$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft File: 64E_WXYcfGsa4oxHgWfiBhq1ys8.mft (raw, json) Hash identifier: o4/50AhUXDjGRRwB5Xmu80vkIFBzGGj0NIw207vMcAQ= Subject key identifier: 02:40:52:B9:84:1F:0B:7A:23:7F:C0:67:93:99:CF:B8:93:EC:80:97 Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 0282 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft Manifest number: 027E Signing time: Fri 11 Apr 2025 01:34:07 +0000 Manifest this update: Fri 11 Apr 2025 01:34:07 +0000 Manifest next update: Fri 18 Apr 2025 01:34:07 +0000 Files and hashes: 1: 64E_WXYcfGsa4oxHgWfiBhq1ys8.crl (hash: ZjAZzPYjlwpnin0qTghXlVtscJoNbH/73kVdsrNwN9U=) 2: D6A658CE01DE11ED8236F073C4F9AE02.roa (hash: kmjWEDePak7RaIzaM2s6P+tZd0JsQcs5f1UxF22C33k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B, serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: Apr 11 01:34:07 2025 GMT Not After : Apr 18 01:34:07 2025 GMT Subject: CN=67f8718f-a32e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:a8:5b:b1:1a:b4:c7:ff:8b:9e:e3:cc:ec: a4:87:6b:40:b7:98:72:03:a2:c3:55:e7:eb:48:b1: f6:af:eb:51:97:7e:71:81:5f:50:36:86:83:b8:58: b9:8e:22:4f:2c:a0:02:22:b1:56:d3:9e:0f:e5:f6: 85:6a:33:d1:2b:84:b6:dc:6c:ee:97:21:49:dc:15: b6:48:b3:75:6d:5e:f9:e4:0b:02:15:3c:23:c6:8d: 0d:26:f7:ea:17:90:ad:e6:4e:6a:a6:40:e5:6c:10: 76:32:44:bd:8f:90:ad:20:25:53:9b:12:d3:35:fc: 14:90:60:03:61:80:1c:68:51:56:39:d9:f5:b3:a2: 36:47:26:19:24:43:cc:ce:db:3d:db:3c:14:ee:33: 32:27:75:31:35:bb:21:0e:c9:e2:9e:9b:91:be:04: f2:2a:a0:7f:85:78:68:bb:88:6d:72:20:a9:86:21: 2c:1a:3e:d7:ea:6a:05:33:13:2e:c0:9d:10:3a:48: ec:fe:14:e2:1a:7a:3a:1e:71:f9:26:2d:69:37:b4: 1e:6f:4c:4e:ab:65:f2:a1:8b:a4:4c:f6:93:c7:3d: c6:6d:9f:9f:e0:ff:ea:ba:c6:57:a4:48:f2:90:46: a8:70:50:82:f1:5b:8b:e7:16:3c:90:5c:69:ea:85: 9f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:40:52:B9:84:1F:0B:7A:23:7F:C0:67:93:99:CF:B8:93:EC:80:97 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:4f:3b:8d:02:53:44:82:03:94:7f:e6:b2:e2:3d:ea:2c:8c: 8d:5e:68:9e:73:0f:f8:4a:f0:ce:21:9d:00:d9:44:c9:02:72: dc:40:17:d6:8f:24:a0:97:93:8b:19:5a:71:d2:f6:3a:15:31: 71:10:f5:69:37:9c:27:28:f2:24:39:b3:b4:05:2f:7e:51:ce: be:5a:72:33:c1:82:38:d7:a2:8b:20:ad:0b:c9:7c:3b:39:09: 0c:68:dd:7f:8e:ec:60:d4:5e:96:f7:a5:b1:bb:14:7b:43:5a: 67:b9:c3:00:ab:63:9e:11:aa:75:5d:9a:02:38:42:c3:82:2e: d8:ef:58:c4:e3:6e:70:ed:2a:42:c1:96:59:d4:ba:a6:0f:d4: 39:99:4c:e7:97:d3:ae:67:32:af:9c:82:21:95:29:20:8d:dc: 51:fc:19:c1:8c:32:ae:1a:1b:d6:b2:90:c0:0f:3a:81:9c:65: 1b:a2:62:5a:03:1a:35:d8:a1:7c:e2:27:d8:7c:68:60:10:41: 31:3b:49:66:ac:9d:7e:77:62:fd:7f:c9:02:a9:c0:9c:c2:f9: db:ec:cf:54:00:a5:c2:8d:51:a3:38:10:08:83:6f:73:9e:d6: 5f:d6:31:63:10:6f:44:62:36:13:0c:89:7c:e1:be:2e:9f:3a: be:72:20:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjUwNDExMDEzNDA3WhcNMjUwNDE4MDEzNDA3WjAYMRYwFAYD VQQDEw02N2Y4NzE4Zi1hMzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NioW7EatMf/i57jzOykh2tAt5hyA6LDVefrSLH2r+tRl35xgV9QNoaDuFi5 jiJPLKACIrFW054P5faFajPRK4S23GzulyFJ3BW2SLN1bV755AsCFTwjxo0NJvfq F5Ct5k5qpkDlbBB2MkS9j5CtICVTmxLTNfwUkGADYYAcaFFWOdn1s6I2RyYZJEPM zts92zwU7jMyJ3UxNbshDsninpuRvgTyKqB/hXhou4htciCphiEsGj7X6moFMxMu wJ0QOkjs/hTiGno6HnH5Ji1pN7Qeb0xOq2XyoYukTPaTxz3GbZ+f4P/qusZXpEjy kEaocFCC8VuL5xY8kFxp6oWfEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJAUrmE Hwt6I3/AZ5OZz7iT7ICXMB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc1Qi82NEExREE0ODAxREMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZH c2E0b3hIZ1dmaUJocTF5czgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuTzuNAlNEggOUf+ay4j3qLIyNXmiecw/4SvDOIZ0A2UTJAnLcQBfW jySgl5OLGVpx0vY6FTFxEPVpN5wnKPIkObO0BS9+Uc6+WnIzwYI416KLIK0LyXw7 OQkMaN1/juxg1F6W96WxuxR7Q1pnucMAq2OeEap1XZoCOELDgi7Y71jE425w7SpC wZZZ1LqmD9Q5mUznl9OuZzKvnIIhlSkgjdxR/BnBjDKuGhvWspDADzqBnGUbomJa Axo12KF84ifYfGhgEEExO0lmrJ1+d2L9f8kCqcCcwvnb7M9UAKXCjVGjOBAIg29z ntZf1jFjEG9EYjYTDIl84b4unzq+ciC7 -----END CERTIFICATE-----Generated at Sat Apr 12 13:22:18 2025 by rpki-client