$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: 76gc/n7aFmilq3kQWjNpnFDQa5JG/8APCXIMWdDjqb0= Subject key identifier: FA:D3:CD:F8:21:64:13:DC:11:5B:77:BE:6E:CB:28:A0:2B:B9:13:6D Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 079C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0797 Signing time: Fri 04 Apr 2025 21:25:29 +0000 Manifest this update: Fri 04 Apr 2025 21:25:28 +0000 Manifest next update: Fri 11 Apr 2025 21:25:28 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: 582c44tZiVSuwKxKiqn8ZMbq0sIlNLwezznpNvPI860=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: IA44NsOrK26vTiCAA24OiQTy1Evi9ojQ75K61lOkBEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216 Validity Not Before: Apr 4 21:25:28 2025 GMT Not After : Apr 11 21:25:28 2025 GMT Subject: CN=67f04e48-d85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:68:31:5f:df:88:34:00:07:d0:46:48:87: e0:1b:96:13:c3:6d:c9:43:44:49:6c:40:90:c3:d0: d8:0c:3a:9c:91:86:3d:ef:bc:38:32:70:bf:a8:56: 05:d7:86:b6:63:f6:3a:e1:51:18:49:ee:64:6d:14: 0e:09:03:e1:56:73:7b:7a:09:c1:01:06:96:21:a3: 49:a2:7d:d8:e5:9b:83:95:7a:bf:11:08:02:04:76: e8:aa:63:ef:11:92:6f:b6:5e:33:ef:33:21:a8:4a: 7a:d0:91:d9:a7:17:7e:f9:6c:9c:f8:0e:41:70:c1: e0:6c:7c:d8:9a:68:0b:14:49:fa:2d:fd:09:be:17: 45:c4:fd:26:2c:f9:07:eb:3f:34:d4:55:fa:9f:72: 12:b9:52:5c:00:51:e9:05:48:9a:2e:83:6f:80:a7: c3:37:2d:63:13:09:37:2d:81:f7:04:d5:c9:58:e5: 44:e2:36:fe:b9:c8:fc:79:12:81:52:be:ed:4d:1c: 22:4a:e1:47:94:79:29:68:0c:c2:a9:72:64:57:5e: 59:f7:42:28:2e:e8:de:d2:ad:2a:4e:b7:f6:fb:d0: 76:47:a4:1d:7d:4d:ce:ce:4e:49:e9:aa:20:89:07: ad:00:f5:8e:3f:a1:50:79:8e:ef:af:a6:5a:36:3f: 53:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:CD:F8:21:64:13:DC:11:5B:77:BE:6E:CB:28:A0:2B:B9:13:6D X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e6:30:ea:93:00:f4:20:9d:5f:36:8a:38:d4:49:42:3a:de: 86:81:05:06:5a:18:d8:c6:be:7e:72:04:0e:f4:5c:bf:38:1a: 3f:9f:7f:9d:03:ec:0a:57:b2:0b:0a:e9:43:d5:70:36:32:e5: a6:ef:12:fc:81:e5:24:8f:0a:5c:1a:a4:f6:c9:b6:69:28:56: ea:81:fe:d6:89:a2:95:bc:30:a5:9b:57:bc:7a:55:59:75:47: cd:76:69:a0:44:21:ea:fd:43:f5:6b:88:3e:52:16:5a:44:3e: 2c:0f:04:bd:6e:5c:55:b2:16:f7:47:4f:68:8e:2d:a3:ed:b5: 37:3e:d0:e8:f7:ae:7f:8f:dc:51:3b:dc:88:1f:0d:5b:43:4b: 9f:44:82:56:3d:9a:0e:c2:93:78:a3:bc:7a:16:72:37:eb:22: 1a:ab:ef:3d:ab:ab:ef:32:bb:d8:88:33:98:64:33:58:3c:ab: 6e:a3:ba:bd:0c:e6:76:b5:13:fd:0a:38:22:5d:5b:11:f4:97: aa:3c:d4:51:bf:4a:0d:1e:1d:33:7f:6c:12:49:2d:db:5a:3d: 64:2a:eb:4a:f6:4a:52:cf:79:95:5c:d3:fa:5c:64:a4:2a:b6: 1a:71:97:88:8a:a5:2e:9e:b0:07:0e:0f:70:fc:07:f3:73:8e: 70:4f:b2:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUwNDA0MjEyNTI4WhcNMjUwNDExMjEyNTI4WjAYMRYwFAYD VQQDEw02N2YwNGU0OC1kODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrJoMV/fiDQAB9BGSIfgG5YTw23JQ0RJbECQw9DYDDqckYY977w4MnC/qFYF 14a2Y/Y64VEYSe5kbRQOCQPhVnN7egnBAQaWIaNJon3Y5ZuDlXq/EQgCBHboqmPv EZJvtl4z7zMhqEp60JHZpxd++Wyc+A5BcMHgbHzYmmgLFEn6Lf0JvhdFxP0mLPkH 6z801FX6n3ISuVJcAFHpBUiaLoNvgKfDNy1jEwk3LYH3BNXJWOVE4jb+ucj8eRKB Ur7tTRwiSuFHlHkpaAzCqXJkV15Z90IoLuje0q0qTrf2+9B2R6QdfU3Ozk5J6aog iQetAPWOP6FQeY7vr6ZaNj9TrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrTzfgh ZBPcEVt3vm7LKKAruRNtMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK5jDqkwD0IJ1fNoo41ElCOt6GgQUGWhjYxr5+cgQO9Fy/OBo/n3+d A+wKV7ILCulD1XA2MuWm7xL8geUkjwpcGqT2ybZpKFbqgf7WiaKVvDClm1e8elVZ dUfNdmmgRCHq/UP1a4g+UhZaRD4sDwS9blxVshb3R09oji2j7bU3PtDo965/j9xR O9yIHw1bQ0ufRIJWPZoOwpN4o7x6FnI36yIaq+89q6vvMrvYiDOYZDNYPKtuo7q9 DOZ2tRP9CjgiXVsR9JeqPNRRv0oNHh0zf2wSSS3bWj1kKutK9kpSz3mVXNP6XGSk KrYacZeIiqUunrAHDg9w/Afzc45wT7I1 -----END CERTIFICATE-----Generated at Sat Apr 5 19:28:17 2025 by rpki-client