$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: yLWLr5wFqSyLa32bHGv1T638yPnBcuYinq+ryuf9f6o= Subject key identifier: 29:2C:3E:95:83:C3:48:BF:AB:D8:80:FD:49:AE:3E:05:A6:16:0D:DC Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: 014F Signing time: Sat 05 Apr 2025 03:34:20 +0000 Manifest this update: Sat 05 Apr 2025 03:34:19 +0000 Manifest next update: Sat 12 Apr 2025 03:34:19 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: WQsvJtifN1pXREpwp5BRNZ/V8FYuoOBF98yrIL/YkV4=) 2: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: 4bHJddjDshspH/1XIJ/4VQJxh31gIJKernZ8Tce+/MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4 Validity Not Before: Apr 5 03:34:19 2025 GMT Not After : Apr 12 03:34:19 2025 GMT Subject: CN=67f0a4bc-e635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a4:34:a7:3a:7e:4f:d0:1d:88:e0:ad:b7:72: ef:e0:8b:b2:92:58:27:40:c4:b7:77:cb:7c:96:1a: 59:52:40:42:69:c7:98:5c:ae:c1:6c:91:6e:c7:da: 4d:e9:4e:92:90:4e:22:af:38:2b:0a:dd:53:3a:74: a7:39:d8:69:46:80:fc:0e:84:bd:7d:e3:be:2d:92: b4:7a:83:f4:92:4a:72:7d:b5:69:0e:63:ca:ce:39: d5:65:3c:7a:24:25:38:24:83:a7:ea:09:7d:0b:22: f7:88:23:e6:14:35:a2:1f:c1:15:45:f4:78:ad:3f: 72:3a:cf:af:44:ef:d5:c5:14:b9:06:2d:89:27:c4: ed:0d:3d:e4:fc:6a:51:a8:8a:83:06:f7:d1:78:70: 29:6a:6b:15:8a:2c:97:a3:e8:95:05:1a:7a:91:e9: a5:5d:9a:6a:56:d4:11:9f:c9:24:c4:c3:f2:2b:26: ea:53:c3:f1:75:d2:26:02:62:04:e8:7f:9f:fd:6a: ff:d9:e6:70:6d:54:65:06:a6:cf:58:ac:eb:c4:89: e7:df:ef:a5:64:5c:74:70:38:5d:1a:28:02:33:81: 8b:78:3d:d8:36:88:1d:5c:17:09:04:c9:62:a1:98: 37:d8:25:c4:83:29:ea:46:35:40:f2:2a:ae:13:bc: bf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2C:3E:95:83:C3:48:BF:AB:D8:80:FD:49:AE:3E:05:A6:16:0D:DC X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:76:b9:32:28:c9:55:29:50:58:08:0d:9c:e1:ac:f6:f8:07: 28:06:ef:e9:1a:ed:2c:05:4c:62:28:4a:f8:cb:7b:67:bb:b1: cd:4f:f8:a6:a1:74:7c:c0:dd:a0:2d:a3:53:96:05:e5:77:11: ed:26:05:ca:9e:a9:68:80:45:28:ac:05:eb:40:1c:56:2a:16: c0:ee:af:81:97:28:f5:b4:b6:fc:ca:62:13:b6:33:8c:57:e9: 32:ee:f5:c1:49:c7:45:d1:1a:36:95:be:f0:a0:43:5b:2c:ad: 93:ce:8d:57:c8:52:0d:01:e7:5a:4b:97:a1:4d:bd:8f:63:ee: cd:9a:2b:4b:1d:53:a6:70:c0:41:05:ab:26:62:c1:26:a2:48: 1a:4e:a6:6f:a4:b2:0d:95:2b:0d:fc:52:9e:9f:21:aa:2e:1d: 61:b5:c2:1c:b9:0f:53:35:38:e9:71:b1:2e:73:51:31:b5:df: f8:c3:d7:c2:47:f9:77:03:08:ce:d8:37:43:31:a8:58:58:96: c8:8c:44:0e:4a:94:40:c0:58:10:76:8e:bd:17:f5:f8:9c:97: a8:a0:a7:28:23:d5:94:af:3e:5d:99:f2:04:5f:48:ff:7c:49: d4:ea:59:44:5c:b2:ce:f6:51:c4:8d:19:10:0a:26:6f:fe:30: c1:80:68:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjUwNDA1MDMzNDE5WhcNMjUwNDEyMDMzNDE5WjAYMRYwFAYD VQQDEw02N2YwYTRiYy1lNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aQ0pzp+T9AdiOCtt3Lv4IuyklgnQMS3d8t8lhpZUkBCaceYXK7BbJFux9pN 6U6SkE4irzgrCt1TOnSnOdhpRoD8DoS9feO+LZK0eoP0kkpyfbVpDmPKzjnVZTx6 JCU4JIOn6gl9CyL3iCPmFDWiH8EVRfR4rT9yOs+vRO/VxRS5Bi2JJ8TtDT3k/GpR qIqDBvfReHApamsViiyXo+iVBRp6kemlXZpqVtQRn8kkxMPyKybqU8PxddImAmIE 6H+f/Wr/2eZwbVRlBqbPWKzrxInn3++lZFx0cDhdGigCM4GLeD3YNogdXBcJBMli oZg32CXEgynqRjVA8iquE7y/UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCksPpWD w0i/q9iA/UmuPgWmFg3cMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQdrkyKMlVKVBYCA2c4az2+AcoBu/pGu0sBUxiKEr4y3tnu7HNT/im oXR8wN2gLaNTlgXldxHtJgXKnqlogEUorAXrQBxWKhbA7q+Blyj1tLb8ymITtjOM V+ky7vXBScdF0Ro2lb7woENbLK2Tzo1XyFINAedaS5ehTb2PY+7NmitLHVOmcMBB BasmYsEmokgaTqZvpLINlSsN/FKenyGqLh1htcIcuQ9TNTjpcbEuc1Extd/4w9fC R/l3AwjO2DdDMahYWJbIjEQOSpRAwFgQdo69F/X4nJeooKcoI9WUrz5dmfIEX0j/ fEnU6llEXLLO9lHEjRkQCiZv/jDBgGgf -----END CERTIFICATE-----Generated at Sat Apr 5 22:04:07 2025 by rpki-client