$ rpki-client -vvf rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.mft File: 7c3wYKYQK_rQbrqNaDHShI0dvec.mft (raw, json) Hash identifier: PLmZ5EYEMhcSyIxLnAFUEaV0gnK2jn5X6do18ONzkHQ= Subject key identifier: 78:5D:0B:91:D3:6E:AC:F6:48:23:69:8A:1F:8E:D3:B6:B7:5E:75:96 Authority key identifier: ED:CD:F0:60:A6:10:2B:FA:D0:6E:BA:8D:68:31:D2:84:8D:1D:BD:E7 Certificate issuer: /CN=A91D483A/serialNumber=EDCDF060A6102BFAD06EBA8D6831D2848D1DBDE7 Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7c3wYKYQK_rQbrqNaDHShI0dvec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.mft Manifest number: 0767 Signing time: Fri 04 Apr 2025 21:41:12 +0000 Manifest this update: Fri 04 Apr 2025 21:41:12 +0000 Manifest next update: Fri 11 Apr 2025 21:41:12 +0000 Files and hashes: 1: 7c3wYKYQK_rQbrqNaDHShI0dvec.crl (hash: tS7gKhJSQCAboKjUsI8CSpIHIrrTGKrzMSL8yQrykIM=) 2: 03ADBBC4194B11EB8C73474DC4F9AE02.roa (hash: 9lbHf1cHckf8dUxoW20HZsn96REnlD7CWohZQ19csPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.crl rsync://rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7c3wYKYQK_rQbrqNaDHShI0dvec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D483A Validity Not Before: Apr 4 21:41:12 2025 GMT Not After : Apr 11 21:41:12 2025 GMT Subject: CN=67f051f8-0a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a3:25:fe:e5:cb:9d:80:80:28:dc:18:36:bd: 2b:4e:d9:d9:52:31:d8:fe:33:d4:6c:98:c0:9c:7d: d0:91:db:54:ff:bd:e4:24:4c:50:12:32:c3:36:01: 8c:bf:ec:67:7f:1c:32:54:fd:42:0c:24:20:72:65: e7:ce:d2:6d:43:10:3f:49:4e:ae:9d:a6:56:2d:f4: 34:c7:84:0d:01:58:b3:07:3a:52:83:41:a2:a5:97: 1c:ef:61:0f:e6:74:e4:14:4e:f3:6c:99:23:97:63: 32:6c:0a:b6:8f:9d:8e:c6:4c:5c:58:a7:d5:e0:f7: 3f:9c:f5:e8:41:58:1b:0b:67:20:fa:58:50:ef:37: e0:c6:b6:5b:87:bb:80:06:92:af:f1:f6:91:a8:5d: 88:29:d3:46:2c:ec:7b:0f:b6:92:90:a3:6e:6d:f7: 82:c4:05:78:ac:76:07:35:d2:60:fa:4b:ee:5c:77: 6d:72:aa:ce:d6:7b:85:d2:5a:0d:8f:37:46:7d:36: 1e:d2:64:3f:33:bf:64:04:cc:65:17:27:03:59:cc: 4e:da:3f:77:71:78:d3:c9:42:1b:40:ba:f2:97:cc: 63:c7:d5:a3:57:ef:49:85:a9:91:90:6f:8e:62:32: 88:5d:c3:84:87:a3:3e:27:a9:e3:d2:08:24:6e:b4: f2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:5D:0B:91:D3:6E:AC:F6:48:23:69:8A:1F:8E:D3:B6:B7:5E:75:96 X509v3 Authority Key Identifier: keyid:ED:CD:F0:60:A6:10:2B:FA:D0:6E:BA:8D:68:31:D2:84:8D:1D:BD:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7c3wYKYQK_rQbrqNaDHShI0dvec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D483A/0701B34A12D211EB9292D63FC4F9AE02/7c3wYKYQK_rQbrqNaDHShI0dvec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ca:01:e6:2b:13:f2:5b:ba:ac:1a:47:b2:fd:d3:d4:96:71: 