$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft File: e14ORHE1uxchraYfZdx1yV9U2wI.mft (raw, json) Hash identifier: vbTlso2liTO9yjPScpgKIhf+D23otgTfi9EiU4VrkBY= Subject key identifier: C8:B3:A4:A5:3F:D3:5E:8F:68:4C:C1:2F:A9:D0:C5:BA:C6:13:17:3D Authority key identifier: 7B:5E:0E:44:71:35:BB:17:21:AD:A6:1F:65:DC:75:C9:5F:54:DB:02 Certificate issuer: /CN=A91D8226/serialNumber=7B5E0E447135BB1721ADA61F65DC75C95F54DB02 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft Manifest number: 36 Signing time: Sat 29 Mar 2025 06:55:33 +0000 Manifest this update: Sat 29 Mar 2025 06:55:33 +0000 Manifest next update: Sat 05 Apr 2025 06:55:33 +0000 Files and hashes: 1: e14ORHE1uxchraYfZdx1yV9U2wI.crl (hash: OKT09apqkahHAfA7oJkUL7R9LrcAEpZUrD4vwNiYLcY=) 2: E4086C08BC2311EF9A445084C4F9AE02.roa (hash: 2FSatyOED0Xg8fw4/PC0bYUlzXZJsIqXLZTaph/05xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.crl rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8226 Validity Not Before: Mar 29 06:55:33 2025 GMT Not After : Apr 5 06:55:33 2025 GMT Subject: CN=67e79965-1c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b4:3d:68:b3:e9:2c:5b:ae:33:fa:ff:69:00: bd:b0:2d:dc:11:8e:e3:96:8b:de:ee:dd:3d:1f:6b: 1f:7b:ad:12:4d:41:47:b9:70:71:bd:94:b4:da:23: 7a:77:61:8d:2e:21:b6:52:aa:eb:bf:34:d0:c5:f5: f9:b6:84:07:6f:49:f1:eb:5e:ce:6e:67:1f:81:2d: f9:b4:9e:61:0e:60:3f:55:17:8d:2b:c3:7a:ae:cc: c4:9a:08:81:28:d0:01:15:4b:aa:37:00:c3:00:56: e9:a3:3d:71:2e:0f:77:53:55:4d:1f:64:af:0f:fc: 68:40:50:e5:fb:59:da:3e:10:af:51:3d:00:1c:05: 75:64:c5:2f:bb:ad:3c:5f:5e:7e:1a:2d:b9:37:b9: 19:56:e7:6f:c2:7f:f8:99:4d:d7:49:bd:de:2f:96: dc:1e:ca:3c:5c:51:5a:ad:a1:2d:aa:46:de:1c:e6: 90:a8:31:c8:45:49:24:bc:00:40:0a:4a:9a:1b:64: c3:7f:35:f8:ba:c2:10:65:30:ec:39:e5:f4:c4:aa: c9:df:7c:67:f6:60:bd:9d:d0:2e:4e:ef:a1:2a:f8: 0b:ca:11:9e:46:b8:a5:2c:91:e3:c4:6f:7a:cf:b1: 64:9f:be:d9:6c:2a:8f:80:03:00:b6:9d:75:1a:aa: 11:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B3:A4:A5:3F:D3:5E:8F:68:4C:C1:2F:A9:D0:C5:BA:C6:13:17:3D X509v3 Authority Key Identifier: keyid:7B:5E:0E:44:71:35:BB:17:21:AD:A6:1F:65:DC:75:C9:5F:54:DB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e14ORHE1uxchraYfZdx1yV9U2wI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8226/EC4DF314BC1F11EFAADA745FC4F9AE02/e14ORHE1uxchraYfZdx1yV9U2wI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:8f:59:8f:6e:1c:7a:ac:1a:35:e0:f2:b2:36:30:19:15:01: