$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: FNdiKDq3eSHE/yEdl7OIsmPMV84WAvHUSAzkO5rJYI4= Subject key identifier: EB:44:C4:D6:33:74:47:99:4D:AE:6A:56:5E:E3:2A:F1:7F:25:7E:DE Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2B0E Signing time: Fri 04 Apr 2025 16:00:44 +0000 Manifest this update: Fri 04 Apr 2025 16:00:44 +0000 Manifest next update: Fri 11 Apr 2025 16:00:44 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: ySfaemy+vSy+2Vub7fkNmHWGbMNPx1hzJCEF2oIRnsY=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: iuR0hKy1te9ReiQAcpbPM6UF6bcHMIJQ871N78hvW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413 Validity Not Before: Apr 4 16:00:44 2025 GMT Not After : Apr 11 16:00:44 2025 GMT Subject: CN=67f0022c-6139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:91:6b:60:4f:f0:7f:5f:4b:89:06:2d:1c: f3:a5:78:01:b2:3f:25:7f:53:d2:c5:08:37:6c:2e: 76:e1:63:62:88:21:14:7c:23:cd:4a:3b:62:67:37: de:85:58:41:61:ef:47:60:6f:18:fe:cf:ed:2d:25: af:2f:96:4d:9a:ed:ac:ac:be:d1:73:d5:5c:a3:88: 7c:31:05:e7:5b:41:3b:88:68:23:54:b5:a2:56:05: 8b:4f:e1:9a:5a:60:00:9c:91:f9:53:83:c3:30:40: 10:10:f1:f2:52:5f:d0:ad:01:f0:bb:d3:c3:28:70: 0d:be:11:84:ce:66:1c:2b:53:f9:91:19:46:83:6e: 26:b3:02:9e:08:b6:c1:aa:b1:19:06:de:36:c0:fd: e6:ea:17:c9:3f:ae:d7:09:bd:d8:4a:75:1f:2d:a6: 78:8a:3d:67:31:c6:df:31:c6:26:cc:be:cb:ae:49: ef:45:d9:b2:cb:ee:f0:a5:d8:73:ad:b0:a2:84:03: c8:cd:01:e9:fe:14:96:41:b8:5a:6d:5e:4e:2b:5a: be:7a:6f:f7:b8:bd:4f:24:35:a7:1d:a9:ac:e6:ff: bb:1a:78:f6:cb:ce:eb:95:3b:40:c9:fa:7b:70:ae: af:67:69:7b:57:92:fd:34:60:db:8c:ae:a5:7b:5c: d0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:44:C4:D6:33:74:47:99:4D:AE:6A:56:5E:E3:2A:F1:7F:25:7E:DE X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:1f:f9:1f:ac:ee:03:84:84:de:74:28:ac:56:42:ef:e1:97: 90:62:9f:57:db:91:5d:84:1d:02:05:31:4c:56:f8:05:95:d0: 8b:83:db:31:1d:9c:97:1c:f3:1a:ce:82:0b:17:19:0c:4b:88: f4:8c:76:b8:2d:76:1d:44:00:80:37:1b:f9:00:84:eb:5b:c4: d3:16:e6:22:b3:f5:3f:84:55:bd:3a:ae:b0:b1:4f:50:f7:21: a8:d0:af:14:b9:7a:3d:dc:b7:da:6e:cd:e9:32:0b:c4:cc:94: 90:9c:7d:e0:6a:45:44:61:3a:4f:2e:09:2d:03:0b:25:81:ef: 75:05:18:5f:6c:e1:da:f6:ec:08:b7:be:86:c7:e7:fc:fe:c6: 62:a8:03:3e:07:39:b6:b6:ef:a5:21:4d:19:a2:d9:21:00:cd: 6f:6d:c6:ce:f9:c5:05:5d:ea:fc:eb:93:e7:c6:57:e0:f3:d8: 38:c7:93:5b:87:84:0b:43:8a:09:38:e9:6f:d1:ee:6f:fd:7c: 38:a1:b7:9a:6e:a0:73:76:5b:ad:14:82:19:b5:d1:83:7f:f7: 70:68:01:73:35:e2:ce:01:9e:25:ba:10:71:97:70:7e:bc:40: d9:3d:32:6c:42:78:e5:f5:19:3a:cc:fd:6b:c9:4f:19:25:e3: 7b:1e:ad:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjUwNDA0MTYwMDQ0WhcNMjUwNDExMTYwMDQ0WjAYMRYwFAYD VQQDEw02N2YwMDIyYy02MTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso6Ra2BP8H9fS4kGLRzzpXgBsj8lf1PSxQg3bC524WNiiCEUfCPNSjtiZzfe hVhBYe9HYG8Y/s/tLSWvL5ZNmu2srL7Rc9Vco4h8MQXnW0E7iGgjVLWiVgWLT+Ga WmAAnJH5U4PDMEAQEPHyUl/QrQHwu9PDKHANvhGEzmYcK1P5kRlGg24mswKeCLbB qrEZBt42wP3m6hfJP67XCb3YSnUfLaZ4ij1nMcbfMcYmzL7LrknvRdmyy+7wpdhz rbCihAPIzQHp/hSWQbhabV5OK1q+em/3uL1PJDWnHams5v+7Gnj2y87rlTtAyfp7 cK6vZ2l7V5L9NGDbjK6le1zQHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtExNYz dEeZTa5qVl7jKvF/JX7eMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5H/kfrO4DhITedCisVkLv4ZeQYp9X25FdhB0CBTFMVvgFldCLg9sx HZyXHPMazoILFxkMS4j0jHa4LXYdRACANxv5AITrW8TTFuYis/U/hFW9Oq6wsU9Q 9yGo0K8UuXo93Lfabs3pMgvEzJSQnH3gakVEYTpPLgktAwslge91BRhfbOHa9uwI t76Gx+f8/sZiqAM+Bzm2tu+lIU0ZotkhAM1vbcbO+cUFXer865Pnxlfg89g4x5Nb h4QLQ4oJOOlv0e5v/Xw4obeabqBzdlutFIIZtdGDf/dwaAFzNeLOAZ4luhBxl3B+ vEDZPTJsQnjl9Rk6zP1ryU8ZJeN7Hq3R -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:42 2025 by rpki-client