$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: dOYFwE7EeHrzFbuINwipVnYl8nZI728hnp6KcMlj3P8= Subject key identifier: 8A:D5:7D:5E:25:60:82:9D:9E:FF:0F:57:41:0D:E9:54:D0:06:67:2B Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 06EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 06E4 Signing time: Mon 14 Apr 2025 21:46:29 +0000 Manifest this update: Mon 14 Apr 2025 21:46:28 +0000 Manifest next update: Mon 21 Apr 2025 21:46:28 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: MmF+aMHd5Y4IcufYe//N1kXPmErc7EHyzV7T8wU36n0=) 2: A793BA7E492D11EB8BE07D54C4F9AE02.roa (hash: rr5k3fKZgvDyXFLnJfEeotntvMNKxGcDJEuXf2w7Hns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 21:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1771 (0x6eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Apr 14 21:46:28 2025 GMT Not After : Apr 21 21:46:28 2025 GMT Subject: CN=67fd8234-e8ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:52:7d:c3:ef:cf:39:a0:86:ca:46:21:f5:0a: 0f:79:43:77:3a:33:d4:c3:86:2b:d7:3f:20:b6:e4: 2d:13:b6:a3:92:e5:59:90:ba:02:ae:47:bd:61:eb: 4c:f5:70:b1:ff:6f:bf:f6:47:ca:f9:e7:ea:91:6a: af:0f:05:21:6d:1d:af:9f:51:91:df:ab:85:54:18: 00:83:9a:47:87:bc:ad:b1:ca:01:cd:1f:d4:fd:f4: 5b:4e:78:ef:6d:c7:63:50:ea:5d:2c:35:ba:a9:3d: f2:eb:f5:76:85:66:6c:90:1c:c5:9b:10:f3:94:6f: 02:8f:48:46:5a:0a:7c:7e:b5:df:5e:ef:7e:5c:3a: 58:d0:1a:c9:d4:a8:8a:60:7f:d3:ba:3b:fd:cc:67: 42:a4:7a:b0:4d:19:5a:36:85:32:f7:fe:87:bd:eb: a3:0e:93:c9:e6:60:ba:8c:93:e3:b6:dc:0c:d2:bc: 28:eb:30:fe:56:9a:17:59:e7:1d:13:16:b0:ee:03: 4a:42:c3:c0:73:c9:07:c3:c7:60:49:47:32:f9:0a: 2f:2b:19:a6:18:54:36:97:9c:c3:bd:f8:3a:24:fa: 34:89:b3:c0:80:cb:b3:c7:c9:7e:eb:c8:2f:2d:93: d4:68:32:aa:b9:ec:44:af:c0:d5:0a:01:65:6b:57: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D5:7D:5E:25:60:82:9D:9E:FF:0F:57:41:0D:E9:54:D0:06:67:2B X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:04:90:90:f7:d6:b8:4b:72:cf:9b:6d:37:66:f7:30:d6:7b: f0:b1:79:e1:38:0a:41:d1:1b:4b:5d:6e:6c:83:85:f7:8a:2f: 98:20:a5:52:0f:08:bc:9a:96:0e:f2:ea:ec:de:e6:bc:56:ef: 96:18:8d:ba:fd:27:77:05:07:e3:a1:e2:81:bf:62:ed:41:e2: 15:80:8a:bc:6b:84:49:20:5b:c8:c8:2b:b4:20:13:50:5e:41: c5:ae:ed:cd:da:bc:94:a2:43:d7:4d:83:16:d7:5c:de:87:a5: 6a:87:87:b2:71:ed:bf:84:13:c8:2d:64:b6:33:d9:ef:93:3f: 0b:bd:43:55:0e:ad:7d:d3:eb:d7:a9:99:cc:f3:95:a7:2a:6f: 2f:98:8d:d6:a3:96:7b:c0:01:e0:ef:1f:31:92:47:27:9a:ee: c3:c1:ad:b3:c3:cf:97:16:9f:c4:c0:89:75:63:bc:ad:35:52: 54:c6:db:d9:5c:5a:09:36:5b:e5:be:ec:65:74:52:8e:2f:5c: 73:ee:12:73:d3:45:ad:0a:bc:63:e8:73:6b:41:7e:46:7a:8b: ac:85:a9:ed:a2:2f:a6:d2:30:40:22:56:57:62:76:7f:65:86: 32:7b:af:78:6c:bc:8e:70:1c:07:7a:92:70:44:70:4a:3a:9b: 77:79:e7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUwNDE0MjE0NjI4WhcNMjUwNDIxMjE0NjI4WjAYMRYwFAYD VQQDEw02N2ZkODIzNC1lOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01J9w+/POaCGykYh9QoPeUN3OjPUw4Yr1z8gtuQtE7ajkuVZkLoCrke9YetM 9XCx/2+/9kfK+efqkWqvDwUhbR2vn1GR36uFVBgAg5pHh7ytscoBzR/U/fRbTnjv bcdjUOpdLDW6qT3y6/V2hWZskBzFmxDzlG8Cj0hGWgp8frXfXu9+XDpY0BrJ1KiK YH/Tujv9zGdCpHqwTRlaNoUy9/6HveujDpPJ5mC6jJPjttwM0rwo6zD+VpoXWecd Exaw7gNKQsPAc8kHw8dgSUcy+QovKxmmGFQ2l5zDvfg6JPo0ibPAgMuzx8l+68gv LZPUaDKquexEr8DVCgFla1d+pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrVfV4l YIKdnv8PV0EN6VTQBmcrMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApBJCQ99a4S3LPm203Zvcw1nvwsXnhOApB0RtLXW5sg4X3ii+YIKVS Dwi8mpYO8urs3ua8Vu+WGI26/Sd3BQfjoeKBv2LtQeIVgIq8a4RJIFvIyCu0IBNQ XkHFru3N2ryUokPXTYMW11zeh6Vqh4eyce2/hBPILWS2M9nvkz8LvUNVDq190+vX qZnM85WnKm8vmI3Wo5Z7wAHg7x8xkkcnmu7Dwa2zw8+XFp/EwIl1Y7ytNVJUxtvZ XFoJNlvlvuxldFKOL1xz7hJz00WtCrxj6HNrQX5Geoushantoi+m0jBAIlZXYnZ/ ZYYye694bLyOcBwHepJwRHBKOpt3eee7 -----END CERTIFICATE-----Generated at Wed Apr 16 17:18:09 2025 by rpki-client