bc:a4:4d:3b:ed:ec:fb:6f:5b:61:cf:88:7f:0d:24:42:2f:93: 33:5e:22:40:0f:6f:46:df:fb:7b:f8:b3:cf:e6:78:ea:81:0b: 0f:e4:99:fd:4a:02:0c:f6:2c:f9:f5:72:05:07:cd:bc:8f:d7: 49:33:5a:9a:b9:02:9f:08:79:50:40:0d:17:f0:05:ec:48:a1: 7a:7f:7f:88:7b:f3:56:97:6c:a0:e7:56:13:9f:95:b4:b5:ef: 82:f3:b5:76:c0:87:f7:37:40:a7:6e:24:dd:e8:b8:65:bf:ca: 64:0b:6a:13:18:6f:0f:d5:94:c1:79:04:d8:43:2e:49:d0:a1: ee:63:dc:84:d3:dd:2e:35:2c:54:78:ee:fa:77:40:80:00:54: e6:98:07:ee:e3:90:b6:35:22:75:83:5c:72:0a:33:a0:1c:2d: 95:8e:1f:eb:57:07:e8:72:02:1b:53:88:84:b3:a4:62:d2:93: 24:23:7d:72:79:4f:4b:7c:57:bf:d9:69:81:33:06:fc:33:48: a0:ec:02:59:fb:45:d7:10:8f:6e:70:9d:bb:7a:d4:71:62:02: e1:bf:1a:05:30:7d:77:65:a7:4e:b0:06:7f:45:a2:b4:42:82: b3:15:6f:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODIyNjExMC8GA1UEBRMoN0I1RTBFNDQ3MTM1QkIxNzIxQURBNjFGNjVEQzc1Qzk1 RjU0REIwMjAeFw0yNTAzMjkwNjU1MzNaFw0yNTA0MDUwNjU1MzNaMBgxFjAUBgNV BAMTDTY3ZTc5OTY1LTFjNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDetD1os+ksW64z+v9pAL2wLdwRjuOWi97u3T0fax97rRJNQUe5cHG9lLTaI3p3 YY0uIbZSquu/NNDF9fm2hAdvSfHrXs5uZx+BLfm0nmEOYD9VF40rw3quzMSaCIEo 0AEVS6o3AMMAVumjPXEuD3dTVU0fZK8P/GhAUOX7Wdo+EK9RPQAcBXVkxS+7rTxf Xn4aLbk3uRlW52/Cf/iZTddJvd4vltweyjxcUVqtoS2qRt4c5pCoMchFSSS8AEAK SpobZMN/Nfi6whBlMOw55fTEqsnffGf2YL2d0C5O76Eq+AvKEZ5GuKUskePEb3rP sWSfvtlsKo+AAwC2nXUaqhHLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyLOkpT/T Xo9oTMEvqdDFusYTFz0wHwYDVR0jBBgwFoAUe14ORHE1uxchraYfZdx1yV9U2wIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MjI2L0VDNERGMzE0QkMx RjExRUZBQURBNzQ1RkM0RjlBRTAyL2UxNE9SSEUxdXhjaHJhWWZaZHgxeVY5VTJ3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZTE0T1JIRTF1eGNocmFZZlpkeDF5VjlVMndJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MjI2L0VDNERGMzE0QkMxRjExRUZBQURBNzQ1RkM0RjlBRTAyL2UxNE9SSEUxdXhj aHJhWWZaZHgxeVY5VTJ3SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOSPWY9uHHqsGjXg8rI2MBkVAbykTTvt7PtvW2HPiH8NJEIvkzNeIkAP b0bf+3v4s8/meOqBCw/kmf1KAgz2LPn1cgUHzbyP10kzWpq5Ap8IeVBADRfwBexI oXp/f4h781aXbKDnVhOflbS174LztXbAh/c3QKduJN3ouGW/ymQLahMYbw/VlMF5 BNhDLknQoe5j3ITT3S41LFR47vp3QIAAVOaYB+7jkLY1InWDXHIKM6AcLZWOH+tX B+hyAhtTiISzpGLSkyQjfXJ5T0t8V7/ZaYEzBvwzSKDsAln7RdcQj25wnbt61HFi AuG/GgUwfXdlp06wBn9ForRCgrMVb0w= -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:36 2025 by rpki-client