$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: f63EeGcTL6kXG/qemELlJwoBwe/Bik3l6cS15hkWcwI= Subject key identifier: E6:98:6C:EE:A5:7B:BF:E6:B7:9B:67:97:C9:4A:C2:86:CE:38:99:6C Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: A1 Signing time: Sat 29 Mar 2025 05:33:57 +0000 Manifest this update: Sat 29 Mar 2025 05:33:57 +0000 Manifest next update: Sat 05 Apr 2025 05:33:57 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: r9ObmCHnizK/pqVLEAd+mYozzeVdN6+D6A6tK58EdAM=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403 Validity Not Before: Mar 29 05:33:57 2025 GMT Not After : Apr 5 05:33:57 2025 GMT Subject: CN=67e78645-2c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fb:fe:00:0a:2f:1b:3a:91:ad:b7:49:59:31: 87:44:35:57:4b:10:87:66:1f:31:38:59:bb:8d:55: 1e:c6:42:d7:19:88:2d:e3:fa:34:9a:d0:cb:18:01: 52:ea:b7:e8:af:7e:85:65:2e:fb:bf:ad:af:63:51: fd:3e:96:b2:6e:0d:47:6f:0a:dc:2f:50:3d:71:32: 46:0a:2e:80:a1:d8:76:07:0d:27:26:8c:0f:3d:5e: 8c:1f:9f:94:4e:27:e0:ce:ba:12:fc:3b:b4:4f:38: 32:e3:68:14:72:3c:74:8c:80:47:79:09:af:f6:81: 1c:9d:a7:6f:41:1e:bf:d2:07:54:5b:c5:50:49:4d: c0:c4:1e:dd:25:d6:1d:cd:4d:6a:de:28:30:40:1e: 81:23:da:17:6a:46:1b:7a:3a:1c:21:de:39:5c:9a: 1a:5d:d2:8b:ba:e6:24:ca:80:c9:93:3e:05:ea:85: df:ea:f4:59:74:e9:f4:81:4c:18:0f:85:93:b1:33: 50:86:1c:8a:08:fb:47:e1:18:1b:b3:bc:fc:0e:96: 77:30:ce:ba:c1:bd:4b:f7:4c:7e:35:f3:52:09:f0: ef:9b:45:08:a3:d2:f2:da:e3:a3:33:27:2e:50:46: 88:54:48:42:49:f0:48:ce:cb:63:81:f0:48:4e:b4: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:98:6C:EE:A5:7B:BF:E6:B7:9B:67:97:C9:4A:C2:86:CE:38:99:6C X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:f1:b0:a6:da:dd:70:b9:20:b8:10:a0:ae:80:62:62:a4:b4: eb:b3:de:ca:b3:01:08:d6:75:ec:be:69:20:10:37:7e:27:fe: e5:3c:75:1b:62:8f:c0:7d:a1:76:98:74:1b:61:ca:cd:8d:94: 68:32:63:30:c9:82:b7:3e:57:f6:56:2c:db:d3:a6:d5:6e:04: ba:00:77:27:6d:93:a1:82:6f:1c:e9:51:c9:6f:26:e8:05:77: e4:cd:14:43:cc:5f:35:4a:a0:9c:05:12:4f:81:a3:33:55:67: 93:88:71:f1:e2:c5:c5:32:d2:ad:59:43:bb:7b:c5:ad:a1:5b: 31:af:1c:d5:b6:63:c6:66:6a:60:7e:e4:f4:47:15:1e:d1:6f: c5:d6:b8:89:f4:b2:eb:1a:6a:48:d5:75:c9:5b:1e:f5:db:b2: 7d:f8:ca:a4:6c:60:cc:df:bb:ab:bd:41:80:58:7b:6a:2f:4f: fb:39:44:49:25:66:7b:78:54:e4:49:8c:52:ff:42:5c:32:59: 7c:28:dc:79:4c:13:b9:46:b5:ef:7d:ae:87:f3:e6:70:f3:41: cc:d1:c6:bc:e5:fa:86:e6:ba:21:a3:02:eb:5c:9e:b4:80:9e: 93:ef:af:e4:2c:fc:93:19:79:43:ee:f7:9d:1a:c4:f1:9d:df: 0a:a9:53:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUwMzI5MDUzMzU3WhcNMjUwNDA1MDUzMzU3WjAYMRYwFAYD VQQDEw02N2U3ODY0NS0yYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/v+AAovGzqRrbdJWTGHRDVXSxCHZh8xOFm7jVUexkLXGYgt4/o0mtDLGAFS 6rfor36FZS77v62vY1H9Ppaybg1HbwrcL1A9cTJGCi6Aodh2Bw0nJowPPV6MH5+U TifgzroS/Du0Tzgy42gUcjx0jIBHeQmv9oEcnadvQR6/0gdUW8VQSU3AxB7dJdYd zU1q3igwQB6BI9oXakYbejocId45XJoaXdKLuuYkyoDJkz4F6oXf6vRZdOn0gUwY D4WTsTNQhhyKCPtH4Rgbs7z8DpZ3MM66wb1L90x+NfNSCfDvm0UIo9Ly2uOjMycu UEaIVEhCSfBIzstjgfBITrT2twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaYbO6l e7/mt5tnl8lKwobOOJlsMB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB58bCm2t1wuSC4EKCugGJipLTrs97KswEI1nXsvmkgEDd+J/7lPHUb Yo/AfaF2mHQbYcrNjZRoMmMwyYK3Plf2Vizb06bVbgS6AHcnbZOhgm8c6VHJbybo BXfkzRRDzF81SqCcBRJPgaMzVWeTiHHx4sXFMtKtWUO7e8WtoVsxrxzVtmPGZmpg fuT0RxUe0W/F1riJ9LLrGmpI1XXJWx7127J9+MqkbGDM37urvUGAWHtqL0/7OURJ JWZ7eFTkSYxS/0JcMll8KNx5TBO5RrXvfa6H8+Zw80HM0ca85fqG5rohowLrXJ60 gJ6T76/kLPyTGXlD7vedGsTxnd8KqVNK -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:52 2025 by rpki-client