$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: AUYkgnTLrVXMPci4ZjhK7i06fKivYOoYQ1bcKm9qGJU= Subject key identifier: CF:18:33:1C:DF:E7:5F:2F:96:FC:00:BD:5A:6A:A4:29:55:10:09:D3 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 029D Signing time: Mon 07 Apr 2025 01:08:02 +0000 Manifest this update: Mon 07 Apr 2025 01:08:02 +0000 Manifest next update: Mon 14 Apr 2025 01:08:02 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: lPoIEkxEGTvdcRnwMLTN/ai3mvcpjxAeKzaQeva8ROU=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C Validity Not Before: Apr 7 01:08:02 2025 GMT Not After : Apr 14 01:08:02 2025 GMT Subject: CN=67f32572-d270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:31:a4:53:d8:af:f8:35:2c:33:e0:e1:a1: a2:0f:63:b9:ca:47:05:39:1c:e5:91:82:43:38:09: 0e:30:6e:41:1a:37:59:39:79:97:cf:29:39:49:d0: d4:75:e9:45:42:3d:d9:96:54:a4:db:10:61:5b:73: 42:f1:44:a9:24:65:1f:2b:6c:39:ae:51:b8:08:d1: ae:2d:48:cf:c9:18:ae:05:16:65:0e:a9:93:5e:8b: 68:65:f4:fc:f4:03:fb:85:f7:b8:db:82:d4:c2:27: e9:e4:85:13:88:6b:fc:03:4d:1d:43:6e:37:64:60: 5a:2f:42:1d:e7:b1:51:fc:e3:9b:27:a2:83:e7:17: e2:9b:3d:d7:69:7c:0e:65:66:1e:53:bd:35:07:7b: 1e:48:e4:27:b8:9b:fc:c2:dd:cc:5d:84:c7:12:de: b5:de:f2:ed:f9:75:59:9b:f4:b9:92:f4:0a:20:0c: cc:4d:72:6e:ab:0a:2e:d4:11:71:4c:4f:a7:7c:78: 0f:92:d5:3f:cb:7d:c0:19:39:83:c7:88:33:0a:d0: de:cd:44:38:51:65:76:9f:57:70:d9:47:a1:8a:53: 22:97:32:cb:6e:18:58:15:5e:d1:c5:4f:dc:d3:64: e6:14:b4:59:29:49:b6:d4:86:1f:32:5b:ad:7d:82: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:18:33:1C:DF:E7:5F:2F:96:FC:00:BD:5A:6A:A4:29:55:10:09:D3 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:3e:45:c2:4b:30:51:0f:c6:1d:53:82:fb:55:db:f6:93:de: c9:a6:8f:dd:53:ca:5d:22:6e:ed:f4:7b:f9:04:d6:19:bc:da: 3e:79:9d:c2:99:07:1e:b2:df:e4:dc:46:11:43:b1:d8:be:ae: a9:61:04:ea:e2:7e:32:65:ab:0b:5d:7f:d8:b3:ff:ac:62:ef: c1:9d:63:8c:ac:25:92:82:40:67:1d:2a:6f:7c:23:dd:1b:d9: 16:b9:b9:f1:c6:40:62:96:03:a8:1d:88:25:7f:3d:2d:2b:2d: d9:79:b0:25:ef:22:22:c1:d4:2e:9c:74:7c:82:3f:bb:1e:2d: 06:46:51:e3:da:74:f5:52:92:e8:f3:2f:52:22:41:ab:32:04: 9e:d0:f1:7b:1f:03:22:07:23:e9:0f:36:c8:0d:b4:aa:9a:ee: d2:66:53:ca:bd:2f:3a:e0:91:94:90:4c:3f:31:3f:22:a8:1b: 88:fd:96:88:0e:e1:0b:0c:3b:fa:89:6d:b2:9e:d5:cb:02:a2: c9:e7:20:b0:d2:1e:6e:93:68:e3:86:e3:58:05:2d:d1:e0:a5: 5e:7b:17:66:f7:b6:2f:e3:a8:08:e0:4f:c2:79:de:7a:34:80: 04:6d:2c:8c:fb:f6:82:bb:b3:84:18:e8:26:b7:0f:c5:0a:f6: 48:79:d0:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwNDA3MDEwODAyWhcNMjUwNDE0MDEwODAyWjAYMRYwFAYD VQQDEw02N2YzMjU3Mi1kMjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnUxpFPYr/g1LDPg4aGiD2O5ykcFORzlkYJDOAkOMG5BGjdZOXmXzyk5SdDU delFQj3ZllSk2xBhW3NC8USpJGUfK2w5rlG4CNGuLUjPyRiuBRZlDqmTXotoZfT8 9AP7hfe424LUwifp5IUTiGv8A00dQ243ZGBaL0Id57FR/OObJ6KD5xfimz3XaXwO ZWYeU701B3seSOQnuJv8wt3MXYTHEt613vLt+XVZm/S5kvQKIAzMTXJuqwou1BFx TE+nfHgPktU/y33AGTmDx4gzCtDezUQ4UWV2n1dw2UehilMilzLLbhhYFV7RxU/c 02TmFLRZKUm21IYfMlutfYJMZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8YMxzf 518vlvwAvVpqpClVEAnTMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCPkXCSzBRD8YdU4L7Vdv2k97Jpo/dU8pdIm7t9Hv5BNYZvNo+eZ3C mQcest/k3EYRQ7HYvq6pYQTq4n4yZasLXX/Ys/+sYu/BnWOMrCWSgkBnHSpvfCPd G9kWubnxxkBilgOoHYglfz0tKy3ZebAl7yIiwdQunHR8gj+7Hi0GRlHj2nT1UpLo 8y9SIkGrMgSe0PF7HwMiByPpDzbIDbSqmu7SZlPKvS864JGUkEw/MT8iqBuI/ZaI DuELDDv6iW2yntXLAqLJ5yCw0h5uk2jjhuNYBS3R4KVeexdm97Yv46gI4E/Ced56 NIAEbSyM+/aCu7OEGOgmtw/FCvZIedBc -----END CERTIFICATE-----Generated at Tue Apr 8 19:07:29 2025 by rpki-client