$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft File: iX261kcCN4pu4YYw4Yv3Whcpgmk.mft (raw, json) Hash identifier: 8dIPAAWfr8ZWxVOG0FNPDQpackQaPNYB6kM5iB6M2xQ= Subject key identifier: C4:C1:92:A3:DF:60:C5:03:DD:0B:A0:27:C1:3C:07:71:4A:16:FF:D7 Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft Manifest number: E2 Signing time: Sat 29 Mar 2025 04:55:29 +0000 Manifest this update: Sat 29 Mar 2025 04:55:28 +0000 Manifest next update: Sat 05 Apr 2025 04:55:28 +0000 Files and hashes: 1: iX261kcCN4pu4YYw4Yv3Whcpgmk.crl (hash: CTZsztSxDRWIJIE6/jRYbe1DaE0V0YfDapo2SqeAIIc=) 2: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (hash: GqeiAvi13dSKvLM+fHPrB98afI5mQF/DJh5CG60rs0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117 Validity Not Before: Mar 29 04:55:28 2025 GMT Not After : Apr 5 04:55:28 2025 GMT Subject: CN=67e77d40-6ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:80:7b:1d:6d:bf:6c:1e:3f:be:41:b8:af:73: 65:b2:ca:b9:03:23:fd:9d:da:43:d5:e3:16:f9:f6: 82:c7:36:23:1b:4d:85:98:3f:44:17:12:b1:b1:f7: 44:a8:1b:66:9d:a5:3e:fd:21:61:85:3d:f3:e0:af: 9a:95:d4:d9:73:a3:31:de:83:c9:d6:0f:73:d3:21: 3c:5f:3c:02:25:f6:49:8f:9a:06:ba:b9:5b:75:4d: 08:1b:5f:65:e3:ee:be:22:b4:b7:a4:fa:e7:60:14: f6:94:f8:33:64:0d:20:3b:93:02:f9:06:cf:fe:4c: 2d:51:d6:94:ee:da:3b:cd:67:22:1a:aa:33:b7:2c: c8:c2:c4:dc:ee:8f:65:72:21:66:e0:e6:d3:1a:75: d8:98:37:25:48:5c:39:66:c7:51:e0:1d:1b:04:fc: 5e:72:15:ba:8d:55:e7:d8:d4:3e:f2:a0:ed:85:06: a0:fc:0b:93:6c:ea:69:1d:d6:f3:77:7f:5e:9d:7a: 68:ab:d2:ba:90:2e:4a:06:fe:ac:80:6c:4b:ee:23: 4b:80:13:9c:34:ab:7f:0d:a4:15:25:7f:07:08:58: 07:8d:74:2e:99:2f:69:6c:34:bc:45:52:8b:0f:bc: d9:c7:8e:68:a9:38:6c:67:c3:a2:db:f6:8f:1c:3b: 69:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C1:92:A3:DF:60:C5:03:DD:0B:A0:27:C1:3C:07:71:4A:16:FF:D7 X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9a:76:55:79:04:60:49:06:ef:5e:72:7a:16:07:3f:d6:10: 2a:19:af:cc:4c:da:0c:78:8b:4f:e3:8a:c0:36:3f:03:bd:01: 07:54:c7:83:e8:77:e7:3a:7a:d4:21:94:ca:dc:13:c9:a8:53: 08:cc:43:c5:db:3a:54:a7:41:81:cf:d3:3a:ec:cc:fc:9c:48: d0:85:95:09:25:86:46:b7:2a:c3:5f:7c:cd:78:2b:dc:65:ee: 8c:15:77:7c:94:eb:21:dd:4c:e9:ec:70:0a:9c:97:9c:72:1c: 15:a6:c1:71:7f:8a:ac:67:2f:47:10:11:d4:71:4f:07:ff:0f: b8:fd:f2:7e:9f:bc:2f:16:70:a8:b7:08:95:98:85:77:3c:46: 27:3e:8e:8a:d6:5a:b5:14:de:c2:16:7f:31:11:da:5a:08:7b: 60:2d:21:99:c7:29:15:03:31:f2:15:37:8c:e8:db:c3:d8:22: 1b:91:03:2d:a9:98:ee:d3:9c:d2:ef:66:7e:9b:65:56:1c:e3: c0:6f:0f:67:d6:b3:0a:96:ef:76:26:52:f5:44:8b:d9:3c:c0: 5d:01:22:8b:80:95:55:c4:86:bd:fa:61:a5:9b:50:ec:e8:96: 5b:cf:a9:b7:2a:85:5a:01:00:68:b8:7c:be:0d:87:6e:b8:21: 5d:5d:86:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMTcxMTAvBgNVBAUTKDg5N0RCQUQ2NDcwMjM3OEE2RUUxODYzMEUxOEJGNzVB MTcyOTgyNjkwHhcNMjUwMzI5MDQ1NTI4WhcNMjUwNDA1MDQ1NTI4WjAYMRYwFAYD VQQDEw02N2U3N2Q0MC02YWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oB7HW2/bB4/vkG4r3Nlssq5AyP9ndpD1eMW+faCxzYjG02FmD9EFxKxsfdE qBtmnaU+/SFhhT3z4K+aldTZc6Mx3oPJ1g9z0yE8XzwCJfZJj5oGurlbdU0IG19l 4+6+IrS3pPrnYBT2lPgzZA0gO5MC+QbP/kwtUdaU7to7zWciGqoztyzIwsTc7o9l ciFm4ObTGnXYmDclSFw5ZsdR4B0bBPxechW6jVXn2NQ+8qDthQag/AuTbOppHdbz d39enXpoq9K6kC5KBv6sgGxL7iNLgBOcNKt/DaQVJX8HCFgHjXQumS9pbDS8RVKL D7zZx45oqThsZ8Oi2/aPHDtpywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTBkqPf YMUD3QugJ8E8B3FKFv/XMB8GA1UdIwQYMBaAFIl9utZHAjeKbuGGMOGL91oXKYJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODExNy84RTI4RTc5NEJF MkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040cHU0WVl3NFl2M1doY3Bn bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODExNy84RTI4RTc5NEJFMkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040 cHU0WVl3NFl2M1doY3BnbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKmnZVeQRgSQbvXnJ6Fgc/1hAqGa/MTNoMeItP44rANj8DvQEHVMeD 6HfnOnrUIZTK3BPJqFMIzEPF2zpUp0GBz9M67Mz8nEjQhZUJJYZGtyrDX3zNeCvc Ze6MFXd8lOsh3Uzp7HAKnJecchwVpsFxf4qsZy9HEBHUcU8H/w+4/fJ+n7wvFnCo twiVmIV3PEYnPo6K1lq1FN7CFn8xEdpaCHtgLSGZxykVAzHyFTeM6NvD2CIbkQMt qZju05zS72Z+m2VWHOPAbw9n1rMKlu92JlL1RIvZPMBdASKLgJVVxIa9+mGlm1Ds 6JZbz6m3KoVaAQBouHy+DYduuCFdXYZU -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:49 2025 by rpki-client