83:c0:56:1b:78:f7:46:fb:03:15:b8:06:ef:11:32:ab:ca:35: c3:fe:82:ae:1e:9d:cc:50:f1:9f:ea:51:79:83:6c:f0:35:b7: a0:25:fb:01:e3:d8:1b:38:10:d5:e2:0a:6e:9a:5c:73:64:2d: 42:dc:f1:a4:3c:ac:1f:9a:85:99:09:b7:4e:d3:bb:e7:c8:11: d8:6d:9b:58:ca:62:02:42:f7:aa:52:29:58:fc:8b:c2:e3:50: f6:6c:4a:13:cf:b7:0e:22:bd:95:ef:ef:59:c1:05:ef:9f:ca: 17:76:1e:d5:ff:be:95:8d:56:d9:06:5e:7a:e4:7c:31:bb:27: 40:6c:62:31:da:52:d6:4a:40:35:d8:95:c7:cf:5a:ef:69:ff: 45:91:9f:e5:af:07:e8:01:3d:67:63:f4:9f:1e:52:d9:47:63: bd:9d:c8:c9:ff:9b:e9:80:59:b8:19:b8:5b:65:dd:9e:68:93: e0:cb:56:19:68:0d:77:41:f1:ea:09:75:49:67:35:50:b3:70: 96:72:b2:90:31:e8:3b:04:57:e1:2f:60:56:3d:e2:04:d0:ae: 69:7f:76:95:c2:c5:5e:dd:5a:b6:8a:3c:f1:a3:9d:6c:5b:7e: b9:6f:32:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4M0ExMTAvBgNVBAUTKEVEQ0RGMDYwQTYxMDJCRkFEMDZFQkE4RDY4MzFEMjg0 OEQxREJERTcwHhcNMjUwNDA0MjE0MTEyWhcNMjUwNDExMjE0MTEyWjAYMRYwFAYD VQQDEw02N2YwNTFmOC0wYTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaMl/uXLnYCAKNwYNr0rTtnZUjHY/jPUbJjAnH3QkdtU/73kJExQEjLDNgGM v+xnfxwyVP1CDCQgcmXnztJtQxA/SU6unaZWLfQ0x4QNAVizBzpSg0GipZcc72EP 5nTkFE7zbJkjl2MybAq2j52OxkxcWKfV4Pc/nPXoQVgbC2cg+lhQ7zfgxrZbh7uA BpKv8faRqF2IKdNGLOx7D7aSkKNubfeCxAV4rHYHNdJg+kvuXHdtcqrO1nuF0loN jzdGfTYe0mQ/M79kBMxlFycDWcxO2j93cXjTyUIbQLryl8xjx9WjV+9JhamRkG+O YjKIXcOEh6M+J6nj0ggkbrTy9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhdC5HT bqz2SCNpih+O07a3XnWWMB8GA1UdIwQYMBaAFO3N8GCmECv60G66jWgx0oSNHb3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzQS8wNzAxQjM0QTEy RDIxMUVCOTI5MkQ2M0ZDNEY5QUUwMi83YzN3WUtZUUtfclFicnFOYURIU2hJMGR2 ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjM3dZS1lRS19yUWJycU5hREhTaEkwZHZlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzQS8wNzAxQjM0QTEyRDIxMUVCOTI5MkQ2M0ZDNEY5QUUwMi83YzN3WUtZUUtf clFicnFOYURIU2hJMGR2ZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfygHmKxPyW7qsGkey/dPUlnGDwFYbePdG+wMVuAbvETKryjXD/oKu Hp3MUPGf6lF5g2zwNbegJfsB49gbOBDV4gpumlxzZC1C3PGkPKwfmoWZCbdO07vn yBHYbZtYymICQveqUilY/IvC41D2bEoTz7cOIr2V7+9ZwQXvn8oXdh7V/76VjVbZ Bl565HwxuydAbGIx2lLWSkA12JXHz1rvaf9FkZ/lrwfoAT1nY/SfHlLZR2O9ncjJ /5vpgFm4GbhbZd2eaJPgy1YZaA13QfHqCXVJZzVQs3CWcrKQMeg7BFfhL2BWPeIE 0K5pf3aVwsVe3Vq2ijzxo51sW365bzIs -----END CERTIFICATE-----Generated at Sat Apr 5 13:22:47 2025 by rpki-client