$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: ocdDChiCrssAyDiVmxUQvMNpMcRYjm5IHrZ5PRUj/kc= Subject key identifier: 34:62:82:B2:61:71:F2:DD:5E:A3:17:F4:C0:53:83:86:9F:0A:56:19 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: E7 Signing time: Thu 03 Apr 2025 04:41:43 +0000 Manifest this update: Thu 03 Apr 2025 04:41:42 +0000 Manifest next update: Thu 10 Apr 2025 04:41:42 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: 8Ikl1R6UeIVETnshuWVM+udQNSMzoGe1H+UEEHIGepk=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A Validity Not Before: Apr 3 04:41:42 2025 GMT Not After : Apr 10 04:41:42 2025 GMT Subject: CN=67ee1187-9e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:20:28:af:c5:1b:a1:f1:8e:20:6d:c7:f2: 69:49:05:93:b2:c7:a3:e3:23:09:92:0e:df:a2:2f: f2:e0:1c:f5:8f:7a:25:8a:31:f2:d0:f4:6a:75:b7: b4:02:15:58:22:d6:95:65:0f:0d:e8:05:c0:4a:b5: 8a:76:71:5f:d2:79:f7:c8:02:44:5d:34:b8:ed:bd: c9:3f:73:84:52:a7:9f:6b:05:0b:3c:ad:e4:01:ad: 10:15:cd:3c:33:63:ad:b3:09:af:fd:a8:59:cb:ef: 06:5f:2b:6e:7d:10:3c:f0:09:b6:a7:e1:57:be:34: 7f:19:3f:02:49:a9:d4:cf:97:e9:88:05:8d:e1:7e: 3a:c0:be:55:b9:c0:b4:6d:5c:7c:88:01:38:af:f3: f0:24:e9:d8:5e:ea:c0:47:75:2b:3b:b6:72:37:cc: 70:93:78:bc:e7:77:fc:67:a4:e9:6f:49:83:b1:d7: 39:3d:bc:d8:b6:0c:16:09:b9:90:da:88:ca:04:97: a6:93:e8:18:26:70:79:12:92:f4:5f:df:b5:8f:06: 01:dd:8f:47:51:ef:14:c5:70:1a:fc:68:3f:0e:c1: 33:a1:c2:7c:69:a5:9a:c7:c0:de:03:d2:f6:dd:4c: 92:60:b5:f2:4f:7c:de:54:97:11:97:76:9d:4c:f9: 9c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:62:82:B2:61:71:F2:DD:5E:A3:17:F4:C0:53:83:86:9F:0A:56:19 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ee:fd:7b:6f:45:19:b3:85:67:bd:18:65:d4:36:71:43:ba: 64:b9:cb:2b:a3:3f:49:17:e5:ae:f8:90:78:49:6d:15:95:42: f9:f9:e8:d9:30:85:61:97:11:24:f7:99:21:14:2c:a0:6c:18: 8c:c8:c1:22:7e:f5:8c:8a:b1:40:b5:e6:05:5d:38:2a:4d:36: 85:64:23:0b:fa:ea:fa:64:4e:68:86:5c:f2:7f:7f:7f:b5:c4: 78:ba:92:d6:80:16:f8:af:eb:95:7f:69:2d:b7:02:7d:58:8a: a5:af:ba:2e:5a:8c:a2:10:69:8b:36:f3:11:bc:39:a8:4d:54: c7:7d:6a:f1:2c:45:5f:b7:e5:7d:f7:9c:98:03:a5:24:24:b8: c3:a4:d8:7a:3c:ed:af:78:c5:47:87:31:cd:70:f2:fc:78:98: a1:9f:48:ff:c1:39:86:29:d8:b9:3c:12:74:a3:84:f1:2f:7c: 54:01:fc:17:70:b8:1c:01:d7:39:14:6c:f8:7a:9c:80:41:9d: b9:0c:ba:49:f6:be:26:db:20:bd:2c:49:8e:43:21:87:ef:5d: 67:d7:69:21:40:15:39:b9:89:f5:ef:0c:37:31:d2:22:28:be: 89:f7:2c:f0:59:0f:32:28:b8:ff:5c:11:18:5d:0d:db:05:48: a0:4f:7f:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUwNDAzMDQ0MTQyWhcNMjUwNDEwMDQ0MTQyWjAYMRYwFAYD VQQDEw02N2VlMTE4Ny05ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmggKK/FG6HxjiBtx/JpSQWTssej4yMJkg7foi/y4Bz1j3olijHy0PRqdbe0 AhVYItaVZQ8N6AXASrWKdnFf0nn3yAJEXTS47b3JP3OEUqefawULPK3kAa0QFc08 M2Otswmv/ahZy+8GXytufRA88Am2p+FXvjR/GT8CSanUz5fpiAWN4X46wL5VucC0 bVx8iAE4r/PwJOnYXurAR3UrO7ZyN8xwk3i853f8Z6Tpb0mDsdc5PbzYtgwWCbmQ 2ojKBJemk+gYJnB5EpL0X9+1jwYB3Y9HUe8UxXAa/Gg/DsEzocJ8aaWax8DeA9L2 3UySYLXyT3zeVJcRl3adTPmcxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRigrJh cfLdXqMX9MBTg4afClYZMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx7v17b0UZs4VnvRhl1DZxQ7pkucsroz9JF+Wu+JB4SW0VlUL5+ejZ MIVhlxEk95khFCygbBiMyMEifvWMirFAteYFXTgqTTaFZCML+ur6ZE5ohlzyf39/ tcR4upLWgBb4r+uVf2kttwJ9WIqlr7ouWoyiEGmLNvMRvDmoTVTHfWrxLEVft+V9 95yYA6UkJLjDpNh6PO2veMVHhzHNcPL8eJihn0j/wTmGKdi5PBJ0o4TxL3xUAfwX cLgcAdc5FGz4epyAQZ25DLpJ9r4m2yC9LEmOQyGH711n12khQBU5uYn17ww3MdIi KL6J9yzwWQ8yKLj/XBEYXQ3bBUigT39S -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:14 2025 by rpki-client