$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft File: aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft (raw, json) Hash identifier: O2lWe+46go0xWYLr0088B7D//9lvQH5vU9zxyWO4Mac= Subject key identifier: 64:FC:9A:51:D6:0F:54:B8:54:C9:D4:22:DD:FD:8D:89:11:38:27:9D Authority key identifier: 69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 Certificate issuer: /CN=A91DC146/serialNumber=690C729F18390564D670B18F7774754E5D279951 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft Manifest number: 05D3 Signing time: Fri 28 Mar 2025 23:17:16 +0000 Manifest this update: Fri 28 Mar 2025 23:17:16 +0000 Manifest next update: Fri 04 Apr 2025 23:17:16 +0000 Files and hashes: 1: aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl (hash: HoVTwK6ACuC6VgxdOpcD1ym85amv80TQ2brrDWZewBM=) 2: 4BB44892AE1111EBB4C2DA11C4F9AE02.roa (hash: JNSnvB3lv0/9vnQPkUAqkaUeoo68hc8fXSyVzWlD/Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC146 Validity Not Before: Mar 28 23:17:16 2025 GMT Not After : Apr 4 23:17:16 2025 GMT Subject: CN=67e72dfc-5e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:85:00:50:4a:36:36:63:7f:67:47:df:e0:f2: a5:7c:e3:09:15:25:ed:e5:d0:f0:0d:31:24:1c:6c: 24:0d:6a:21:bd:bf:53:27:19:7f:93:2c:7e:98:73: 14:f6:59:e0:41:ac:b4:dc:5b:31:be:93:66:1b:74: b4:d9:f8:0d:2e:2b:60:83:2e:fd:40:48:9c:85:af: e1:4f:a0:fe:c9:68:a2:c2:e8:f2:ca:47:26:8b:49: 36:1f:67:bc:13:40:7d:48:2b:3f:52:5e:f1:ae:8b: 25:c0:71:d0:ec:98:30:25:9d:fb:ec:a8:2d:57:12: 79:6f:04:43:a1:fc:c6:30:43:6e:70:46:6d:b0:c7: f0:56:8e:d2:2f:eb:f0:cb:d4:83:51:c7:bb:66:5a: 62:5e:7a:04:84:3d:f5:52:f0:e0:48:35:e1:f1:22: a1:58:b4:f9:33:39:54:23:33:24:97:45:63:4a:91: 69:71:bf:6a:a0:34:9b:b0:7a:bd:cd:a1:d3:e9:0e: 16:d6:58:dc:8e:33:0c:12:92:2d:f5:8d:87:c0:29: 59:c8:42:dd:62:80:ea:a4:87:d1:8b:be:66:ae:ec: d0:8c:f0:c9:84:a3:86:8f:62:a7:f3:ca:25:90:1b: ca:7e:42:cf:04:a0:44:7f:5e:24:68:20:44:f7:d2: 53:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FC:9A:51:D6:0F:54:B8:54:C9:D4:22:DD:FD:8D:89:11:38:27:9D X509v3 Authority Key Identifier: keyid:69:0C:72:9F:18:39:05:64:D6:70:B1:8F:77:74:75:4E:5D:27:99:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQxynxg5BWTWcLGPd3R1Tl0nmVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC146/DAA76492AE0E11EB8ABA334DC4F9AE02/aQxynxg5BWTWcLGPd3R1Tl0nmVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:43:73:a6:93:90:c1:99:ad:86:78:94:f3:2f:b9:33:3a:48: 43:22:4a:8c:13:3e:d1:da:ad:44:ee:db:a9:0a:6e:4b:af:81: 84:d0:d0:29:74:3a:49:48:3d:df:25:11:9a:8a:16:74:a8:d6: f8:b0:a0:d4:2a:5b:35:4c:11:d2:e4:cb:47:5b:09:f7:79:d6: e0:fa:7d:53:8c:0f:97:48:a1:10:6c:8f:e9:cf:ba:00:5b:4e: 0b:52:9d:c9:bc:69:1a:9b:b1:7f:58:11:3a:0c:3d:b5:47:38: 70:08:1f:24:6b:7f:c0:73:04:73:e8:2b:63:5f:f7:12:94:a0: e2:ac:82:f5:91:e1:b3:da:95:54:a8:d4:62:a1:60:d3:be:1a: a4:be:46:7b:a8:b9:bf:32:1e:14:f2:30:b0:8e:4e:b6:f1:07: d3:35:7c:ce:3c:e2:38:1d:83:f9:e5:ba:f5:05:b4:fe:2a:f3: 1c:5f:19:d7:ca:52:9c:3d:69:45:45:8e:e6:84:5c:7a:01:94: 68:1f:86:7e:7f:df:6d:5c:52:ec:27:ba:88:2d:48:bc:0e:d0: 1c:c0:c3:af:33:60:18:1b:30:a8:20:e2:86:87:d5:19:ec:b4: 71:93:41:88:c8:6a:0f:57:ff:95:57:0c:d0:6b:9d:10:97:18: 0a:e8:12:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMxNDYxMTAvBgNVBAUTKDY5MEM3MjlGMTgzOTA1NjRENjcwQjE4Rjc3NzQ3NTRF NUQyNzk5NTEwHhcNMjUwMzI4MjMxNzE2WhcNMjUwNDA0MjMxNzE2WjAYMRYwFAYD VQQDEw02N2U3MmRmYy01ZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4UAUEo2NmN/Z0ff4PKlfOMJFSXt5dDwDTEkHGwkDWohvb9TJxl/kyx+mHMU 9lngQay03FsxvpNmG3S02fgNLitggy79QEicha/hT6D+yWiiwujyykcmi0k2H2e8 E0B9SCs/Ul7xroslwHHQ7JgwJZ377KgtVxJ5bwRDofzGMENucEZtsMfwVo7SL+vw y9SDUce7ZlpiXnoEhD31UvDgSDXh8SKhWLT5MzlUIzMkl0VjSpFpcb9qoDSbsHq9 zaHT6Q4W1ljcjjMMEpIt9Y2HwClZyELdYoDqpIfRi75mruzQjPDJhKOGj2Kn88ol kBvKfkLPBKBEf14kaCBE99JT8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGT8mlHW D1S4VMnUIt39jYkROCedMB8GA1UdIwQYMBaAFGkMcp8YOQVk1nCxj3d0dU5dJ5lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzE0Ni9EQUE3NjQ5MkFF MEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJXVFdjTEdQZDNSMVRsMG5t VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FReHlueGc1QldUV2NMR1BkM1IxVGwwbm1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzE0Ni9EQUE3NjQ5MkFFMEUxMUVCOEFCQTMzNERDNEY5QUUwMi9hUXh5bnhnNUJX VFdjTEdQZDNSMVRsMG5tVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtQ3Omk5DBma2GeJTzL7kzOkhDIkqMEz7R2q1E7tupCm5Lr4GE0NAp dDpJSD3fJRGaihZ0qNb4sKDUKls1TBHS5MtHWwn3edbg+n1TjA+XSKEQbI/pz7oA W04LUp3JvGkam7F/WBE6DD21RzhwCB8ka3/AcwRz6CtjX/cSlKDirIL1keGz2pVU qNRioWDTvhqkvkZ7qLm/Mh4U8jCwjk628QfTNXzOPOI4HYP55br1BbT+KvMcXxnX ylKcPWlFRY7mhFx6AZRoH4Z+f99tXFLsJ7qILUi8DtAcwMOvM2AYGzCoIOKGh9UZ 7LRxk0GIyGoPV/+VVwzQa50QlxgK6BJE -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:26 2025 by rpki-client