$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft File: a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft (raw, json) Hash identifier: kEHpAIkew9xLPlMk0yuzutb4PqtwVGDbxQs3kQlv+Xc= Subject key identifier: 36:D8:6A:D0:D7:9B:65:79:6B:57:0E:2B:C5:F6:65:B2:22:AA:B9:2B Authority key identifier: 6B:C2:63:B5:1A:56:B5:17:40:77:74:59:79:62:27:ED:00:DF:4D:70 Certificate issuer: /CN=A91D2F93/serialNumber=6BC263B51A56B51740777459796227ED00DF4D70 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft Manifest number: 06C2 Signing time: Tue 08 Apr 2025 21:50:26 +0000 Manifest this update: Tue 08 Apr 2025 21:50:26 +0000 Manifest next update: Tue 15 Apr 2025 21:50:26 +0000 Files and hashes: 1: a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl (hash: TJSjJIp5ngwJXQCOMTl2i6On9rwFJAza5l08drQqxt8=) 2: B6FCD4F60CD111ECABD2264AC4F9AE02.roa (hash: bB+9hsPPapCcbcV407klYfK5DJTWT3wpVck7/MMMHXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2F93 Validity Not Before: Apr 8 21:50:26 2025 GMT Not After : Apr 15 21:50:26 2025 GMT Subject: CN=67f59a22-37b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:1e:fe:40:b5:e1:a1:fa:bb:e2:aa:75:7e: 4f:7c:49:c8:e7:86:02:ac:19:aa:81:eb:31:31:86: 53:8e:56:fb:25:b8:4a:2e:46:ec:e8:ef:64:9a:63: 17:d4:64:17:df:64:65:63:8d:99:38:36:37:eb:65: 29:a4:0a:6d:08:2c:df:59:89:62:a2:53:f0:3a:6f: 11:90:4c:41:c5:4f:48:1d:c0:26:57:90:f0:5d:fc: 4d:7e:36:c7:fb:d4:f5:27:a1:42:dd:ce:7b:10:8c: bd:94:83:f1:97:09:58:a0:c1:06:ff:3b:f7:63:d7: 6a:03:11:ac:b5:6b:65:7d:7c:5a:39:c1:34:9a:71: 2c:63:58:84:f9:97:c8:94:de:85:05:87:a5:a8:4c: 91:88:24:8e:09:02:14:fa:31:10:59:3e:e0:db:e9: 6d:9d:20:4f:8f:2b:0e:75:51:42:a4:be:b5:27:8b: 84:6f:aa:af:38:ec:59:ef:e7:cf:b9:c2:31:ae:d9: f0:71:c7:46:eb:8e:ef:06:36:70:73:e3:85:a2:70: 4c:15:ea:c9:26:0d:02:01:d7:f9:76:6e:b7:3d:d5: 38:87:ed:25:be:dd:f9:b9:fa:2a:9e:cf:0b:5c:59: 29:ee:b3:55:a9:4e:7d:8e:79:71:94:2f:fe:4b:23: 65:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D8:6A:D0:D7:9B:65:79:6B:57:0E:2B:C5:F6:65:B2:22:AA:B9:2B X509v3 Authority Key Identifier: keyid:6B:C2:63:B5:1A:56:B5:17:40:77:74:59:79:62:27:ED:00:DF:4D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4d:5f:1b:df:66:ea:40:ad:a7:76:a0:f0:97:9a:16:a6:97: 3e:27:d8:b7:b0:29:7d:18:ef:6d:ca:af:d3:61:f6:46:ed:3e: 