$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: FVWRcqLX7dNHfyracZRdNfyNRZI1MgIPtek0wWNHOoY= Subject key identifier: 42:06:22:B8:3A:70:25:D7:C4:B1:04:B1:6C:FE:7A:36:BF:26:92:95 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 04BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 04B9 Signing time: Wed 02 Apr 2025 23:52:47 +0000 Manifest this update: Wed 02 Apr 2025 23:52:46 +0000 Manifest next update: Wed 09 Apr 2025 23:52:46 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: l6PGxEZ9UqR7fdeoxA2y4WH3ua1JPBi5CA8R/5IxkQU=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: PTzWu6eYDTTqoEV88MOR131OkkMKAZ5jVAGwccli/Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603 Validity Not Before: Apr 2 23:52:46 2025 GMT Not After : Apr 9 23:52:46 2025 GMT Subject: CN=67edcdcf-dd6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:47:da:84:80:74:43:4c:6a:bd:0e:b2:cb:19: 72:4a:f3:dc:c6:d3:d2:e9:0b:2f:6f:95:86:51:c2: 47:0f:17:d3:22:da:b7:35:91:6c:56:97:96:de:55: 5d:5d:67:d5:0e:fa:11:e9:06:22:a9:c1:e2:2f:f1: 9e:a9:b1:96:ef:3d:9f:28:dd:1b:ab:71:3c:1e:28: d2:93:9c:1e:08:ae:e3:97:bc:80:07:b6:a4:9d:23: 1e:72:c4:ff:8d:db:83:70:a7:dc:cf:b8:a0:5a:ce: a5:04:ee:6f:98:72:fd:40:89:44:45:fd:4f:21:ad: b8:75:67:8c:5b:d9:ff:a7:0d:12:b1:4c:ed:7f:49: 9b:ef:55:a4:09:b4:84:5f:73:33:c7:92:92:3d:66: 1a:e0:84:2b:8b:1d:9d:11:c0:e9:8f:e8:1e:28:33: 6c:83:7f:78:03:61:c9:f5:2a:71:a8:03:b7:e6:34: f3:fa:dc:d0:da:e8:44:2c:e0:29:6b:74:fd:1c:02: c2:dc:e4:c0:e1:45:69:29:07:05:84:44:46:59:46: a2:31:02:63:28:67:7d:08:2a:8e:04:57:3f:41:94: b8:d8:58:af:fe:d0:6f:f4:21:9e:9d:2f:84:e7:11: 13:7d:8f:7c:76:90:43:5a:d7:ea:6a:fe:79:13:4f: 56:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:06:22:B8:3A:70:25:D7:C4:B1:04:B1:6C:FE:7A:36:BF:26:92:95 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:2a:28:b5:eb:5e:f2:f4:40:ed:dd:f8:d2:53:f0:91:a6:1c: 5e:0c:a7:c3:57:28:07:f0:7c:c3:01:02:d6:e5:28:da:a6:d5: 55:74:6a:9e:ea:c5:da:43:9e:84:a3:eb:4e:3f:1e:c0:4e:99: a7:3f:29:b2:16:8d:c9:76:bc:87:05:90:96:19:c4:67:19:96: 60:03:c5:05:c3:ef:42:04:02:12:43:87:cc:a3:92:79:c2:c6: 7d:4e:41:32:c1:77:5f:8a:cc:0f:db:34:8d:eb:ed:ea:ec:80: d9:03:9d:d4:e5:0e:a2:fb:44:c9:5f:b8:05:14:53:49:d2:20: e1:a0:b7:14:f2:f5:c4:d4:9c:30:be:cf:77:d7:27:9b:c2:9c: 76:99:ee:2d:b7:cd:84:2c:1f:4b:5a:4a:32:70:32:3a:0a:74: 91:12:97:68:57:0d:ab:fc:78:d2:55:5f:dc:91:c5:d6:36:b7: 94:01:ee:a4:fc:b6:67:91:90:00:b2:44:1e:44:29:46:25:4c: eb:64:a6:49:4e:ae:2c:55:d0:2f:c4:d1:78:95:d3:6a:ca:37: 81:f3:d5:71:e7:3b:11:56:a1:8d:e3:27:f1:13:96:69:d9:74: 68:5a:8a:3c:66:99:7b:93:cb:88:a9:b2:6a:b6:08:56:72:2c: 98:bf:f0:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwNDAyMjM1MjQ2WhcNMjUwNDA5MjM1MjQ2WjAYMRYwFAYD VQQDEw02N2VkY2RjZi1kZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEfahIB0Q0xqvQ6yyxlySvPcxtPS6Qsvb5WGUcJHDxfTItq3NZFsVpeW3lVd XWfVDvoR6QYiqcHiL/GeqbGW7z2fKN0bq3E8HijSk5weCK7jl7yAB7aknSMecsT/ jduDcKfcz7igWs6lBO5vmHL9QIlERf1PIa24dWeMW9n/pw0SsUztf0mb71WkCbSE X3Mzx5KSPWYa4IQrix2dEcDpj+geKDNsg394A2HJ9SpxqAO35jTz+tzQ2uhELOAp a3T9HALC3OTA4UVpKQcFhERGWUaiMQJjKGd9CCqOBFc/QZS42Fiv/tBv9CGenS+E 5xETfY98dpBDWtfqav55E09WowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIGIrg6 cCXXxLEEsWz+eja/JpKVMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWKii1617y9EDt3fjSU/CRphxeDKfDVygH8HzDAQLW5SjaptVVdGqe 6sXaQ56Eo+tOPx7ATpmnPymyFo3JdryHBZCWGcRnGZZgA8UFw+9CBAISQ4fMo5J5 wsZ9TkEywXdfiswP2zSN6+3q7IDZA53U5Q6i+0TJX7gFFFNJ0iDhoLcU8vXE1Jww vs931yebwpx2me4tt82ELB9LWkoycDI6CnSREpdoVw2r/HjSVV/ckcXWNreUAe6k /LZnkZAAskQeRClGJUzrZKZJTq4sVdAvxNF4ldNqyjeB89Vx5zsRVqGN4yfxE5Zp 2XRoWoo8Zpl7k8uIqbJqtghWciyYv/DM -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:51 2025 by rpki-client