$ rpki-client -vvf rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft File: _IC0m1BzMv1MnJLdXiei38qAZNo.mft (raw, json) Hash identifier: 79bKkBuQkEwy0MKnu/7of32HTcX8a9H4D4YPcZ9jYxM= Subject key identifier: 43:04:0D:E2:94:8C:53:84:0E:68:D4:09:EB:7E:99:42:52:94:02:8E Authority key identifier: FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA Certificate issuer: /CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft Manifest number: 0500 Signing time: Fri 04 Apr 2025 23:47:19 +0000 Manifest this update: Fri 04 Apr 2025 23:47:18 +0000 Manifest next update: Fri 11 Apr 2025 23:47:18 +0000 Files and hashes: 1: _IC0m1BzMv1MnJLdXiei38qAZNo.crl (hash: YR1ly22int3BOlV7mwmdCIBFLJ0oUebfyiHsmuh37fk=) 2: E86C4B1E04AE11EC92C8D079C4F9AE02.roa (hash: gNJTzz5gTRCi7TWu8OqobzQyrN+9OUDBMZ0c3PoKanY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E13D0 Validity Not Before: Apr 4 23:47:18 2025 GMT Not After : Apr 11 23:47:18 2025 GMT Subject: CN=67f06f86-55e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5a:9f:b7:8a:82:13:e5:37:94:ad:e3:af:f5: 9a:f6:4f:6f:8e:ff:d4:27:59:dc:6d:dc:b4:0d:f5: bc:d4:4b:02:a8:2a:cb:d1:44:d8:bf:72:f5:45:35: 55:d7:4d:ea:4c:63:98:ec:fa:30:dc:da:1c:71:ef: a6:07:bb:47:92:16:9a:3c:a8:8a:30:45:d4:12:a8: d8:dd:c2:c3:dc:3c:47:90:a0:b4:21:35:93:75:66: f6:48:02:58:09:d1:8b:6e:69:40:be:ac:48:06:83: 8a:10:a5:54:15:6a:a1:e9:0b:81:0b:66:95:43:e0: 8a:35:95:5e:b6:45:d5:14:f5:b3:2a:89:8b:82:88: 11:80:a3:fb:23:32:b9:8e:e2:10:17:88:1d:c9:d5: 71:55:ec:fb:b1:94:68:55:2b:eb:28:1a:8e:03:20: 83:14:c1:db:11:31:1d:88:bb:c5:a2:c9:0a:86:94: fc:63:6a:ca:12:f6:f0:01:f0:ed:9f:91:18:db:6d: 07:fc:aa:09:5d:0b:3b:a3:d0:24:e8:0c:a0:ab:70: b7:b8:cb:39:e1:82:e2:df:3a:a9:99:7e:ad:c8:b2: 0e:bf:99:2d:3b:0a:e8:8e:3e:e2:80:3e:0b:07:f6: ea:18:fc:16:2c:f7:5d:3a:b9:82:02:91:8f:a5:5f: 6d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:04:0D:E2:94:8C:53:84:0E:68:D4:09:EB:7E:99:42:52:94:02:8E X509v3 Authority Key Identifier: keyid:FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a8:a8:b5:9d:97:47:7b:d4:5d:51:57:f1:55:d7:5c:f0:90: 35:b9:2b:7f:c3:8d:3b:5a:4e:1d:0a:1f:1a:1d:18:fc:03:e1: d6:96:bb:39:50:3f:00:c4:54:cb:f9:16:f8:f6:61:99:59:fa: e8:17:93:0d:33:ec:94:27:8e:bb:2f:3c:56:e1:17:97:6f:f8: 5b:a8:6f:5e:7e:b0:03:5e:59:52:d5:d8:4f:7c:79:31:7e:4a: 68:85:82:6d:a2:11:39:05:64:32:e0:25:ab:e9:1a:0e:01:09: 35:64:b9:b3:9a:81:49:1c:ac:db:b0:2e:99:7a:78:f4:ea:b5: c9:28:ea:39:96:db:0a:6e:c8:d2:55:98:09:6e:a0:52:dc:85: 7a:76:ab:7c:28:72:16:63:4a:ec:63:bd:da:4e:9b:d2:ae:8b: bb:b6:ed:4b:72:3e:3b:7f:25:29:e0:0f:e1:48:a9:6c:c5:c0: df:2a:bd:a8:9b:22:12:03:cb:d9:c8:95:ad:86:f6:cd:03:55: 48:17:43:bf:3a:2e:47:f6:57:f8:1e:bc:fe:22:0e:da:4b:d5: 4c:e6:0d:63:6e:7a:d4:d3:91:b0:15:57:0c:e9:57:e3:d7:6d: 70:a5:a6:ee:81:c3:f2:83:6b:9c:8a:91:52:f6:d1:d0:51:e5: 6a:d4:2c:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEzRDAxMTAvBgNVBAUTKEZDODBCNDlCNTA3MzMyRkQ0QzlDOTJERDVFMjdBMkRG Q0E4MDY0REEwHhcNMjUwNDA0MjM0NzE4WhcNMjUwNDExMjM0NzE4WjAYMRYwFAYD VQQDEw02N2YwNmY4Ni01NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Vqft4qCE+U3lK3jr/Wa9k9vjv/UJ1ncbdy0DfW81EsCqCrL0UTYv3L1RTVV 103qTGOY7Pow3Nocce+mB7tHkhaaPKiKMEXUEqjY3cLD3DxHkKC0ITWTdWb2SAJY CdGLbmlAvqxIBoOKEKVUFWqh6QuBC2aVQ+CKNZVetkXVFPWzKomLgogRgKP7IzK5 juIQF4gdydVxVez7sZRoVSvrKBqOAyCDFMHbETEdiLvFoskKhpT8Y2rKEvbwAfDt n5EY220H/KoJXQs7o9Ak6Aygq3C3uMs54YLi3zqpmX6tyLIOv5ktOwrojj7igD4L B/bqGPwWLPddOrmCApGPpV9tjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMEDeKU jFOEDmjUCet+mUJSlAKOMB8GA1UdIwQYMBaAFPyAtJtQczL9TJyS3V4not/KgGTa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTNEMC9EN0E0QkI1NjA0 QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12MU1uSkxkWGllaTM4cUFa Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JQzBtMUJ6TXYxTW5KTGRYaWVpMzhxQVpOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTNEMC9EN0E0QkI1NjA0QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12 MU1uSkxkWGllaTM4cUFaTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfqKi1nZdHe9RdUVfxVddc8JA1uSt/w407Wk4dCh8aHRj8A+HWlrs5 UD8AxFTL+Rb49mGZWfroF5MNM+yUJ467LzxW4ReXb/hbqG9efrADXllS1dhPfHkx fkpohYJtohE5BWQy4CWr6RoOAQk1ZLmzmoFJHKzbsC6Zenj06rXJKOo5ltsKbsjS VZgJbqBS3IV6dqt8KHIWY0rsY73aTpvSrou7tu1Lcj47fyUp4A/hSKlsxcDfKr2o myISA8vZyJWthvbNA1VIF0O/Oi5H9lf4Hrz+Ig7aS9VM5g1jbnrU05GwFVcM6Vfj 121wpabugcPyg2ucipFS9tHQUeVq1CwZ -----END CERTIFICATE-----Generated at Sun Apr 6 21:01:16 2025 by rpki-client