:e5:24:2e:a6:44:97:25:cf:fe:2c:a4:28:d6: 38:d6:3b:96:02:ad:04:8a:c0:ae:8b:62:b9:e5:9b:26:93:97: 64:98:26:4f:7b:df:f5:8b:ac:99:a8:de:d5:d5:ae:34:c3:09: 84:3b:1f:d5:0e:32:50:87:33:5f:36:96:cf:f9:51:7c:2a:41: b9:30:a6:cf:85:9e:a8:b3:d0:05:f6:5d:09:62:50:3f:a2:9e: d3:79:e7:10:6b:86:35:7d:80:f0:ee:2c:b3:58:a9:07:73:3f: 1b:65:dd:d9:f2:db:19:2b:b9:eb:18:cd:12:26:d4:7b:c8:db: 76:d5:75:2a:bb:28:2b:a9:70:63:ae:0e:6a:b8:14:2a:fc:a5: ca:0e:f8:ad:44:17:2c:d1:78:0d:de:fe:a1:e0:21:be:e0:ef: 8a:e2:f5:a4:46:4d:28:73:f3:69:55:a4:dd:46:5b:94:75:0f: 72:2a:9e:e9:c8:26:7f:04:07:b6:42:e7:30:38:a2:c9:87:5a: f1:4e:41:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDMwMDI4NUIxMjhDQjhEQjk1RjFFNDFGRkJEMkVCQzIy OEQ0NTNFRkMwHhcNMjUwNDA1MDAyMDM5WhcNMjUwNDEyMDAyMDM5WjAYMRYwFAYD VQQDEw02N2YwNzc1Ny04MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6xJ74+GHeB1iWutTRjJcGyKk7poDHaohYi43ENjY70k237XK8uOMFF3G5Mh /U82KYG7LgYaqI7BwLzVG1I7bNi5TOloW6RmIi+iuaz33TnFWY07Z6+pQOmTGply ey/ajJVmL4ApEz4EgVsm106eWCHSmDm78melZaUV+aRlmooVfIl9MB3K/0sPMuEq 0FbG26f/VMlZNnfg7sIpk8ltcfu1WiE9oPXe3R51M9FiSUaI4VwppxjU/jL4xY4n h9UrbhfZepmV566h1cO5mzxAHyM0sCwASTFWvyO+tpoMOO+p+lUKsliBniyBamKK TipebVNDRwPFeQO5jAxxc0r9XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgqGiGq GGXCDP7bJ4dUoBv3yvS+MB8GA1UdIwQYMBaAFDAChbEoy425Xx5B/70uvCKNRT78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ENDRFMzZEMDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpibGZIa0hfdlM2OElvMUZQ dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BS0ZzU2pMamJsZkhrSF92UzY4SW8xRlB2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDM5RC9ENDRFMzZEMDRFNzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpi bGZIa0hfdlM2OElvMUZQdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOg96zM1QOqIOeHkVa6ynarwxfAIsHdkdH8F0vZZjjvoQ8uK9mxlv7 b6OurtYYmC9iuMtj1H4naolmh+UkLqZElyXP/iykKNY41juWAq0EisCui2K55Zsm k5dkmCZPe9/1i6yZqN7V1a40wwmEOx/VDjJQhzNfNpbP+VF8KkG5MKbPhZ6os9AF 9l0JYlA/op7TeecQa4Y1fYDw7iyzWKkHcz8bZd3Z8tsZK7nrGM0SJtR7yNt21XUq uygrqXBjrg5quBQq/KXKDvitRBcs0XgN3v6h4CG+4O+K4vWkRk0oc/NpVaTdRluU dQ9yKp7pyCZ/BAe2QucwOKLJh1rxTkH2 -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:39 2025 by rpki-client