$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft File: wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft (raw, json) Hash identifier: BQsJdFoAuQAQNP/KKC7vroHxO8y+jBvdkkdDuQ/yLpE= Subject key identifier: D3:73:42:31:9B:1C:03:08:70:B0:F2:38:91:01:35:EE:77:7A:67:DA Authority key identifier: C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 Certificate issuer: /CN=A91CE821/serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Certificate serial: 14A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft Manifest number: 18DA Signing time: Fri 04 Apr 2025 16:57:51 +0000 Manifest this update: Fri 04 Apr 2025 16:57:50 +0000 Manifest next update: Fri 11 Apr 2025 16:57:50 +0000 Files and hashes: 1: wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl (hash: NqKWd3ll6n+kMK/o3qVKvTD8SEDZFBRr6CSL3aahjaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5286 (0x14a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821 Validity Not Before: Apr 4 16:57:50 2025 GMT Not After : Apr 11 16:57:50 2025 GMT Subject: CN=67f00f8e-4f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:ce:22:80:c8:9c:99:56:1f:47:47:12:2c: 00:1f:49:63:2b:ce:7b:6b:4a:f0:51:af:a6:68:fe: 2f:ed:50:da:a1:5c:20:ed:52:ac:77:b7:6e:9d:92: 2b:e0:dc:60:0f:84:87:b0:a5:be:cf:f2:cb:09:9e: 56:15:d6:79:7b:34:64:fe:36:51:d4:d9:18:be:3f: 09:80:f9:f5:a4:9a:fe:d7:96:dd:cd:57:1b:61:80: b5:f2:81:f1:21:ea:2b:a1:e2:66:3f:e8:ce:30:c3: 43:8c:a6:d0:3d:e8:81:1a:83:25:4e:3c:1f:21:aa: ee:35:ff:bd:65:1d:88:74:1e:1b:29:e8:1c:94:74: a9:71:64:d7:c2:cf:2d:df:21:64:20:c9:1e:ca:a4: 8a:74:84:59:c9:f4:3b:62:1e:fb:d6:50:ce:59:df: 76:8f:b3:b5:e7:f3:a6:83:e6:dd:49:a0:03:74:5b: 47:5e:da:9a:d9:ab:a8:50:e3:11:63:f9:d1:a9:bd: 2b:d1:a1:6c:96:99:90:d2:11:76:1d:75:53:71:48: cc:00:08:77:aa:98:f2:de:49:53:34:16:d4:d9:00: b0:b2:43:b5:51:49:c9:a7:f0:54:87:87:52:b1:76: 88:70:6a:18:44:19:90:72:99:ae:48:0b:55:6b:25: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:73:42:31:9B:1C:03:08:70:B0:F2:38:91:01:35:EE:77:7A:67:DA X509v3 Authority Key Identifier: keyid:C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:6e:ef:6b:63:e6:e5:7e:83:bf:e8:fb:5a:fa:fc:98:69:d7: 9b:a2:19:2f:df:7d:4d:68:03:59:22:5d:e9:83:5d:f6:b9:59: b9:25:13:ef:89:45:7e:2f:0d:9b:1e:83:e2:e4:68:25:bc:2d: ec:f1:54:c5:c0:0f:c8:e2:92:ab:21:c3:d4:70:62:1d:e8:4e: e6:00:4b:a4:10:8d:3b:af:2b:f4:e5:42:70:6b:ed:b6:f6:22: d5:7b:1d:68:d1:d5:5f:a6:d1:de:1c:53:6b:35:4e:71:1c:5a: cf:47:ee:7a:5f:86:b8:5d:c5:1d:ab:98:f7:90:c0:cb:ac:ea: 7d:df:c2:9e:a5:14:7b:72:6f:9b:49:3c:e7:4c:4c:f0:58:26: 51:b7:07:4d:1f:1e:e5:83:02:80:32:84:4d:54:fd:aa:d6:d5: ca:bc:c3:10:13:72:da:dc:fd:be:19:48:bd:bb:75:24:f0:93: 61:d4:5e:52:93:3e:61:0d:a4:b9:4e:9b:9d:43:35:0a:e3:b0: fb:02:c0:da:d9:ff:57:5d:92:30:6f:c4:17:25:45:22:62:ef: 97:62:c1:68:a2:f3:28:6c:e7:24:94:e4:24:96:0f:ad:f4:53: 57:af:af:b7:2f:82:9a:83:ae:b8:be:e2:5f:e0:c9:11:e7:bf: 7e:53:7d:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKEMyMjJDMTlFQkY1Mjg0NEQ0QjdDREEwRUY3NTRFNkQz MzBDNEI2MDkwHhcNMjUwNDA0MTY1NzUwWhcNMjUwNDExMTY1NzUwWjAYMRYwFAYD VQQDEw02N2YwMGY4ZS00ZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupDOIoDInJlWH0dHEiwAH0ljK857a0rwUa+maP4v7VDaoVwg7VKsd7dunZIr 4NxgD4SHsKW+z/LLCZ5WFdZ5ezRk/jZR1NkYvj8JgPn1pJr+15bdzVcbYYC18oHx IeoroeJmP+jOMMNDjKbQPeiBGoMlTjwfIaruNf+9ZR2IdB4bKegclHSpcWTXws8t 3yFkIMkeyqSKdIRZyfQ7Yh771lDOWd92j7O15/Omg+bdSaADdFtHXtqa2auoUOMR Y/nRqb0r0aFslpmQ0hF2HXVTcUjMAAh3qpjy3klTNBbU2QCwskO1UUnJp/BUh4dS sXaIcGoYRBmQcpmuSAtVayWrGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNzQjGb HAMIcLDyOJEBNe53emfaMB8GA1UdIwQYMBaAFMIiwZ6/UoRNS3zaDvdU5tMwxLYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hFMUxmTm9POTFUbTB6REV0 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dpTEJucjlTaEUxTGZOb085MVRtMHpERXRnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgyMS84MTFGQjU5MDYwNTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hF MUxmTm9POTFUbTB6REV0Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTbu9rY+blfoO/6Pta+vyYadebohkv331NaANZIl3pg132uVm5JRPv iUV+Lw2bHoPi5GglvC3s8VTFwA/I4pKrIcPUcGId6E7mAEukEI07ryv05UJwa+22 9iLVex1o0dVfptHeHFNrNU5xHFrPR+56X4a4XcUdq5j3kMDLrOp938KepRR7cm+b STznTEzwWCZRtwdNHx7lgwKAMoRNVP2q1tXKvMMQE3La3P2+GUi9u3Uk8JNh1F5S kz5hDaS5TpudQzUK47D7AsDa2f9XXZIwb8QXJUUiYu+XYsFoovMobOcklOQklg+t 9FNXr6+3L4Kag664vuJf4MkR579+U30Z -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:11 2025 by rpki-client