$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: 3xa9FgAjay/pO5ZxmW6m8ylz0UwA+DL8GKL1tCnVXEs= Subject key identifier: FA:2B:49:19:02:7C:E0:96:77:D8:75:31:4A:B1:22:94:B7:B0:C5:95 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0A23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0A0F Signing time: Fri 04 Apr 2025 19:59:09 +0000 Manifest this update: Fri 04 Apr 2025 19:59:09 +0000 Manifest next update: Fri 11 Apr 2025 19:59:09 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: 7qeU0Kh74nHuGfe9bE751vNewli5DiMyCqqdZM+Iiow=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: ciI39fi2c3oXroOIDaWusfSq44fRwlz++9AgtGTTQ/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7 Validity Not Before: Apr 4 19:59:09 2025 GMT Not After : Apr 11 19:59:09 2025 GMT Subject: CN=67f03a0d-c19e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:20:71:fa:b8:06:4c:90:c7:d6:92:8a:ea:b5: 35:29:d5:a8:86:c7:07:48:ba:9a:63:28:03:31:65: a3:57:4f:26:72:88:ed:a1:85:8a:76:98:39:01:04: 23:a3:23:31:b7:c1:02:52:c1:10:df:b6:99:b8:f6: db:5c:0b:c7:d2:00:cf:fa:c9:0f:4f:c8:2b:a9:b6: d9:76:a3:db:0a:c7:a3:be:ad:6d:6d:aa:fb:f4:93: 0a:dd:cb:49:2b:6d:40:7e:79:3d:1b:f8:5c:51:82: f0:5c:dd:a8:63:b9:52:a5:32:4d:52:52:78:23:8d: 13:c0:d7:21:46:ba:91:a2:54:05:02:7a:1a:28:3b: ac:e5:b4:d3:92:3d:7d:62:ff:9b:97:ba:d2:fe:64: de:f0:40:15:c0:e2:e3:1c:b7:ea:74:1c:7e:12:ca: 3c:2a:0e:c4:68:e8:9b:be:14:a7:4b:19:78:01:10: 57:b1:c4:02:d0:0c:8f:29:b3:c5:5d:b7:2e:0c:bd: 9b:ac:84:b1:b5:24:06:9c:b1:23:a2:ef:ad:ad:68: 23:a8:2e:38:88:7d:a6:db:b5:a0:94:93:f2:e1:b3: e0:d2:19:4a:a7:92:bc:05:e7:06:af:94:bc:b1:1f: d0:b1:0a:8f:33:8c:2a:ac:90:9a:e8:eb:11:b0:1a: 9a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2B:49:19:02:7C:E0:96:77:D8:75:31:4A:B1:22:94:B7:B0:C5:95 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:98:37:4d:2f:1f:67:4e:00:a1:98:8a:88:a2:8f:1d:7b:22: 73:e0:63:6d:fd:42:36:98:2d:49:21:16:d6:0b:5d:4c:a5:f6: 78:08:5f:4a:36:c7:a0:06:16:e6:c3:78:72:94:9b:5b:ee:c9: 4e:91:68:49:c0:ce:3c:61:8c:69:d8:d8:49:09:dc:8f:39:de: c4:0b:54:f4:e6:8f:71:7f:f7:01:6d:c5:5d:b0:0c:c7:b2:b8: e6:30:32:f2:29:4e:b5:96:04:52:63:bd:65:2a:bb:aa:01:bd: da:24:b4:56:bb:15:d2:8d:b5:1e:5a:d4:f6:1a:49:16:4a:5e: 55:10:fe:f3:de:5c:cc:d7:3b:80:d4:06:91:21:d7:69:e9:16: 7a:c0:10:f9:a9:b1:37:a9:b1:ef:c4:66:bf:85:55:19:84:30: d8:68:8e:52:35:c3:0e:28:ad:38:fd:ad:8e:43:8b:6e:98:9a: 9a:99:54:92:9c:e0:bd:d1:16:fe:f8:71:f4:6e:69:04:f8:fe: a1:af:49:8f:57:99:1f:a1:aa:f5:a5:ee:32:e1:4f:0c:34:56: f4:47:98:c2:c5:e1:e2:5b:0e:dc:04:b1:4a:6f:11:a4:6d:40: c7:b2:31:2a:aa:09:f5:cd:ff:49:62:5f:36:7b:ad:ee:6d:30: 94:bb:00:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjUwNDA0MTk1OTA5WhcNMjUwNDExMTk1OTA5WjAYMRYwFAYD VQQDEw02N2YwM2EwZC1jMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yBx+rgGTJDH1pKK6rU1KdWohscHSLqaYygDMWWjV08mcojtoYWKdpg5AQQj oyMxt8ECUsEQ37aZuPbbXAvH0gDP+skPT8grqbbZdqPbCsejvq1tbar79JMK3ctJ K21Afnk9G/hcUYLwXN2oY7lSpTJNUlJ4I40TwNchRrqRolQFAnoaKDus5bTTkj19 Yv+bl7rS/mTe8EAVwOLjHLfqdBx+Eso8Kg7EaOibvhSnSxl4ARBXscQC0AyPKbPF XbcuDL2brISxtSQGnLEjou+trWgjqC44iH2m27WglJPy4bPg0hlKp5K8BecGr5S8 sR/QsQqPM4wqrJCa6OsRsBqazQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPorSRkC fOCWd9h1MUqxIpS3sMWVMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJmDdNLx9nTgChmIqIoo8deyJz4GNt/UI2mC1JIRbWC11MpfZ4CF9K NsegBhbmw3hylJtb7slOkWhJwM48YYxp2NhJCdyPOd7EC1T05o9xf/cBbcVdsAzH srjmMDLyKU61lgRSY71lKruqAb3aJLRWuxXSjbUeWtT2GkkWSl5VEP7z3lzM1zuA 1AaRIddp6RZ6wBD5qbE3qbHvxGa/hVUZhDDYaI5SNcMOKK04/a2OQ4tumJqamVSS nOC90Rb++HH0bmkE+P6hr0mPV5kfoar1pe4y4U8MNFb0R5jCxeHiWw7cBLFKbxGk bUDHsjEqqgn1zf9JYl82e63ubTCUuwDd -----END CERTIFICATE-----Generated at Sun Apr 6 12:47:41 2025 by rpki-client