$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: dJZdo/ISichR5GNxrYBYD4SF187m6WV/SGzqjVDItI4= Subject key identifier: 23:2D:0B:CD:96:3E:7E:50:56:56:15:84:A2:1B:8E:61:A6:0D:EB:49 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 0881 Signing time: Thu 10 Apr 2025 20:34:46 +0000 Manifest this update: Thu 10 Apr 2025 20:34:45 +0000 Manifest next update: Thu 17 Apr 2025 20:34:45 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: EXOblkvB7seYc30sa/oHukGIYiiIb+NVTmnKkuFVLJA=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 20:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Apr 10 20:34:45 2025 GMT Not After : Apr 17 20:34:45 2025 GMT Subject: CN=67f82b65-7c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ac:63:f2:b3:4c:df:c9:fd:a1:aa:3d:6b:9a: 90:e9:c0:a9:b2:f5:4e:70:9a:60:ff:9e:7d:2e:78: cd:9f:f6:bf:a6:ea:68:9f:58:8e:67:e9:2c:1e:27: 95:9f:3a:06:1b:d5:1b:21:e0:e9:37:fc:31:57:8f: 62:5d:7f:9b:0b:3c:dc:bb:bd:72:8d:a7:58:42:f1: d3:3d:bb:61:cc:00:d2:b6:cc:73:5a:ae:db:6e:c4: 39:67:aa:34:4b:75:69:80:45:60:75:ff:c4:ef:81: dd:77:4f:04:64:f2:d9:2f:27:ac:4b:e9:32:06:d8: 49:b3:f3:7c:f3:85:7a:9e:f0:8a:8a:2a:ff:a5:b3: b3:a0:b8:5d:51:5e:52:52:d1:73:c3:03:33:69:5d: a9:9b:2a:14:64:0d:86:ad:f9:a9:6c:93:be:1f:ce: 84:b4:0a:44:55:b2:c0:48:a6:a1:14:28:38:59:c0: e0:94:9b:18:50:7f:e2:0b:0d:1f:4e:07:43:bf:d0: 3e:11:2e:24:c7:11:92:64:71:60:96:11:7b:63:83: be:48:95:37:76:ec:bc:0f:f7:c3:b7:7b:ad:13:54: ef:9a:42:b9:0d:c8:34:0a:03:06:a3:17:55:76:b4: 0e:72:84:48:c5:96:22:45:11:a5:70:4b:aa:ab:56: 06:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2D:0B:CD:96:3E:7E:50:56:56:15:84:A2:1B:8E:61:A6:0D:EB:49 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:97:43:c9:4a:89:ac:70:ca:2b:36:64:43:a7:80:e0:8a:02: a1:be:8b:12:9d:40:9a:0c:92:16:33:ae:13:64:07:ff:ba:56: 15:99:b5:a7:ce:e9:09:82:57:4f:7d:dd:8d:0e:b8:f1:a8:95: 1c:55:0c:73:50:10:1d:0d:4d:04:0b:0e:f9:6b:0f:36:6c:26: ca:03:68:a9:6d:5c:c2:2b:6c:ca:d6:5b:7a:31:1c:ba:ac:7f: e6:ce:92:3a:db:5c:50:6e:b1:ac:b2:b7:2b:0b:ef:9c:12:0b: 6b:f4:c7:c0:79:6a:e0:8a:3b:79:21:4f:f2:74:a4:37:28:35: ca:39:97:82:2b:e3:30:89:fa:5c:69:f8:c9:81:e6:af:b5:bb: 9c:da:d6:c5:e8:5c:72:76:9d:c6:2b:5d:64:fa:cd:7e:0d:c3: 8f:84:97:fa:1e:d9:b8:46:fd:aa:b1:20:23:aa:cd:e2:73:cc: 2a:40:85:7f:c4:e3:f0:35:79:ce:e4:06:a8:1a:08:a1:6c:bc: 1c:6f:60:7a:d4:ae:bb:2c:78:5f:a1:fb:f2:0d:86:f8:7f:51: c2:d5:8e:be:6f:5b:04:6e:c4:ac:4d:8c:50:43:42:71:86:56: 78:61:78:6e:a7:10:e6:bb:70:84:2c:e7:3e:69:97:fa:29:70: 42:21:6b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUwNDEwMjAzNDQ1WhcNMjUwNDE3MjAzNDQ1WjAYMRYwFAYD VQQDEw02N2Y4MmI2NS03YzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKxj8rNM38n9oao9a5qQ6cCpsvVOcJpg/559LnjNn/a/pupon1iOZ+ksHieV nzoGG9UbIeDpN/wxV49iXX+bCzzcu71yjadYQvHTPbthzADStsxzWq7bbsQ5Z6o0 S3VpgEVgdf/E74Hdd08EZPLZLyesS+kyBthJs/N884V6nvCKiir/pbOzoLhdUV5S UtFzwwMzaV2pmyoUZA2GrfmpbJO+H86EtApEVbLASKahFCg4WcDglJsYUH/iCw0f TgdDv9A+ES4kxxGSZHFglhF7Y4O+SJU3duy8D/fDt3utE1TvmkK5Dcg0CgMGoxdV drQOcoRIxZYiRRGlcEuqq1YGYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMtC82W Pn5QVlYVhKIbjmGmDetJMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtl0PJSomscMorNmRDp4DgigKhvosSnUCaDJIWM64TZAf/ulYVmbWn zukJgldPfd2NDrjxqJUcVQxzUBAdDU0ECw75aw82bCbKA2ipbVzCK2zK1lt6MRy6 rH/mzpI621xQbrGssrcrC++cEgtr9MfAeWrgijt5IU/ydKQ3KDXKOZeCK+Mwifpc afjJgeavtbuc2tbF6Fxydp3GK11k+s1+DcOPhJf6Htm4Rv2qsSAjqs3ic8wqQIV/ xOPwNXnO5AaoGgihbLwcb2B61K67LHhfofvyDYb4f1HC1Y6+b1sEbsSsTYxQQ0Jx hlZ4YXhupxDmu3CELOc+aZf6KXBCIWtV -----END CERTIFICATE-----Generated at Sat Apr 12 21:45:27 2025 by rpki-client