$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: PVDiXVF6Nwc2WXq7Eo4x7IZuRQ6nhoXfD3P/Pn3L72o= Subject key identifier: 66:B2:5C:A4:42:43:83:57:24:66:D7:F6:A9:4D:D4:54:F1:8A:F9:A6 Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 11 Signing time: Fri 11 Apr 2025 07:18:18 +0000 Manifest this update: Fri 11 Apr 2025 07:18:17 +0000 Manifest next update: Fri 18 Apr 2025 07:18:17 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: eyqi21XzjyBQLQZq8CpaoqnlQUwJgliz0fVcdgAN16c=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 07:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Apr 11 07:18:17 2025 GMT Not After : Apr 18 07:18:17 2025 GMT Subject: CN=67f8c239-becd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ce:15:20:e5:3d:2f:e0:19:4e:76:83:00:99: 49:8a:c3:81:ef:5a:2c:65:22:57:a4:85:aa:56:ab: d5:dc:86:30:dc:27:ea:0a:ba:33:8f:2d:3e:42:4f: 97:f9:2a:52:ff:40:fb:1d:0e:e5:66:71:7a:f3:b4: 63:6f:23:7d:c1:08:e3:6c:21:34:d1:bb:bd:80:0c: 48:9c:2b:f1:35:e6:4c:80:e2:81:5f:7c:9f:9f:f5: 58:81:3b:29:9a:33:e1:54:23:2d:bb:33:c2:8d:2b: 18:c6:94:8f:b5:c7:32:a2:41:76:fc:28:04:ce:51: ff:03:99:62:82:57:31:b1:0c:5a:d0:ee:25:88:a7: e3:93:ee:56:bc:43:73:94:04:22:e4:c4:ab:8b:92: e8:c4:2b:9e:bb:0e:8f:95:58:e7:77:df:cb:88:c3: 7a:f1:07:a5:21:b5:f0:68:6d:84:9f:ed:1f:91:bf: 55:cb:19:20:fc:b2:a5:30:b1:40:81:a9:05:7f:80: 1e:85:ce:21:a8:a1:1d:10:2e:c0:e2:11:65:8c:c7: 8e:aa:68:08:71:12:ec:ff:78:47:8e:b6:c3:a2:f1: 91:e0:a9:18:d3:e4:d6:a5:a1:87:a7:bb:99:18:10: 66:a5:5a:3d:46:a3:80:2b:7a:d2:45:87:d0:de:25: f3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B2:5C:A4:42:43:83:57:24:66:D7:F6:A9:4D:D4:54:F1:8A:F9:A6 X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:77:e5:a5:37:41:a2:80:e6:81:b0:bc:b3:a1:75:8c:f1:89: 09:ca:78:63:6e:8b:ae:40:7e:bf:2d:ff:05:d7:bb:cd:b4:2d: ea:b0:8f:76:b6:db:b0:c3:fd:d5:58:cb:1e:38:95:d1:93:3c: 13:a5:eb:d8:5a:f5:a7:6e:0d:a8:60:b1:7d:4c:5a:13:48:fc: 08:64:11:3d:a2:71:b6:b8:06:c7:65:74:e9:38:a5:a3:b9:4f: fa:1d:3b:44:83:00:f7:15:96:45:18:d0:ab:cb:b8:e7:8a:c5: 1f:f1:4f:de:c1:ce:ac:93:c1:06:8d:c0:eb:d3:08:cb:c7:ee: ee:e6:0d:8c:97:d0:d8:ed:7d:b2:c9:1b:e5:70:73:17:7b:a9: d5:3e:78:2c:44:de:ee:07:15:b3:44:44:f7:87:cd:23:36:7e: 81:1f:0a:9f:fe:fb:25:f7:5f:7a:8a:12:23:a8:43:14:aa:3e: 2f:aa:3a:d6:93:e9:62:8d:3b:44:c4:59:0f:40:1e:18:fe:87: cd:e7:4b:6f:e8:0d:fb:83:0d:a8:e8:14:9e:7b:65:62:b2:36: 60:89:92:64:e2:87:7d:88:25:5a:bb:48:cb:26:11:43:08:7e: 5e:51:6e:dc:fa:69:50:50:b3:39:42:6b:0f:cb:ed:52:f1:3a: 8c:3c:59:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QThDMjExMC8GA1UEBRMoRDI0RkNDQUQzQUNFN0ZGRTVCRjAyQTZBOEY2OEMwNjAy RTFDMUI1MTAeFw0yNTA0MTEwNzE4MTdaFw0yNTA0MTgwNzE4MTdaMBgxFjAUBgNV BAMTDTY3ZjhjMjM5LWJlY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtzhUg5T0v4BlOdoMAmUmKw4HvWixlIlekhapWq9XchjDcJ+oKujOPLT5CT5f5 KlL/QPsdDuVmcXrztGNvI33BCONsITTRu72ADEicK/E15kyA4oFffJ+f9ViBOyma M+FUIy27M8KNKxjGlI+1xzKiQXb8KATOUf8DmWKCVzGxDFrQ7iWIp+OT7la8Q3OU BCLkxKuLkujEK567Do+VWOd338uIw3rxB6UhtfBobYSf7R+Rv1XLGSD8sqUwsUCB qQV/gB6FziGooR0QLsDiEWWMx46qaAhxEuz/eEeOtsOi8ZHgqRjT5NaloYenu5kY EGalWj1Go4AretJFh9DeJfN7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZrJcpEJD g1ckZtf2qU3UVPGK+aYwHwYDVR0jBBgwFoAU0k/MrTrOf/5b8Cpqj2jAYC4cG1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBOEMyLzk1QTY5QkUyMDA1 MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGtfTXJUck9mXzViOENwcWoyakFZQzRjRzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB OEMyLzk1QTY5QkUyMDA1MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81 YjhDcHFqMmpBWUM0Y0cxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJp35aU3QaKA5oGwvLOhdYzxiQnKeGNui65Afr8t/wXXu820Leqwj3a2 27DD/dVYyx44ldGTPBOl69ha9aduDahgsX1MWhNI/AhkET2icba4BsdldOk4paO5 T/odO0SDAPcVlkUY0KvLuOeKxR/xT97BzqyTwQaNwOvTCMvH7u7mDYyX0NjtfbLJ G+Vwcxd7qdU+eCxE3u4HFbNERPeHzSM2foEfCp/++yX3X3qKEiOoQxSqPi+qOtaT 6WKNO0TEWQ9AHhj+h83nS2/oDfuDDajoFJ57ZWKyNmCJkmTih32IJVq7SMsmEUMI fl5Rbtz6aVBQszlCaw/L7VLxOow8WUY= -----END CERTIFICATE-----Generated at Sat Apr 12 18:51:55 2025 by rpki-client