$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft File: SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft (raw, json) Hash identifier: Lqz140ECYkbC4BVcX2ivZk5ffiGW5D5QSIAuIk6DEac= Subject key identifier: 96:22:08:BB:AE:46:ED:D7:29:53:06:4A:7D:A1:AE:01:48:2A:66:42 Authority key identifier: 4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F Certificate issuer: /CN=A91E01A9/serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Certificate serial: 1FB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft Manifest number: 1FA4 Signing time: Tue 08 Apr 2025 16:00:52 +0000 Manifest this update: Tue 08 Apr 2025 16:00:52 +0000 Manifest next update: Tue 15 Apr 2025 16:00:52 +0000 Files and hashes: 1: SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl (hash: sb+004fpJFGuJNWPnvIiD83B2MJmq3oLzSdrlwMleTk=) 2: A212A64854F611E79DF7E643C4F9AE02.roa (hash: Tkmf4L8GEt+Ymff0VMzuLeDCbIi7tjYtfIPQH26ZWWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8112 (0x1fb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01A9 Validity Not Before: Apr 8 16:00:52 2025 GMT Not After : Apr 15 16:00:52 2025 GMT Subject: CN=67f54834-ad81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:dc:c7:30:23:8e:76:8c:06:7a:7b:90:95: 54:e1:52:f7:f9:5b:17:91:40:10:c4:e9:be:8e:1b: 0f:01:d5:dc:bc:9a:93:11:43:b6:d4:3e:f9:a9:0a: cc:7d:11:e4:4b:25:1c:17:f4:f7:96:9e:71:a2:3c: 24:ea:a4:9b:6b:d4:9a:05:20:26:8c:08:4a:1f:68: 3b:c5:e7:77:44:84:53:95:d3:9b:d8:73:09:8a:a0: 11:64:46:86:f2:dc:c7:47:07:02:bc:2d:98:21:71: d3:26:d0:2a:c6:0e:ec:59:43:2a:71:e2:ad:ef:1c: 77:02:b6:fd:30:8d:2e:72:9d:5c:17:db:7b:d3:21: 87:2f:63:1e:c0:71:3e:2a:9a:fd:b6:02:b7:cb:29: 0e:ea:75:11:e6:ca:c9:7d:68:b9:10:cb:53:d7:80: f4:c6:3f:77:76:b2:8f:15:fb:9f:23:a2:e9:3a:f1: ff:0f:1a:f7:28:0c:3b:d2:f4:0c:69:d6:d5:7e:9c: 90:23:04:5f:2d:2e:9d:ef:92:9b:e8:ed:59:88:ca: b1:a8:72:da:78:84:59:ae:e5:48:c7:3c:b5:d3:9f: 4c:83:8e:68:3c:06:34:44:8d:54:7e:4b:a2:3e:b9: 4a:dc:9d:cd:f3:2a:cf:51:73:25:58:b8:57:24:3d: 20:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:22:08:BB:AE:46:ED:D7:29:53:06:4A:7D:A1:AE:01:48:2A:66:42 X509v3 Authority Key Identifier: keyid:4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:3e:cf:0e:01:c7:bc:79:04:ce:63:2a:62:0a:16:bf:e4:f3: a2:48:d9:8b:7a:7c:6f:b9:08:79:51:87:f1:f3:57:45:14:36: 98:1a:0f:f0:31:d1:91:1d:09:9f:22:22:4b:b0:18:ec:8c:5d: 26:fc:5c:ab:39:1f:47:98:f4:6f:e2:d6:38:8e:5f:e3:f3:47: 81:f1:0b:01:d0:1f:95:a5:c7:31:4a:38:99:d4:d3:e1:de:1e: 25:1c:ea:26:1b:7d:14:07:39:a8:a4:0d:ad:2d:d8:b6:7d:65: 2a:b7:fe:d9:86:e2:d5:c7:fc:b8:83:f4:59:75:7a:8b:d4:e8: 71:5f:d9:34:79:0a:81:31:15:cc:4d:c6:bd:c7:cd:fe:f2:64: 0b:e7:30:60:8e:58:df:a6:80:e3:57:eb:23:43:8b:f1:c6:d7: bc:62:da:13:b1:3a:ec:f0:3b:66:c1:74:aa:fc:5d:bb:78:9c: 17:a7:07:89:81:81:e3:a7:e1:be:c3:1f:87:61:55:32:bf:ad: 48:4b:99:57:53:86:94:ba:46:01:b1:a3:9e:04:0c:64:d1:fd: 9e:53:97:e4:16:e6:3e:1d:4f:ef:ad:85:17:e1:48:05:53:30: bd:7a:76:05:b5:22:71:b8:12:89:0c:35:e9:fe:7a:50:68:e5: 41:89:8e:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQTkxMTAvBgNVBAUTKDRBNTc1RjJCRjMzMTI0NjJGODU2NDYxQUU5REREMEEz ODQ0QUJEMkYwHhcNMjUwNDA4MTYwMDUyWhcNMjUwNDE1MTYwMDUyWjAYMRYwFAYD VQQDEw02N2Y1NDgzNC1hZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRHcxzAjjnaMBnp7kJVU4VL3+VsXkUAQxOm+jhsPAdXcvJqTEUO21D75qQrM fRHkSyUcF/T3lp5xojwk6qSba9SaBSAmjAhKH2g7xed3RIRTldOb2HMJiqARZEaG 8tzHRwcCvC2YIXHTJtAqxg7sWUMqceKt7xx3Arb9MI0ucp1cF9t70yGHL2MewHE+ Kpr9tgK3yykO6nUR5srJfWi5EMtT14D0xj93drKPFfufI6LpOvH/Dxr3KAw70vQM adbVfpyQIwRfLS6d75Kb6O1ZiMqxqHLaeIRZruVIxzy1059Mg45oPAY0RI1Ufkui PrlK3J3N8yrPUXMlWLhXJD0gMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYiCLuu Ru3XKVMGSn2hrgFIKmZCMB8GA1UdIwQYMBaAFEpXXyvzMSRi+FZGGund0KOESr0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFBOS84M0MzMTEwODMz NUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19NeEpHTDRWa1lhNmQzUW80Ukt2 UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NsZGZLX014SkdMNFZrWWE2ZDNRbzRSS3ZTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFBOS84M0MzMTEwODMzNUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19NeEpH TDRWa1lhNmQzUW80Ukt2UzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgPs8OAce8eQTOYypiCha/5POiSNmLenxvuQh5UYfx81dFFDaYGg/w MdGRHQmfIiJLsBjsjF0m/FyrOR9HmPRv4tY4jl/j80eB8QsB0B+VpccxSjiZ1NPh 3h4lHOomG30UBzmopA2tLdi2fWUqt/7ZhuLVx/y4g/RZdXqL1OhxX9k0eQqBMRXM Tca9x83+8mQL5zBgjljfpoDjV+sjQ4vxxte8YtoTsTrs8DtmwXSq/F27eJwXpweJ gYHjp+G+wx+HYVUyv61IS5lXU4aUukYBsaOeBAxk0f2eU5fkFuY+HU/vrYUX4UgF UzC9enYFtSJxuBKJDDXp/npQaOVBiY4X -----END CERTIFICATE-----Generated at Thu Apr 10 19:02:13 2025 by rpki-client