$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: 4FFbWSqkW9ibhJywl5tSpOK0vEXZFRnrYmYU96m3IBA= Subject key identifier: AF:1C:2D:A2:1A:D2:9C:A8:58:0B:DA:4C:C1:6C:19:98:92:F1:4F:B7 Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 1655 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 164E Signing time: Thu 10 Apr 2025 16:42:45 +0000 Manifest this update: Thu 10 Apr 2025 16:42:45 +0000 Manifest next update: Thu 17 Apr 2025 16:42:45 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: eHuZ96IycP5nRO2HE7PC/p5ZzCSkKWP3liEyjpBESdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 16:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5717 (0x1655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Apr 10 16:42:45 2025 GMT Not After : Apr 17 16:42:45 2025 GMT Subject: CN=67f7f505-574a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:0e:75:50:0e:4a:55:06:f9:5a:ca:98:e8: 7b:ed:4c:e9:81:03:5f:5c:da:04:d8:fb:eb:c1:04: ce:bc:2d:68:c5:89:8c:29:e8:f1:78:d4:5d:8f:24: 71:ca:a3:f6:ad:a5:86:c2:7c:95:0a:a2:35:75:5b: 1d:e6:b9:1b:85:6b:03:41:50:fb:2a:7f:37:16:9f: c1:ae:4d:09:df:0f:bc:a4:cf:72:3c:9a:57:6a:d1: 0a:7d:7e:46:5a:ef:51:aa:0c:6e:19:75:2b:49:59: 81:5e:e1:61:04:8a:31:0d:bd:24:49:fc:d3:2e:59: 72:2f:4c:55:7d:4d:ae:d1:8d:09:eb:33:ab:20:59: a0:ca:d5:28:c3:80:35:e7:35:93:f8:b6:f7:a2:30: 85:f5:8c:6c:ba:1f:a2:03:97:23:9a:66:3a:11:d7: 12:7e:1f:c7:ed:e4:5b:2b:4d:39:9e:e8:23:09:cd: 4d:1b:29:2b:4c:5c:b0:91:67:d7:ce:03:04:a7:1f: 7c:5b:b1:d4:a9:50:60:9e:5c:3f:75:90:c1:e4:91: c8:f7:6e:66:12:43:94:09:e1:1b:85:c4:34:b8:2d: ae:78:31:23:29:a9:ad:40:81:02:f7:b3:3e:af:12: c0:91:bf:78:10:c1:f2:fa:9e:05:30:d0:c1:fc:7a: e0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1C:2D:A2:1A:D2:9C:A8:58:0B:DA:4C:C1:6C:19:98:92:F1:4F:B7 X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e3:55:a6:b4:96:6f:71:51:26:79:ad:b7:69:11:e4:3f:87: 9c:7e:01:2e:74:3d:c5:da:df:41:e1:cc:a0:4e:29:f5:d0:a8: 32:64:ea:e2:69:2c:3c:c9:84:f6:cc:ca:6b:81:c9:f9:a6:ed: a6:50:8f:69:66:67:c6:80:9d:00:af:70:87:e5:d0:98:79:e3: 93:f9:42:13:e8:d9:e4:9d:a4:db:03:4f:30:b2:4f:6e:fb:d1: dd:5b:e2:cd:43:3c:62:f6:2b:57:cb:ef:c8:da:71:21:e3:c1: c0:d2:d2:6a:89:69:07:8a:01:53:d1:57:58:53:43:bb:fb:94: fe:16:ba:18:0e:df:1a:a1:47:3f:8c:ba:fb:87:95:89:bf:4f: d5:84:fb:2b:a3:24:8d:5e:45:7d:c0:12:cf:f3:2b:31:0e:e1: 0b:1a:09:0b:51:d6:f3:a0:c9:d1:84:e0:95:18:d4:8d:43:41: f6:2d:5d:51:2d:6f:2f:29:a0:7f:f7:d9:68:7a:7c:2c:7e:a8: 45:f6:15:a4:51:72:df:6a:80:b4:23:7e:df:62:3b:6f:d3:98: e9:00:31:79:34:7b:c4:65:e9:3b:48:71:90:93:af:89:04:e5: aa:aa:dd:3f:bd:1b:1e:d6:fe:ef:c1:6f:df:97:12:77:b6:39: ad:dc:ab:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUwNDEwMTY0MjQ1WhcNMjUwNDE3MTY0MjQ1WjAYMRYwFAYD VQQDEw02N2Y3ZjUwNS01NzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG8OdVAOSlUG+VrKmOh77UzpgQNfXNoE2PvrwQTOvC1oxYmMKejxeNRdjyRx yqP2raWGwnyVCqI1dVsd5rkbhWsDQVD7Kn83Fp/Brk0J3w+8pM9yPJpXatEKfX5G Wu9RqgxuGXUrSVmBXuFhBIoxDb0kSfzTLllyL0xVfU2u0Y0J6zOrIFmgytUow4A1 5zWT+Lb3ojCF9Yxsuh+iA5cjmmY6EdcSfh/H7eRbK005nugjCc1NGykrTFywkWfX zgMEpx98W7HUqVBgnlw/dZDB5JHI925mEkOUCeEbhcQ0uC2ueDEjKamtQIEC97M+ rxLAkb94EMHy+p4FMNDB/HrguQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8cLaIa 0pyoWAvaTMFsGZiS8U+3MB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc41WmtJZvcVEmea23aRHkP4ecfgEudD3F2t9B4cygTin10KgyZOri aSw8yYT2zMprgcn5pu2mUI9pZmfGgJ0Ar3CH5dCYeeOT+UIT6NnknaTbA08wsk9u +9HdW+LNQzxi9itXy+/I2nEh48HA0tJqiWkHigFT0VdYU0O7+5T+FroYDt8aoUc/ jLr7h5WJv0/VhPsroySNXkV9wBLP8ysxDuELGgkLUdbzoMnRhOCVGNSNQ0H2LV1R LW8vKaB/99loenwsfqhF9hWkUXLfaoC0I37fYjtv05jpADF5NHvEZek7SHGQk6+J BOWqqt0/vRse1v7vwW/flxJ3tjmt3KvF -----END CERTIFICATE-----Generated at Sat Apr 12 14:49:51 2025 by rpki-client