$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft File: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft (raw, json) Hash identifier: ju+0WrKWbmI9Bo+rA5AA2Z3BlFQFvOAt/9eNEe3djOY= Subject key identifier: 42:35:84:C1:29:75:B8:B6:FE:A1:24:38:4D:18:D3:0F:A7:72:E7:E4 Authority key identifier: 02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD Certificate issuer: /CN=A91D2FC0/serialNumber=029F8212430A8DD7E7954FEC313F15DA47CB44DD Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft Manifest number: 0AD7 Signing time: Fri 04 Apr 2025 19:34:14 +0000 Manifest this update: Fri 04 Apr 2025 19:34:14 +0000 Manifest next update: Fri 11 Apr 2025 19:34:14 +0000 Files and hashes: 1: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl (hash: K0H92z2v+/LvWVCMRaYr7Fxoyuh/mUkqBggaWNDvanU=) 2: 81D0374C475111EA82F8B821C4F9AE02.roa (hash: H58uLnLgtQRXxjwDdpgj46LQrUNsRnsgJgSttmaA0KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2FC0 Validity Not Before: Apr 4 19:34:14 2025 GMT Not After : Apr 11 19:34:14 2025 GMT Subject: CN=67f03436-0ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:75:31:cf:53:b3:4d:1c:06:92:4f:51:86: 98:52:85:00:74:8a:eb:03:b4:00:8b:ff:1c:7f:53: 1f:82:c8:ad:e3:1d:39:b1:ed:96:e9:78:23:81:46: b7:a1:ac:25:58:e9:3b:4c:53:28:75:32:dd:ba:fe: ba:d7:0c:07:09:ce:16:8e:3e:29:f7:e7:c7:73:9e: 79:43:a5:49:63:cb:ce:e6:66:ed:6a:9f:49:74:53: 13:35:e9:a6:04:97:50:db:b3:27:f4:3b:02:8d:22: 9a:31:90:5e:fd:69:b1:4a:94:bc:b8:06:e8:df:23: c4:6b:63:4b:77:a7:8f:f2:1b:59:29:07:d5:94:c8: a3:19:31:51:19:18:61:71:77:d4:12:a6:03:ee:4c: a0:1c:9a:e1:d3:44:a5:51:40:06:38:87:67:5d:1f: a1:a5:2e:ca:37:69:73:07:31:6c:dc:42:d0:04:70: 08:a7:e3:59:f8:18:63:ba:d9:30:ce:cf:00:76:ef: 72:9f:58:2e:42:a1:2f:a9:c2:f7:e3:2d:f9:d7:6d: 21:06:38:b6:17:c4:1d:d2:65:12:8d:f9:be:18:ee: 06:79:d1:37:6d:f3:22:b7:51:b4:f7:1f:b8:77:82: 0f:a6:e9:5e:3c:f8:03:07:ea:41:42:00:9a:b2:e4: eb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:35:84:C1:29:75:B8:B6:FE:A1:24:38:4D:18:D3:0F:A7:72:E7:E4 X509v3 Authority Key Identifier: keyid:02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:10:9e:20:f9:95:f5:ea:1d:8b:46:75:24:05:65:31:b4:84: 5e:ae:47:38:22:f2:fe:e9:40:60:3c:95:c0:f6:fc:e7:a6:92: ce:d9:7e:f3:35:d3:24:1c:48:42:29:d7:4b:13:85:d6:c6:26: 05:7f:87:14:5c:7b:d8:1c:59:66:d7:b6:88:41:92:56:e9:1f: 83:3d:a4:8f:57:29:98:19:b2:ab:04:78:84:32:04:bb:a7:d9: df:e7:95:cd:85:64:67:92:e3:47:af:ef:0b:09:f6:fe:a1:83: 60:15:b8:ff:ac:e2:13:2c:08:6b:81:c9:07:ee:73:57:2b:57: 53:64:4c:b0:0f:32:05:da:15:da:68:5a:cf:b9:20:04:cd:9e: 2d:bc:0f:8d:1d:46:d1:f3:32:65:76:e1:92:e2:a0:53:7e:26: 81:63:ad:09:ca:b9:cd:d1:9c:7b:62:b8:89:f1:b3:63:de:91: 0d:ce:8b:8c:c7:1d:46:e8:d3:60:3a:fc:5d:5e:0a:95:1e:dd: 6c:d4:83:81:27:e6:c8:ca:50:aa:e1:0e:fd:29:94:9a:fb:0e: cf:fd:42:81:45:d8:12:b5:e0:3d:31:01:34:9a:e5:6d:1b:c6: 34:c1:ae:4f:09:79:b2:57:d9:99:56:22:2b:49:77:4c:21:dc: ee:52:98:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJGQzAxMTAvBgNVBAUTKDAyOUY4MjEyNDMwQThERDdFNzk1NEZFQzMxM0YxNURB NDdDQjQ0REQwHhcNMjUwNDA0MTkzNDE0WhcNMjUwNDExMTkzNDE0WjAYMRYwFAYD VQQDEw02N2YwMzQzNi0wZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGR1Mc9Ts00cBpJPUYaYUoUAdIrrA7QAi/8cf1Mfgsit4x05se2W6XgjgUa3 oawlWOk7TFModTLduv661wwHCc4Wjj4p9+fHc555Q6VJY8vO5mbtap9JdFMTNemm BJdQ27Mn9DsCjSKaMZBe/WmxSpS8uAbo3yPEa2NLd6eP8htZKQfVlMijGTFRGRhh cXfUEqYD7kygHJrh00SlUUAGOIdnXR+hpS7KN2lzBzFs3ELQBHAIp+NZ+Bhjutkw zs8Adu9yn1guQqEvqcL34y35120hBji2F8Qd0mUSjfm+GO4GedE3bfMit1G09x+4 d4IPpulePPgDB+pBQgCasuTr9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI1hMEp dbi2/qEkOE0Y0w+ncufkMB8GA1UdIwQYMBaAFAKfghJDCo3X55VP7DE/FdpHy0Td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkZDMC8yQTgxNUEwODQ3 NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pkZm5sVV9zTVQ4VjJrZkxS TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FwLUNFa01LamRmbmxVX3NNVDhWMmtmTFJOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkZDMC8yQTgxNUEwODQ3NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pk Zm5sVV9zTVQ4VjJrZkxSTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwEJ4g+ZX16h2LRnUkBWUxtIRerkc4IvL+6UBgPJXA9vznppLO2X7z NdMkHEhCKddLE4XWxiYFf4cUXHvYHFlm17aIQZJW6R+DPaSPVymYGbKrBHiEMgS7 p9nf55XNhWRnkuNHr+8LCfb+oYNgFbj/rOITLAhrgckH7nNXK1dTZEywDzIF2hXa aFrPuSAEzZ4tvA+NHUbR8zJlduGS4qBTfiaBY60JyrnN0Zx7YriJ8bNj3pENzouM xx1G6NNgOvxdXgqVHt1s1IOBJ+bIylCq4Q79KZSa+w7P/UKBRdgSteA9MQE0muVt G8Y0wa5PCXmyV9mZViIrSXdMIdzuUpip -----END CERTIFICATE-----Generated at Sun Apr 6 12:41:08 2025 by rpki-client