$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft File: 1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft (raw, json) Hash identifier: 89Pf3Y1PgD2HAJyK9wpx4orlWX5uOCm8ZUUrpiexD0o= Subject key identifier: 99:4C:F5:36:A7:36:96:B9:4D:E8:AD:DB:30:3B:88:AF:11:DB:E2:3B Authority key identifier: D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 Certificate issuer: /CN=A91CE959/serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft Manifest number: C1 Signing time: Thu 03 Apr 2025 05:08:43 +0000 Manifest this update: Thu 03 Apr 2025 05:08:42 +0000 Manifest next update: Thu 10 Apr 2025 05:08:42 +0000 Files and hashes: 1: 1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl (hash: gYZ4PrbC1Cqd+Aal9IxAWMqRE93vyRm9SThNG4JWA80=) 2: 99244E94FE0211EEB1F40344C4F9AE02.roa (hash: ryfpBDCWcmiRZYqeao/rsVyXOOOGDWQajzrZGBcgq+0=) 3: 03BA6992ED7711EE9998FC11C4F9AE02.roa (hash: NecAjd+CZeOPqXXjjBIs9rEIjFJr1slo8jl+q1zHuq8=) 4: 38556AC6ED7711EEA7B2AF12C4F9AE02.roa (hash: x08O0LKYaX3hn9bkCscla0qFn3NKZcPh8LO75bK0AIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE959 Validity Not Before: Apr 3 05:08:42 2025 GMT Not After : Apr 10 05:08:42 2025 GMT Subject: CN=67ee17da-7ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:de:cb:c2:10:6e:29:8c:f8:5a:25:22:56:1c: ad:93:33:d5:3a:d7:e8:a4:b8:0e:68:9e:84:5e:4b: 19:6b:f4:7e:cf:a3:da:ef:8f:eb:59:06:2c:84:47: 27:31:ba:28:ff:8b:5c:58:f0:53:b2:3f:35:d9:92: 18:5c:ad:7c:3c:ed:b5:a2:ab:7d:79:d7:ac:2a:de: 1f:0c:a4:0f:84:3b:90:db:0a:4d:55:31:28:24:04: 2b:70:25:fe:5c:33:0b:09:a6:51:7d:b6:50:ac:b4: c4:9c:b5:12:30:11:20:d6:94:f0:fb:f2:76:68:fa: 89:c3:a3:42:07:03:3d:74:0f:96:48:bb:7c:c9:17: 7a:4d:bd:33:ad:46:e0:58:3f:b9:27:9c:62:17:3f: b9:6a:1e:28:6f:e1:96:78:cd:6c:ad:24:75:d9:dc: 49:af:6d:3a:c5:ee:45:5c:2d:b8:3b:67:7c:0d:83: ed:4c:a4:84:2c:f0:76:9c:6c:ff:cf:03:1c:fd:d2: 0c:a0:fa:57:9e:a0:cc:ca:f9:3e:de:bd:d5:ae:4c: 44:28:36:bb:ab:24:9e:e9:c8:7b:c8:1f:9f:cb:bc: f1:17:97:1a:0b:02:f7:ae:35:e3:7a:da:82:22:31: c9:91:6f:8d:2f:f1:ce:a0:8c:15:af:63:62:e9:cb: 1a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4C:F5:36:A7:36:96:B9:4D:E8:AD:DB:30:3B:88:AF:11:DB:E2:3B X509v3 Authority Key Identifier: keyid:D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0a:c7:26:81:1b:ea:d3:fc:c4:af:3e:a1:1a:17:32:a8:55: fb:f3:be:07:b6:3b:8a:79:59:7e:10:3f:76:07:d4:9b:d6:38: 50:d6:42:b1:11:cc:a6:73:a6:51:f5:ea:a8:28:67:c1:c7:5a: 1f:b5:74:4c:46:0c:ab:e1:5b:e5:7c:70:e9:6d:a1:3f:aa:70: bf:63:03:91:4a:d6:3f:39:b2:e2:b7:4c:af:46:90:ca:0e:36: 50:ad:c8:29:9a:b8:1e:0f:10:8a:ac:3f:52:47:11:74:a2:69: 5d:ff:fe:71:8f:31:8c:20:c4:47:26:58:bd:9c:af:5f:fb:2a: 73:35:cc:32:2f:a6:cc:af:fb:51:e7:42:6c:b0:8b:f8:51:82: 5c:85:be:b9:bc:94:4a:d9:3e:ed:95:4e:41:41:29:27:8a:71: 45:53:c2:5c:9a:34:a4:77:08:2c:53:19:b9:6e:4a:ce:63:c8: e0:de:c1:2e:78:42:9d:13:96:bd:82:0a:fc:88:b8:94:d5:6e: 0f:0c:ed:44:cc:cf:f4:4a:e5:3d:c5:30:0a:14:1a:58:2e:37: 15:58:0a:ab:f3:37:21:97:02:6b:00:44:f9:92:73:9d:52:4f: 5a:63:dc:2e:65:e5:8f:c3:0a:22:b3:94:bc:93:f3:95:91:af: 83:5e:bb:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NTkxMTAvBgNVBAUTKEQ2RUMyMkE3M0E1OUQyQUE5NTU5OTc0NzAyNzlDNjYy RDExMDg4RjIwHhcNMjUwNDAzMDUwODQyWhcNMjUwNDEwMDUwODQyWjAYMRYwFAYD VQQDEw02N2VlMTdkYS03Y2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d7LwhBuKYz4WiUiVhytkzPVOtfopLgOaJ6EXksZa/R+z6Pa74/rWQYshEcn Mboo/4tcWPBTsj812ZIYXK18PO21oqt9edesKt4fDKQPhDuQ2wpNVTEoJAQrcCX+ XDMLCaZRfbZQrLTEnLUSMBEg1pTw+/J2aPqJw6NCBwM9dA+WSLt8yRd6Tb0zrUbg WD+5J5xiFz+5ah4ob+GWeM1srSR12dxJr206xe5FXC24O2d8DYPtTKSELPB2nGz/ zwMc/dIMoPpXnqDMyvk+3r3VrkxEKDa7qySe6ch7yB+fy7zxF5caCwL3rjXjetqC IjHJkW+NL/HOoIwVr2Ni6csafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlM9Tan Npa5Teit2zA7iK8R2+I7MB8GA1UdIwQYMBaAFNbsIqc6WdKqlVmXRwJ5xmLREIjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk1OS9BQTRDNzdFQ0VE NzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBxcVZXWmRIQW5uR1l0RVFp UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF1d2lwenBaMHFxVldaZEhBbm5HWXRFUWlQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk1OS9BQTRDNzdFQ0VENzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBx cVZXWmRIQW5uR1l0RVFpUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCscmgRvq0/zErz6hGhcyqFX7874HtjuKeVl+ED92B9Sb1jhQ1kKx Ecymc6ZR9eqoKGfBx1oftXRMRgyr4VvlfHDpbaE/qnC/YwORStY/ObLit0yvRpDK DjZQrcgpmrgeDxCKrD9SRxF0omld//5xjzGMIMRHJli9nK9f+ypzNcwyL6bMr/tR 50JssIv4UYJchb65vJRK2T7tlU5BQSkninFFU8JcmjSkdwgsUxm5bkrOY8jg3sEu eEKdE5a9ggr8iLiU1W4PDO1EzM/0SuU9xTAKFBpYLjcVWAqr8zchlwJrAET5knOd Uk9aY9wuZeWPwwois5S8k/OVka+DXrsM -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:30 2025 by rpki-client