$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: B4PPKKBa09Hvr7GNBq01yI+3bFbyjrPJgmH8PqNswHg= Subject key identifier: D7:3D:76:FD:86:89:6D:7F:51:54:06:3B:61:DD:7A:83:78:79:14:96 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 0153 Signing time: Sat 05 Apr 2025 03:35:10 +0000 Manifest this update: Sat 05 Apr 2025 03:35:09 +0000 Manifest next update: Sat 12 Apr 2025 03:35:09 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: B6aMVyTnYF6hphuuurKQrKr0YlJgms3FayuhDFRd4yk=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: JgXDvvb08AKpWtQFVgWoJSRrsvnpi7N5Npk5xtbR4bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623 Validity Not Before: Apr 5 03:35:09 2025 GMT Not After : Apr 12 03:35:09 2025 GMT Subject: CN=67f0a4ed-c9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:18:d2:62:81:0a:64:ea:5a:80:be:c9:d5:ee: 21:4f:08:f1:68:42:83:53:bf:07:08:af:c3:cc:da: 25:e0:cb:23:61:19:e0:d7:d4:01:ee:7c:dc:3c:ff: ba:89:4f:e1:63:7a:9e:5b:c1:94:b4:29:de:db:44: a9:31:44:74:f5:d0:45:b1:c0:7d:14:fc:f0:27:10: 31:73:3f:eb:c4:1b:14:69:54:c4:2b:3e:ec:47:ca: cc:b2:a7:10:39:67:ca:2c:2e:51:82:b8:12:34:a0: a1:d5:23:74:a3:a7:45:40:db:cb:bb:a9:59:da:1a: 71:f2:f6:4d:ee:e0:b8:9b:f1:52:95:75:73:25:3e: 8e:55:7b:fa:1a:8a:37:2e:f9:77:9a:2b:80:8f:4d: 94:da:f9:bb:54:c9:aa:e7:69:53:f2:8f:ba:ec:ed: 21:1e:3d:08:5c:05:c4:96:24:7d:8d:0d:fe:7e:2a: 66:8d:0d:d8:37:f1:fb:d1:8c:e8:ab:77:bd:5e:5e: 27:d2:ef:2c:f9:1b:47:bb:33:43:38:93:2c:ca:73: a8:a6:54:43:be:d9:3c:0f:26:fa:48:d0:9f:3d:cc: cd:a1:a9:fe:53:b1:35:88:89:ff:c8:7b:6f:78:d1: ce:37:eb:21:7d:61:bb:f2:1c:b6:02:bf:64:93:8a: 57:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3D:76:FD:86:89:6D:7F:51:54:06:3B:61:DD:7A:83:78:79:14:96 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:af:d9:c7:82:a0:a7:81:00:8a:9e:a3:89:52:42:bb:ba:d8: 23:df:f5:68:e9:bf:75:34:51:36:8f:51:0b:fe:b9:44:9d:f3: 0d:44:97:96:5a:9a:5b:c1:7e:b5:68:2c:92:90:5a:50:ff:0a: 42:04:7f:cd:96:91:f8:5b:5b:61:a7:86:1b:75:8e:68:23:f9: 7c:f9:e2:dc:c4:60:bc:af:c8:f1:c1:11:30:ae:9b:20:55:9e: 7c:83:86:0a:a3:d6:c7:96:5b:b5:8b:c0:82:5a:67:63:de:f3: 48:1e:9e:e8:a8:57:82:e1:29:b1:1d:d2:f4:75:19:1a:d7:07: fc:65:81:8d:35:37:39:35:ed:ca:b4:71:59:a6:83:82:c1:aa: 85:63:56:07:e1:4b:6f:89:b5:d7:fc:d1:62:3b:80:80:c0:6e: f1:35:cf:22:73:d2:8c:12:82:b8:03:e8:02:32:f4:80:b4:99: 01:9c:b0:1f:2d:39:43:bb:f0:ed:34:32:a9:91:5d:9f:25:34: 07:61:c4:7a:6e:4d:7f:bc:ea:b7:55:78:0c:4a:0f:83:0a:f6: d1:6f:ff:20:0d:61:4c:c6:48:86:12:c1:19:4a:43:3a:de:3b: a3:d2:22:7e:af:2d:a6:91:40:ad:ce:68:c3:9d:af:85:78:2b: 40:2a:b7:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwNDA1MDMzNTA5WhcNMjUwNDEyMDMzNTA5WjAYMRYwFAYD VQQDEw02N2YwYTRlZC1jOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxjSYoEKZOpagL7J1e4hTwjxaEKDU78HCK/DzNol4MsjYRng19QB7nzcPP+6 iU/hY3qeW8GUtCne20SpMUR09dBFscB9FPzwJxAxcz/rxBsUaVTEKz7sR8rMsqcQ OWfKLC5RgrgSNKCh1SN0o6dFQNvLu6lZ2hpx8vZN7uC4m/FSlXVzJT6OVXv6Goo3 Lvl3miuAj02U2vm7VMmq52lT8o+67O0hHj0IXAXEliR9jQ3+fipmjQ3YN/H70Yzo q3e9Xl4n0u8s+RtHuzNDOJMsynOoplRDvtk8Dyb6SNCfPczNoan+U7E1iIn/yHtv eNHON+shfWG78hy2Ar9kk4pX4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNc9dv2G iW1/UVQGO2HdeoN4eRSWMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLr9nHgqCngQCKnqOJUkK7utgj3/Vo6b91NFE2j1EL/rlEnfMNRJeW WppbwX61aCySkFpQ/wpCBH/NlpH4W1thp4YbdY5oI/l8+eLcxGC8r8jxwREwrpsg VZ58g4YKo9bHllu1i8CCWmdj3vNIHp7oqFeC4SmxHdL0dRka1wf8ZYGNNTc5Ne3K tHFZpoOCwaqFY1YH4UtvibXX/NFiO4CAwG7xNc8ic9KMEoK4A+gCMvSAtJkBnLAf LTlDu/DtNDKpkV2fJTQHYcR6bk1/vOq3VXgMSg+DCvbRb/8gDWFMxkiGEsEZSkM6 3juj0iJ+ry2mkUCtzmjDna+FeCtAKrdQ -----END CERTIFICATE-----Generated at Sun Apr 6 23:41:20 2025 by rpki-client