$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft File: AwfvDynPItsJcPUIPAI8KqDW9Rc.mft (raw, json) Hash identifier: nFzYXWnXbAFjhOlsmqcSoLo7CUA6nwRHo9kFOjtElS4= Subject key identifier: DB:8C:D7:C3:5C:77:D8:4E:21:B6:D7:B1:1B:B8:09:09:8C:CD:EA:E7 Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 0883 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft Manifest number: 087C Signing time: Sun 06 Apr 2025 20:20:43 +0000 Manifest this update: Sun 06 Apr 2025 20:20:43 +0000 Manifest next update: Sun 13 Apr 2025 20:20:42 +0000 Files and hashes: 1: AwfvDynPItsJcPUIPAI8KqDW9Rc.crl (hash: 3yX9n9Gaw96wWpDy7d7+E2EjhUPiPnldVq1+pQAEI6A=) 2: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (hash: RBbk8UhQUJAo0+DivNUUdglkSzsFknX4rSnxZW8gCTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704 Validity Not Before: Apr 6 20:20:43 2025 GMT Not After : Apr 13 20:20:42 2025 GMT Subject: CN=67f2e21b-896b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:3e:95:5a:55:47:60:9d:c0:47:71:a9:4d: d5:96:89:c5:a9:d2:0c:02:a9:14:ef:a7:6e:0b:85: ed:0b:fc:27:47:be:b3:34:b9:76:4a:ee:5a:21:e9: d6:13:45:a1:40:82:7b:0f:ff:e2:e6:6c:e3:66:55: 06:64:75:11:2e:ed:83:5b:60:32:cb:eb:62:a3:b4: bd:69:ef:d6:a9:21:56:b7:9d:39:82:a7:58:13:c4: c3:06:dc:fe:a2:84:c5:aa:1b:a4:4a:a0:b7:7d:98: 9f:69:c6:69:37:5c:15:e8:da:56:5b:d3:aa:2f:70: 71:45:b8:af:36:d9:1e:98:39:b3:24:fa:42:49:43: f3:a1:8a:96:b3:8c:90:ce:ef:ff:34:c2:7d:08:61: 02:18:2a:b3:32:af:f9:fc:58:5d:1f:55:f9:fd:82: d4:69:9b:49:8d:9b:85:04:ee:76:50:9c:00:0e:43: 59:dd:44:ed:31:13:f7:46:d3:b5:74:91:7d:58:ec: f9:6d:3e:8c:12:b7:37:cd:ad:85:4f:69:f1:15:00: 67:1e:f0:4f:b3:ab:d9:f1:16:69:9a:52:36:27:b5: e1:dd:3a:d2:39:ab:24:8d:ff:4a:67:d3:7d:90:f5: 1b:a5:39:34:28:77:2e:dc:42:06:71:b2:ed:03:41: b2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:8C:D7:C3:5C:77:D8:4E:21:B6:D7:B1:1B:B8:09:09:8C:CD:EA:E7 X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:63:59:4f:ce:87:50:00:62:80:00:49:22:4d:d8:e0:22:68: cf:e2:90:72:51:ea:42:57:df:67:be:97:4e:c3:ce:89:00:be: 6d:9e:09:82:81:5f:08:ae:dd:8f:6e:1e:f5:82:a7:81:14:e1: da:fc:c5:f4:ac:33:d3:9c:7d:eb:a5:17:da:e8:49:aa:40:aa: 23:0b:c7:f1:a9:95:3a:cb:84:2a:1c:37:52:4d:85:6b:af:88: 96:ef:db:fb:57:9d:41:b2:29:40:8f:2c:48:72:df:1f:41:89: 5f:e8:b4:3c:b0:8b:22:39:94:8d:4f:7a:44:dc:5f:76:14:ab: 14:53:41:65:23:9d:2d:33:a3:23:c9:02:88:84:8a:29:a0:ae: 96:ed:04:6c:12:90:68:86:20:29:d4:22:ba:1b:5d:1b:74:d0: ed:c3:c7:28:d8:17:0a:a8:47:d8:f4:36:64:a1:3c:c7:8a:14: 4a:cb:cc:39:66:45:fc:12:fb:8e:d2:b4:3e:f6:80:c9:aa:40: b9:15:98:3a:98:01:d4:14:65:ea:56:82:f3:5a:7a:0e:a4:47: 6d:b3:5f:6a:0f:c2:fb:b8:a1:bc:54:d3:75:8f:ec:95:71:dd: e3:08:e8:6a:cc:c2:2f:ff:46:3c:a0:8a:9a:62:bc:52:0f:0e: 87:4b:b9:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjUwNDA2MjAyMDQzWhcNMjUwNDEzMjAyMDQyWjAYMRYwFAYD VQQDEw02N2YyZTIxYi04OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplI+lVpVR2CdwEdxqU3VlonFqdIMAqkU76duC4XtC/wnR76zNLl2Su5aIenW E0WhQIJ7D//i5mzjZlUGZHURLu2DW2Ayy+tio7S9ae/WqSFWt505gqdYE8TDBtz+ ooTFqhukSqC3fZifacZpN1wV6NpWW9OqL3BxRbivNtkemDmzJPpCSUPzoYqWs4yQ zu//NMJ9CGECGCqzMq/5/FhdH1X5/YLUaZtJjZuFBO52UJwADkNZ3UTtMRP3RtO1 dJF9WOz5bT6MErc3za2FT2nxFQBnHvBPs6vZ8RZpmlI2J7Xh3TrSOaskjf9KZ9N9 kPUbpTk0KHcu3EIGcbLtA0Gy9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuM18Nc d9hOIbbXsRu4CQmMzernMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODcwNC81NjU1QUM5OEJDMEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0 c0pjUFVJUEFJOEtxRFc5UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2Y1lPzodQAGKAAEkiTdjgImjP4pByUepCV99nvpdOw86JAL5tngmC gV8Irt2Pbh71gqeBFOHa/MX0rDPTnH3rpRfa6EmqQKojC8fxqZU6y4QqHDdSTYVr r4iW79v7V51BsilAjyxIct8fQYlf6LQ8sIsiOZSNT3pE3F92FKsUU0FlI50tM6Mj yQKIhIopoK6W7QRsEpBohiAp1CK6G10bdNDtw8co2BcKqEfY9DZkoTzHihRKy8w5 ZkX8EvuO0rQ+9oDJqkC5FZg6mAHUFGXqVoLzWnoOpEdts19qD8L7uKG8VNN1j+yV cd3jCOhqzMIv/0Y8oIqaYrxSDw6HS7m7 -----END CERTIFICATE-----Generated at Sun Apr 6 23:16:09 2025 by rpki-client