$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft File: -4BdU3nLB9UqQR7__QSRyjm3vyc.mft (raw, json) Hash identifier: nWqCVw4Ki3BGEE17RXm0E1NrC+gim69lR6dnt2II4xs= Subject key identifier: D4:C6:26:0B:E5:5A:2A:40:85:EF:3B:EF:52:E5:35:67:B2:1E:2C:40 Authority key identifier: FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 Certificate issuer: /CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Certificate serial: 05C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft Manifest number: 05C3 Signing time: Tue 08 Apr 2025 22:48:10 +0000 Manifest this update: Tue 08 Apr 2025 22:48:09 +0000 Manifest next update: Tue 15 Apr 2025 22:48:09 +0000 Files and hashes: 1: -4BdU3nLB9UqQR7__QSRyjm3vyc.crl (hash: 96s7bBkfXpnQGf3wus2u/KtR740pzKdrayxETX4uiWo=) 2: F4740B2CB92711EBA6B43A86C4F9AE02.roa (hash: UVYU38/2P4ZcsBnZKHRUezkcR8i0kOVNyl3hZT7lyzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 22:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5ECA Validity Not Before: Apr 8 22:48:09 2025 GMT Not After : Apr 15 22:48:09 2025 GMT Subject: CN=67f5a7aa-c7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:96:24:c0:e6:77:ea:de:2c:f8:9d:6d:59:f9: 6b:7c:84:58:63:b8:59:e8:96:08:d1:2b:73:02:90: 8a:7a:ac:4a:ea:28:fb:18:f7:8b:51:07:43:26:ae: 17:8d:8d:50:fe:26:73:02:27:dc:e9:bb:d9:0c:e7: aa:bb:19:12:be:56:84:59:60:99:22:9e:84:71:f0: 83:77:b3:af:90:d4:77:50:83:c6:36:44:a8:35:50: f4:16:f7:58:03:ae:cb:6c:f3:09:2a:a0:1f:b2:36: 5a:08:e1:de:4c:cd:c1:1b:30:7b:69:e4:65:d5:79: 42:37:83:68:1b:7b:34:bd:db:15:60:60:c8:b4:b5: 06:57:cb:11:e6:79:dd:98:c1:e5:f5:16:c5:d8:c5: 6d:04:a2:3d:63:d0:5d:89:d9:92:2d:24:16:bb:88: c7:ab:58:e3:73:22:13:73:f4:68:3e:83:7d:2a:bb: 0d:09:78:2d:72:d3:b3:2b:30:2a:5e:bd:d8:02:52: 9d:ec:ff:89:50:2c:31:49:28:6c:21:8c:d8:16:53: a7:f0:f7:91:e7:46:49:e1:84:f1:90:26:8d:90:8e: 9f:ac:25:be:14:4b:1d:33:9c:5b:91:13:7a:53:17: ba:54:3f:3e:6b:c6:7f:8b:57:68:14:37:2c:f9:d7: da:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C6:26:0B:E5:5A:2A:40:85:EF:3B:EF:52:E5:35:67:B2:1E:2C:40 X509v3 Authority Key Identifier: keyid:FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:c5:31:a4:92:b2:c2:85:d5:44:91:26:38:12:6f:22:3a:00: 0c:70:c2:23:7b:21:d5:76:40:20:77:5a:ab:67:f1:9b:55:36: ed:fe:d4:73:f2:9d:a0:9d:4f:a5:57:ee:8b:96:13:35:99:96: 29:2b:5b:e4:42:10:97:f9:c7:14:89:c9:ea:fe:60:b5:19:36: e5:3f:29:c9:44:ba:e3:5f:11:70:c7:59:c6:f4:ad:b7:17:d5: fc:83:f7:33:3b:2f:49:2f:71:a6:8d:f4:8c:d2:d9:09:fa:95: 82:b3:d6:a6:52:bb:80:a1:c7:4f:5d:72:65:c4:62:9e:d9:51: 73:b9:70:aa:42:c9:e5:31:c3:db:3c:d5:e6:cf:60:24:bf:cc: 6b:01:74:92:cf:4c:a9:89:6d:d4:54:57:fc:9b:18:e5:8a:8b: 13:81:f5:0e:fb:2e:6b:49:f0:9a:bd:5f:68:a2:1e:81:1f:aa: 3b:2a:e0:43:e5:8c:37:de:93:9e:c3:85:c8:ac:f4:a1:8c:c9: 4a:20:2d:da:68:52:19:c1:b0:cf:35:83:c5:99:ee:84:51:1f: ed:58:b4:9e:46:3a:02:fa:c2:80:f1:1b:b1:13:79:01:f8:30: 48:7a:81:d5:2d:88:12:50:0c:18:8b:c5:ff:20:2c:be:79:e3: f0:cf:7d:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFQ0ExMTAvBgNVBAUTKEZCODA1RDUzNzlDQjA3RDUyQTQxMUVGRkZEMDQ5MUNB MzlCN0JGMjcwHhcNMjUwNDA4MjI0ODA5WhcNMjUwNDE1MjI0ODA5WjAYMRYwFAYD VQQDEw02N2Y1YTdhYS1jN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpYkwOZ36t4s+J1tWflrfIRYY7hZ6JYI0StzApCKeqxK6ij7GPeLUQdDJq4X jY1Q/iZzAifc6bvZDOequxkSvlaEWWCZIp6EcfCDd7OvkNR3UIPGNkSoNVD0FvdY A67LbPMJKqAfsjZaCOHeTM3BGzB7aeRl1XlCN4NoG3s0vdsVYGDItLUGV8sR5nnd mMHl9RbF2MVtBKI9Y9BdidmSLSQWu4jHq1jjcyITc/RoPoN9KrsNCXgtctOzKzAq Xr3YAlKd7P+JUCwxSShsIYzYFlOn8PeR50ZJ4YTxkCaNkI6frCW+FEsdM5xbkRN6 Uxe6VD8+a8Z/i1doFDcs+dfazQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTGJgvl WipAhe8771LlNWeyHixAMB8GA1UdIwQYMBaAFPuAXVN5ywfVKkEe//0Ekco5t78n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUVDQS9CRkQyMzIwNkI5 MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5VXFRUjdfX1FTUnlqbTN2 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy00QmRVM25MQjlVcVFSN19fUVNSeWptM3Z5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUVDQS9CRkQyMzIwNkI5MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5 VXFRUjdfX1FTUnlqbTN2eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaxTGkkrLChdVEkSY4Em8iOgAMcMIjeyHVdkAgd1qrZ/GbVTbt/tRz 8p2gnU+lV+6LlhM1mZYpK1vkQhCX+ccUicnq/mC1GTblPynJRLrjXxFwx1nG9K23 F9X8g/czOy9JL3GmjfSM0tkJ+pWCs9amUruAocdPXXJlxGKe2VFzuXCqQsnlMcPb PNXmz2Akv8xrAXSSz0ypiW3UVFf8mxjliosTgfUO+y5rSfCavV9ooh6BH6o7KuBD 5Yw33pOew4XIrPShjMlKIC3aaFIZwbDPNYPFme6EUR/tWLSeRjoC+sKA8RuxE3kB +DBIeoHVLYgSUAwYi8X/ICy+eePwz30B -----END CERTIFICATE-----Generated at Wed Apr 9 10:22:15 2025 by rpki-client