$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: hTwX3C8F0yNXy4x6l2X7/RcsZjbO4FH16DI75sX2E5Y= Subject key identifier: 20:1A:A1:C1:96:CE:CB:30:5A:81:88:2A:8E:15:07:08:EB:2E:6A:8F Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 0661 Signing time: Fri 28 Mar 2025 22:40:09 +0000 Manifest this update: Fri 28 Mar 2025 22:40:09 +0000 Manifest next update: Fri 04 Apr 2025 22:40:09 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: BLll55G209NCSO9Aek4hzylQTDtDg+mEXotwYTE8hPY=) 2: FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa (hash: 3D0F61i4bYzZFK1RP5xCz8C+pmRRrnbu/OVCc11V77A=) 3: E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa (hash: lWJ7FF/SRkIiHgjEhrH+14a75dMx3dN1hls3lTn79Sw=) 4: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: 9kzcr+Me7OnP5vJBlwCgM7entDT3m8eL5xohJDWx2Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499 Validity Not Before: Mar 28 22:40:09 2025 GMT Not After : Apr 4 22:40:09 2025 GMT Subject: CN=67e72549-8cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8e:3c:7d:98:aa:65:0c:da:fb:69:7f:b5:ee: 65:75:d2:2f:64:74:22:1e:cc:03:64:b4:ac:56:f1: 8c:5e:41:44:15:26:81:cd:b5:0d:fe:5e:2c:6e:14: c3:89:2f:8b:1d:d5:f0:6c:c3:41:59:c5:e6:09:f3: e1:4e:7d:f8:c2:97:fa:73:8c:66:44:d7:47:cb:63: 32:c0:c6:44:57:ec:4c:5a:af:18:3e:da:dd:d4:d6: bd:19:39:87:e6:23:74:7a:04:cb:86:97:f8:15:68: 18:49:c2:10:41:64:61:85:21:81:a4:0f:9a:c8:0b: 33:9c:66:3a:29:a2:3c:7c:a3:39:2c:c1:cf:45:fe: 01:e4:ce:be:34:4b:e1:3b:5a:67:59:f4:e8:02:29: 5a:6a:20:af:b3:2f:69:3b:db:c1:a0:de:5d:d8:dd: 83:b7:1b:7c:3a:da:32:dd:10:c8:49:23:d6:d9:db: 51:ae:0b:eb:b5:a3:fb:46:48:48:d0:6e:f3:0d:2f: 82:3d:88:19:db:e7:6f:45:4c:09:30:5d:fc:fc:1c: 68:3d:4a:99:48:f2:c7:3d:05:6a:17:ed:5a:38:3d: 53:3b:bb:d1:1a:1d:7b:fa:26:8f:fe:df:c3:e0:3e: cf:be:ef:4f:e8:7b:08:73:22:ac:df:2a:59:f9:64: d6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1A:A1:C1:96:CE:CB:30:5A:81:88:2A:8E:15:07:08:EB:2E:6A:8F X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6c:31:e8:8e:e6:ab:99:1a:d7:52:3b:61:32:6c:7a:2e:f5: e9:92:bd:e4:dd:01:7d:2a:c7:6a:76:40:0c:93:c9:84:c6:ca: e2:b1:85:b2:4f:cf:5e:56:bf:39:e3:00:cd:cf:99:66:2b:e0: 44:bc:5d:4e:ba:e0:d3:e7:f9:c8:75:c0:b1:cd:42:cf:be:53: c6:7c:c9:68:cb:24:aa:b2:79:49:fd:54:88:17:fe:81:93:6f: ca:e5:d5:77:c1:fb:54:ea:91:3b:a2:9a:c3:c5:70:4f:3d:b8: 50:a5:69:e2:90:89:ed:dc:27:f6:23:3f:1a:8a:1c:18:8b:2e: 18:0e:e6:3f:1a:ae:86:7d:a9:71:e0:b8:c7:49:58:ea:9a:f9: 6e:4b:51:a9:f3:40:fd:23:34:c4:2d:51:ec:1b:ee:cd:b5:e9: c4:96:93:1c:2d:20:f0:db:59:27:4f:7f:8c:cd:bc:a2:06:fb: 11:fa:ab:e5:70:30:c5:2b:4d:3b:2f:8a:3a:6d:a9:19:3a:53: 23:1f:26:0c:7c:8a:e5:54:e9:48:5c:63:73:23:34:ff:51:5c: 5f:04:9b:6c:6b:49:3c:ae:46:d1:3e:64:c1:31:63:08:69:7d: a7:09:b5:13:7c:ab:33:5c:f3:28:ec:fd:b9:ec:3c:80:49:dd: 18:2c:01:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwMzI4MjI0MDA5WhcNMjUwNDA0MjI0MDA5WjAYMRYwFAYD VQQDEw02N2U3MjU0OS04Y2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2I48fZiqZQza+2l/te5lddIvZHQiHswDZLSsVvGMXkFEFSaBzbUN/l4sbhTD iS+LHdXwbMNBWcXmCfPhTn34wpf6c4xmRNdHy2MywMZEV+xMWq8YPtrd1Na9GTmH 5iN0egTLhpf4FWgYScIQQWRhhSGBpA+ayAsznGY6KaI8fKM5LMHPRf4B5M6+NEvh O1pnWfToAilaaiCvsy9pO9vBoN5d2N2Dtxt8Otoy3RDISSPW2dtRrgvrtaP7RkhI 0G7zDS+CPYgZ2+dvRUwJMF38/BxoPUqZSPLHPQVqF+1aOD1TO7vRGh17+iaP/t/D 4D7Pvu9P6HsIcyKs3ypZ+WTWXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAaocGW zsswWoGIKo4VBwjrLmqPMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2bDHojuarmRrXUjthMmx6LvXpkr3k3QF9KsdqdkAMk8mExsrisYWy T89eVr854wDNz5lmK+BEvF1OuuDT5/nIdcCxzULPvlPGfMloyySqsnlJ/VSIF/6B k2/K5dV3wftU6pE7oprDxXBPPbhQpWnikInt3Cf2Iz8aihwYiy4YDuY/Gq6Gfalx 4LjHSVjqmvluS1Gp80D9IzTELVHsG+7NtenElpMcLSDw21knT3+MzbyiBvsR+qvl cDDFK007L4o6bakZOlMjHyYMfIrlVOlIXGNzIzT/UVxfBJtsa0k8rkbRPmTBMWMI aX2nCbUTfKszXPMo7P257DyASd0YLAEo -----END CERTIFICATE-----Generated at Fri Apr 4 18:31:55 2025 by rpki-client