42:0e:09:25:e0:24:c8:00:0d:77:df:1f:26:a5:13:fe:b1:22: 3b:eb:e7:9b:3f:a6:2f:fd:d3:cb:b6:a6:3c:f3:03:bd:80:e6: 79:cf:2b:ea:3d:14:56:54:a7:2c:c5:60:93:6f:7a:1f:96:94: 19:5a:44:88:ac:96:6c:ee:2b:16:35:31:d4:02:74:42:20:e3: b3:dd:56:d6:37:9b:35:73:4a:b7:8f:bb:23:6b:d7:5f:d1:eb: e4:36:c9:e9:45:92:c9:14:5e:eb:05:4c:3f:ec:b4:bb:98:5f: ee:5a:91:12:8f:f1:6c:b7:61:3b:69:ce:38:fa:87:51:22:e3: 99:32:7e:58:94:c7:95:cd:34:8b:c3:f9:06:8a:67:4f:46:96: 37:18:60:af:b5:58:1b:e9:05:f3:d8:fc:d2:38:68:38:e7:d5: c5:83:af:e9:2b:02:4e:53:ec:06:b1:2d:f5:c4:81:3d:5d:94: 5e:d8:33:fe:85:ec:53:02:a7:26:b5:51:6c:b1:e8:6d:af:e1: c3:d4:29:bd:61:83:9a:00:63:99:43:ca:30:f6:f5:66:fb:56: b9:95:a3:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJGOTMxMTAvBgNVBAUTKDZCQzI2M0I1MUE1NkI1MTc0MDc3NzQ1OTc5NjIyN0VE MDBERjRENzAwHhcNMjUwNDA4MjE1MDI2WhcNMjUwNDE1MjE1MDI2WjAYMRYwFAYD VQQDEw02N2Y1OWEyMi0zN2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA8e/kC14aH6u+KqdX5PfEnI54YCrBmqgesxMYZTjlb7JbhKLkbs6O9kmmMX 1GQX32RlY42ZODY362UppAptCCzfWYliolPwOm8RkExBxU9IHcAmV5DwXfxNfjbH +9T1J6FC3c57EIy9lIPxlwlYoMEG/zv3Y9dqAxGstWtlfXxaOcE0mnEsY1iE+ZfI lN6FBYelqEyRiCSOCQIU+jEQWT7g2+ltnSBPjysOdVFCpL61J4uEb6qvOOxZ7+fP ucIxrtnwccdG647vBjZwc+OFonBMFerJJg0CAdf5dm63PdU4h+0lvt35ufoqns8L XFkp7rNVqU59jnlxlC/+SyNl5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbYatDX m2V5a1cOK8X2ZbIiqrkrMB8GA1UdIwQYMBaAFGvCY7UaVrUXQHd0WXliJ+0A301w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkY5My82OTk5Rjc4RTUy NDExMUVCQjNDNEE0MUVDNEY5QUUwMi9hOEpqdFJwV3RSZEFkM1JaZVdJbjdRRGZU WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E4Smp0UnBXdFJkQWQzUlplV0luN1FEZlRYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkY5My82OTk5Rjc4RTUyNDExMUVCQjNDNEE0MUVDNEY5QUUwMi9hOEpqdFJwV3RS ZEFkM1JaZVdJbjdRRGZUWEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+TV8b32bqQK2ndqDwl5oWppc+J9i3sCl9GO9tyq/TYfZG7T5CDgkl 4CTIAA133x8mpRP+sSI76+ebP6Yv/dPLtqY88wO9gOZ5zyvqPRRWVKcsxWCTb3of lpQZWkSIrJZs7isWNTHUAnRCIOOz3VbWN5s1c0q3j7sja9df0evkNsnpRZLJFF7r BUw/7LS7mF/uWpESj/Fst2E7ac44+odRIuOZMn5YlMeVzTSLw/kGimdPRpY3GGCv tVgb6QXz2PzSOGg459XFg6/pKwJOU+wGsS31xIE9XZRe2DP+hexTAqcmtVFsseht r+HD1Cm9YYOaAGOZQ8ow9vVm+1a5laOh -----END CERTIFICATE-----Generated at Thu Apr 10 19:36:19 2025 by rpki-client