$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: NMgxtwt9NilCPQsXZ/B1Z/9RtJhHYc8MPRDyYhs8iec= Subject key identifier: C1:8C:63:26:22:AD:98:83:BC:88:31:1B:31:76:44:B7:80:42:04:2A Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DAE Signing time: Fri 04 Apr 2025 18:02:50 +0000 Manifest this update: Fri 04 Apr 2025 18:02:49 +0000 Manifest next update: Fri 11 Apr 2025 18:02:49 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: fz02QRr+RMGKknRE6z7FOKgDC3A+s6vZKaxKsE90Rms=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3511 (0xdb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076 Validity Not Before: Apr 4 18:02:49 2025 GMT Not After : Apr 11 18:02:49 2025 GMT Subject: CN=67f01eca-e78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d2:46:b3:29:2f:7d:83:57:11:2b:10:9e:94: 74:35:4f:98:1c:8f:e9:b4:3c:02:0d:e6:0f:87:34: 7a:06:17:51:47:52:77:02:64:05:b5:7f:e5:a7:91: ae:5a:f2:c3:fc:1c:e7:54:dc:92:c0:9a:d3:2d:d5: f0:bf:21:88:e4:df:71:ed:40:0f:cc:6d:6c:f3:c6: 72:f5:9b:99:21:a3:12:8a:3c:e6:00:34:49:34:8a: 25:b6:b8:11:c2:fb:57:96:cc:81:ee:4c:89:5a:1a: 66:b3:f4:0f:dd:5e:fa:a0:3c:6a:1b:16:54:2a:51: 49:10:f0:78:8b:6d:97:18:84:fb:36:7c:e3:73:f6: 72:b2:5a:da:c7:4f:8f:6b:4f:54:42:b1:0c:23:22: 18:ce:db:40:c3:e5:f5:dc:bc:74:ee:48:7f:ba:8e: 84:bc:0f:9e:f6:5c:04:95:4e:1d:1b:6a:d4:ea:f2: 5c:29:c0:1c:48:38:fb:0f:54:38:0a:75:88:cd:7c: 08:a4:bd:69:b0:10:68:4a:9b:a9:02:12:4d:99:ba: c4:3a:7a:0f:83:e0:fe:5f:05:ed:50:29:07:31:db: ff:e9:5a:44:25:aa:c9:92:ea:ed:87:3a:1c:7e:d4: dc:a5:0d:6a:ab:08:57:0a:87:70:5c:10:12:36:68: 3c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8C:63:26:22:AD:98:83:BC:88:31:1B:31:76:44:B7:80:42:04:2A X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4e:2f:8a:c1:f9:24:ea:b8:92:50:a2:9a:e1:84:68:ca:f9: 0a:dc:04:71:c4:7c:8d:c9:b4:4d:4f:bc:68:e0:73:8e:38:01: 73:3c:c6:cd:39:19:a7:2b:40:87:53:96:5f:a2:64:aa:86:eb: 6d:ae:94:73:4d:08:94:64:a0:0d:2e:ab:a5:42:e6:a7:7d:ca: b5:1e:23:d1:a5:a3:a9:67:77:20:a0:e1:9f:22:08:cf:c0:6c: 84:6d:65:78:72:de:a8:ff:43:a0:9d:68:db:06:fc:92:de:c4: ba:5c:46:19:14:07:da:67:6e:a5:ac:6f:1f:08:5b:b6:a3:e1: f1:cd:a1:20:42:e0:a9:c3:26:1c:2e:20:2c:6e:f9:e7:ce:8f: 73:dd:d1:ff:c7:ce:e7:1e:f3:33:ea:99:b4:9a:e1:9a:4c:bb: f1:68:60:2f:ab:9b:ba:bd:4e:de:75:ca:d5:62:df:e4:d5:17: b2:af:9f:a6:4b:fc:d1:dc:d9:95:93:2d:a6:21:c0:62:12:9c: ba:15:06:2b:0d:de:10:44:93:d4:ee:9e:81:db:a2:74:3c:80: 6e:47:cf:cb:d9:cd:a1:55:82:07:2d:7e:b7:2c:bd:67:e4:42: 6a:15:fd:00:69:55:17:6c:a3:a7:52:05:d9:72:a9:8a:28:9e: 5d:25:11:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNDA0MTgwMjQ5WhcNMjUwNDExMTgwMjQ5WjAYMRYwFAYD VQQDEw02N2YwMWVjYS1lNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4NJGsykvfYNXESsQnpR0NU+YHI/ptDwCDeYPhzR6BhdRR1J3AmQFtX/lp5Gu WvLD/BznVNySwJrTLdXwvyGI5N9x7UAPzG1s88Zy9ZuZIaMSijzmADRJNIoltrgR wvtXlsyB7kyJWhpms/QP3V76oDxqGxZUKlFJEPB4i22XGIT7Nnzjc/Zyslrax0+P a09UQrEMIyIYzttAw+X13Lx07kh/uo6EvA+e9lwElU4dG2rU6vJcKcAcSDj7D1Q4 CnWIzXwIpL1psBBoSpupAhJNmbrEOnoPg+D+XwXtUCkHMdv/6VpEJarJkurthzoc ftTcpQ1qqwhXCodwXBASNmg83QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGMYyYi rZiDvIgxGzF2RLeAQgQqMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLTi+Kwfkk6riSUKKa4YRoyvkK3ARxxHyNybRNT7xo4HOOOAFzPMbN ORmnK0CHU5ZfomSqhuttrpRzTQiUZKANLqulQuanfcq1HiPRpaOpZ3cgoOGfIgjP wGyEbWV4ct6o/0OgnWjbBvyS3sS6XEYZFAfaZ26lrG8fCFu2o+HxzaEgQuCpwyYc LiAsbvnnzo9z3dH/x87nHvMz6pm0muGaTLvxaGAvq5u6vU7edcrVYt/k1Reyr5+m S/zR3NmVky2mIcBiEpy6FQYrDd4QRJPU7p6B26J0PIBuR8/L2c2hVYIHLX63LL1n 5EJqFf0AaVUXbKOnUgXZcqmKKJ5dJRH9 -----END CERTIFICATE-----Generated at Sat Apr 5 11:38:47 2025 by rpki-client