$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: Fb5AFRs2TkRSlwekLZFbFPpYqnrDXxTE6WIWk1Y74Go= Subject key identifier: 48:24:85:A1:1B:4E:CD:51:EB:D2:E4:A0:2B:FC:AA:9E:26:B0:9D:05 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 082A Signing time: Wed 02 Apr 2025 20:49:08 +0000 Manifest this update: Wed 02 Apr 2025 20:49:07 +0000 Manifest next update: Wed 09 Apr 2025 20:49:07 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: FxQeFfnUYtQsLogQEDXwO1r5wE5Kb4mZjFK8YJOGm3E=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: zvHITej7x6G5n4QCQAElY7CsJ+bvYQTRcFwTwkacxFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3 Validity Not Before: Apr 2 20:49:07 2025 GMT Not After : Apr 9 20:49:07 2025 GMT Subject: CN=67eda2c3-74f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a8:df:08:11:40:c5:68:1a:22:39:bf:68:98: d0:15:fd:1b:1b:06:dd:0c:54:c7:64:6f:82:6e:0e: 07:f6:56:e1:7e:a9:67:d7:c8:3d:81:4e:97:ae:a4: 88:fe:f2:1e:f2:2c:f9:e7:1d:5d:b5:f8:fc:f1:f0: 99:c9:6d:89:47:86:ca:07:ed:8e:a3:a7:83:82:28: d0:a8:55:d8:53:14:43:68:9e:f1:ab:3d:53:3a:c9: 66:71:c5:b6:67:03:57:00:42:b3:67:a4:e5:9e:ec: 84:0c:c5:e4:79:03:02:a4:e8:10:bc:80:26:0d:df: 97:bf:71:92:02:96:df:90:6b:04:b4:33:4b:16:ac: 91:7d:8e:c8:e7:3e:cd:f3:04:b2:8a:16:b0:17:e8: db:91:45:3c:cf:db:fa:3a:e2:66:5d:81:ac:f8:aa: 5b:af:2a:00:a8:52:92:0f:3f:ce:4a:ad:7c:20:23: 16:18:9f:94:b8:08:0c:9f:e3:35:c3:da:58:32:86: c7:d7:8b:bd:87:3c:7e:8f:98:34:b7:48:c5:0f:f6: eb:5b:44:26:78:e0:1e:b7:65:fb:f3:1d:14:9e:22: 9e:cd:43:37:91:6b:dd:e5:3c:4a:ed:ca:8b:14:18: 3b:8f:e4:6a:2f:93:ed:a5:41:e0:bc:53:84:3d:59: a0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:24:85:A1:1B:4E:CD:51:EB:D2:E4:A0:2B:FC:AA:9E:26:B0:9D:05 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:78:46:0c:02:0e:5e:11:53:9f:23:ed:41:1b:16:86:b4:a9: 8a:96:e7:ad:19:21:04:ff:19:8e:62:70:7c:78:ec:58:93:20: ac:2e:37:30:46:40:c4:96:a0:3b:5a:7f:84:ee:3a:11:36:c2: ab:4b:40:27:3c:e8:d5:11:37:34:a4:32:87:89:3c:ef:69:6f: a2:17:a8:13:4a:29:34:70:5b:73:9a:dc:6a:40:8d:98:22:48: 87:52:90:8e:e1:61:77:10:e1:3c:d8:5d:1e:14:56:1a:a2:e2: a5:cb:c2:6b:a6:dd:17:2f:bd:66:34:78:70:9e:cd:d5:e5:1e: a0:cd:e1:5b:82:b0:e0:5d:c7:c6:59:d6:18:af:ec:ac:4b:6a: 78:ec:21:df:4a:97:18:3f:e2:83:f7:fc:08:d9:2d:01:84:78: 94:51:56:83:3f:fa:2e:58:2b:04:70:8b:6a:b7:54:df:d9:dd: 68:52:f3:74:24:0d:2b:26:7e:91:cd:1e:95:d3:75:f6:7c:43: 90:a0:52:9b:ee:28:63:b6:2d:4a:07:af:9f:99:64:30:f9:f3: 56:bd:1b:50:a5:bb:3b:8a:09:2e:07:25:80:8d:7d:94:51:38: b8:56:66:e8:91:01:c1:ac:92:a2:d1:df:df:a6:57:0b:b7:7c: 73:6b:9e:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUwNDAyMjA0OTA3WhcNMjUwNDA5MjA0OTA3WjAYMRYwFAYD VQQDEw02N2VkYTJjMy03NGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6jfCBFAxWgaIjm/aJjQFf0bGwbdDFTHZG+Cbg4H9lbhfqln18g9gU6XrqSI /vIe8iz55x1dtfj88fCZyW2JR4bKB+2Oo6eDgijQqFXYUxRDaJ7xqz1TOslmccW2 ZwNXAEKzZ6TlnuyEDMXkeQMCpOgQvIAmDd+Xv3GSApbfkGsEtDNLFqyRfY7I5z7N 8wSyihawF+jbkUU8z9v6OuJmXYGs+KpbryoAqFKSDz/OSq18ICMWGJ+UuAgMn+M1 w9pYMobH14u9hzx+j5g0t0jFD/brW0QmeOAet2X78x0UniKezUM3kWvd5TxK7cqL FBg7j+RqL5PtpUHgvFOEPVmgsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgkhaEb Ts1R69LkoCv8qp4msJ0FMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAteEYMAg5eEVOfI+1BGxaGtKmKluetGSEE/xmOYnB8eOxYkyCsLjcw RkDElqA7Wn+E7joRNsKrS0AnPOjVETc0pDKHiTzvaW+iF6gTSik0cFtzmtxqQI2Y IkiHUpCO4WF3EOE82F0eFFYaouKly8Jrpt0XL71mNHhwns3V5R6gzeFbgrDgXcfG WdYYr+ysS2p47CHfSpcYP+KD9/wI2S0BhHiUUVaDP/ouWCsEcItqt1Tf2d1oUvN0 JA0rJn6RzR6V03X2fEOQoFKb7ihjti1KB6+fmWQw+fNWvRtQpbs7igkuByWAjX2U UTi4VmbokQHBrJKi0d/fplcLt3xza552 -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:49 2025 by rpki-client