$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: eIKMPWht31NBcFRuNYg+sRuDuv7+iahRJ2n+sBwDGmk= Subject key identifier: 81:39:AA:CA:64:EE:26:69:29:27:1A:9B:08:AE:58:ED:84:59:E4:21 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0AC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0ABD Signing time: Fri 04 Apr 2025 19:36:39 +0000 Manifest this update: Fri 04 Apr 2025 19:36:39 +0000 Manifest next update: Fri 11 Apr 2025 19:36:39 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: A7vfg4GPF7WjSwkI/2vo6GmqxouSm9o6+LkYo+8ChZ4=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2756 (0xac4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD Validity Not Before: Apr 4 19:36:39 2025 GMT Not After : Apr 11 19:36:39 2025 GMT Subject: CN=67f034c7-6dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:67:7c:b5:8f:80:95:f7:6b:a4:e3:e0:d8:38: bf:c7:43:b8:02:31:23:32:d5:4c:35:82:f2:d6:6d: 2e:b6:4c:34:26:f5:b3:0b:17:fa:ae:e1:9b:90:0d: 03:ad:90:65:7c:f5:64:91:d7:fa:25:25:81:46:17: aa:27:52:cd:ac:66:08:6b:2f:ad:76:db:ee:83:73: dd:df:8f:f4:91:2b:b1:d7:3a:fc:da:9d:87:f6:67: 2f:56:0c:3e:ad:31:d7:c2:a0:79:06:91:d0:b8:cc: b7:44:28:40:63:52:fa:27:1d:cf:d0:d5:af:1d:9b: bb:e6:c1:b1:6a:9e:94:9e:52:c1:71:d3:08:7f:c9: ab:bf:0b:05:38:74:d4:76:5f:17:db:a8:33:9a:05: d0:b9:ef:54:c7:43:77:8c:83:8f:44:cf:e5:52:1f: c9:1a:eb:8d:68:2f:18:3f:83:5c:bc:7e:59:7c:e2: fa:5d:40:82:57:f2:50:71:0e:d6:8f:46:9a:1f:47: 70:09:68:58:9d:74:7e:04:87:89:9b:b3:b4:e0:8a: 7a:40:04:1c:0a:18:4d:85:50:bb:f8:38:2a:7c:e8: 92:ae:02:4f:49:3d:ea:2d:9c:53:39:a9:32:aa:9b: 36:bb:bf:cb:d0:24:e0:f4:b9:04:db:1e:5f:f4:bf: 63:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:39:AA:CA:64:EE:26:69:29:27:1A:9B:08:AE:58:ED:84:59:E4:21 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7a:5d:27:2e:11:3a:2f:85:52:6b:6e:00:c0:88:b8:f9:7d: e9:c7:df:4f:73:16:07:4c:09:3b:08:1b:ba:8c:f5:1d:de:15: 64:89:64:19:29:f2:13:50:0d:bb:c0:b2:2c:1b:8b:96:16:9c: 3e:36:e2:5c:5c:40:3e:ee:7c:d2:b8:4d:01:a7:82:30:e5:9d: 6b:5c:b0:3f:bd:1d:8b:fc:7a:f2:a6:b0:a6:5e:f0:23:b2:a0: 38:58:5c:07:9c:70:31:ff:42:b7:57:d4:f5:4e:aa:b7:e1:2f: c6:f9:63:e9:61:4e:ab:10:5d:77:09:0e:f9:4a:f6:81:22:3f: 35:2c:c6:b5:44:01:a5:bb:a6:fa:e1:30:a4:21:cc:2b:23:97: 92:b1:4b:67:77:f9:af:83:08:26:80:dd:e8:f8:dd:c4:03:0b: 82:9f:0e:d8:0c:45:ee:36:6a:95:ca:61:60:59:8a:19:85:85: ee:2a:4c:5c:d0:19:1c:29:e3:ae:0e:51:3e:56:2c:f8:94:47: 18:e3:b0:b8:cc:0d:5d:53:09:07:df:d7:48:2c:5f:3b:11:2a: c0:50:65:67:72:a9:c5:c1:09:4d:35:f4:3f:f0:5b:60:aa:87: 56:63:09:4d:0e:c4:98:33:0a:1a:bc:cd:23:9d:fc:3d:07:e6: 43:21:76:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwNDA0MTkzNjM5WhcNMjUwNDExMTkzNjM5WjAYMRYwFAYD VQQDEw02N2YwMzRjNy02ZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42d8tY+AlfdrpOPg2Di/x0O4AjEjMtVMNYLy1m0utkw0JvWzCxf6ruGbkA0D rZBlfPVkkdf6JSWBRheqJ1LNrGYIay+tdtvug3Pd34/0kSux1zr82p2H9mcvVgw+ rTHXwqB5BpHQuMy3RChAY1L6Jx3P0NWvHZu75sGxap6UnlLBcdMIf8mrvwsFOHTU dl8X26gzmgXQue9Ux0N3jIOPRM/lUh/JGuuNaC8YP4NcvH5ZfOL6XUCCV/JQcQ7W j0aaH0dwCWhYnXR+BIeJm7O04Ip6QAQcChhNhVC7+DgqfOiSrgJPST3qLZxTOaky qps2u7/L0CTg9LkE2x5f9L9jpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIE5qspk 7iZpKScamwiuWO2EWeQhMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8el0nLhE6L4VSa24AwIi4+X3px99PcxYHTAk7CBu6jPUd3hVkiWQZ KfITUA27wLIsG4uWFpw+NuJcXEA+7nzSuE0Bp4Iw5Z1rXLA/vR2L/HryprCmXvAj sqA4WFwHnHAx/0K3V9T1Tqq34S/G+WPpYU6rEF13CQ75SvaBIj81LMa1RAGlu6b6 4TCkIcwrI5eSsUtnd/mvgwgmgN3o+N3EAwuCnw7YDEXuNmqVymFgWYoZhYXuKkxc 0BkcKeOuDlE+Viz4lEcY47C4zA1dUwkH39dILF87ESrAUGVncqnFwQlNNfQ/8Ftg qodWYwlNDsSYMwoavM0jnfw9B+ZDIXaL -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:51 2025 by rpki-client