$ rpki-client -vvf rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft File: i29QUS89IfFe7mdUeBjiY79cXRQ.mft (raw, json) Hash identifier: D2NGlPmU1vH+4KNHpHLzs9RT2wNdSZ6czYvk7cdwbeU= Subject key identifier: B6:F0:0B:84:7F:EE:F0:98:2E:FD:AB:4E:7B:20:51:81:09:17:BF:17 Authority key identifier: 8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 Certificate issuer: /CN=A91E431E/serialNumber=8B6F50512F3D21F15EEE67547818E263BF5C5D14 Certificate serial: 0631 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft Manifest number: 062C Signing time: Fri 04 Apr 2025 22:45:53 +0000 Manifest this update: Fri 04 Apr 2025 22:45:53 +0000 Manifest next update: Fri 11 Apr 2025 22:45:53 +0000 Files and hashes: 1: i29QUS89IfFe7mdUeBjiY79cXRQ.crl (hash: Zzy3TrLndaviEil7YkdZ6MxIeRbkvRIYEZdCa1bVrWo=) 2: 51CBE4868C6711EB98B7B279C4F9AE02.roa (hash: am0gLM47UswkhQ7d8ve9CDz5IVO8+0wgLFBI3jyuYpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E431E Validity Not Before: Apr 4 22:45:53 2025 GMT Not After : Apr 11 22:45:53 2025 GMT Subject: CN=67f06121-ed77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f4:ad:58:fe:08:d7:3e:61:82:55:72:38:ad: 1f:19:44:94:cb:c0:cd:81:a6:5e:40:94:86:42:ce: 3b:5e:35:b0:45:12:60:6a:6c:80:17:73:ff:5d:03: 56:c6:62:73:39:2b:b5:fd:a4:76:ab:a3:22:83:38: 60:c9:73:eb:41:01:c4:b0:78:6d:53:f0:26:7c:81: 5e:17:a2:5f:c4:33:d0:e5:f1:71:38:d3:13:3e:7f: 49:ac:b9:ea:ea:29:04:03:3b:99:7e:f6:ec:1f:07: 2d:92:7c:5b:54:d1:a5:c6:9d:7d:a3:2a:c1:ea:e8: 13:a1:ff:39:45:c8:a8:ac:12:1f:4b:97:35:65:43: de:14:46:54:6d:41:65:1d:cc:72:85:2f:f7:b4:f0: 66:a7:77:0f:20:6c:15:24:a6:94:f1:27:af:46:05: 33:fa:48:03:4f:b0:03:da:48:7d:e9:4b:3c:ff:2a: 4e:9e:fb:bc:39:de:39:ca:c3:ea:4e:d4:4c:4c:1e: d4:80:68:6f:9e:87:ea:c6:7e:a9:97:3f:b8:a5:ce: a8:f6:dc:2c:9b:97:75:3a:ae:0a:c1:9a:c8:38:f7: d8:d0:6d:4d:c7:a2:cc:71:3c:58:32:d7:98:0d:7f: 7f:83:67:78:d8:ce:b8:b4:02:69:ba:46:9f:f9:a6: 52:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F0:0B:84:7F:EE:F0:98:2E:FD:AB:4E:7B:20:51:81:09:17:BF:17 X509v3 Authority Key Identifier: keyid:8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6f:36:c8:0e:c0:ad:f8:62:d6:d2:02:17:7e:86:3b:6d:02: 2f:bf:23:84:79:bf:a6:03:27:c6:2b:fd:50:e0:33:29:51:ff: 20:e1:3f:b6:0e:3b:2a:9e:91:a1:e8:3b:7e:26:07:6e:38:8a: 6a:c2:78:87:2a:04:d2:bf:c6:ea:32:96:e5:f2:5c:8b:2d:42: 24:1a:b8:12:9b:8f:3c:f0:2f:fc:fb:7b:79:45:d6:5d:52:a6: e2:7b:39:27:ec:5c:19:1c:10:77:cb:a1:7b:61:32:0c:a0:a4: 41:bf:93:f1:6b:9a:84:bf:60:82:35:fc:da:03:e6:7e:68:97: b0:e2:03:2b:71:bb:7a:f0:0b:4d:0d:8a:d9:25:f4:32:d6:5e: 64:b6:cc:6b:59:a5:0b:7e:b6:44:bd:59:d7:d1:15:ff:a5:40: b9:d3:02:97:3b:0d:58:a0:ea:5a:a2:e8:1a:ec:af:e8:c3:5d: 0c:58:29:1a:c6:5f:d3:84:a5:af:20:5e:b4:95:f4:c4:da:c9: cc:4e:5f:dd:3d:b8:22:2a:42:c9:e8:46:5b:8e:fb:9e:5d:2c: 9a:f2:b2:41:8f:a9:e6:eb:19:38:88:9f:d9:bd:aa:1e:33:2d: 10:ee:d6:5c:dc:a7:c4:50:54:5f:ae:77:8a:58:07:f4:ea:61: 4d:ab:8d:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQzMUUxMTAvBgNVBAUTKDhCNkY1MDUxMkYzRDIxRjE1RUVFNjc1NDc4MThFMjYz QkY1QzVEMTQwHhcNMjUwNDA0MjI0NTUzWhcNMjUwNDExMjI0NTUzWjAYMRYwFAYD VQQDEw02N2YwNjEyMS1lZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvStWP4I1z5hglVyOK0fGUSUy8DNgaZeQJSGQs47XjWwRRJgamyAF3P/XQNW xmJzOSu1/aR2q6MigzhgyXPrQQHEsHhtU/AmfIFeF6JfxDPQ5fFxONMTPn9JrLnq 6ikEAzuZfvbsHwctknxbVNGlxp19oyrB6ugTof85RciorBIfS5c1ZUPeFEZUbUFl HcxyhS/3tPBmp3cPIGwVJKaU8SevRgUz+kgDT7AD2kh96Us8/ypOnvu8Od45ysPq TtRMTB7UgGhvnofqxn6plz+4pc6o9twsm5d1Oq4KwZrIOPfY0G1Nx6LMcTxYMteY DX9/g2d42M64tAJpukaf+aZSCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbwC4R/ 7vCYLv2rTnsgUYEJF78XMB8GA1UdIwQYMBaAFItvUFEvPSHxXu5nVHgY4mO/XF0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDMxRS83QTg0ODE5NjhD NjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlmRmU3bWRVZUJqaVk3OWNY UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyOVFVUzg5SWZGZTdtZFVlQmppWTc5Y1hSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDMxRS83QTg0ODE5NjhDNjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlm RmU3bWRVZUJqaVk3OWNYUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPbzbIDsCt+GLW0gIXfoY7bQIvvyOEeb+mAyfGK/1Q4DMpUf8g4T+2 DjsqnpGh6Dt+JgduOIpqwniHKgTSv8bqMpbl8lyLLUIkGrgSm4888C/8+3t5RdZd Uqbiezkn7FwZHBB3y6F7YTIMoKRBv5Pxa5qEv2CCNfzaA+Z+aJew4gMrcbt68AtN DYrZJfQy1l5ktsxrWaULfrZEvVnX0RX/pUC50wKXOw1YoOpaouga7K/ow10MWCka xl/ThKWvIF60lfTE2snMTl/dPbgiKkLJ6EZbjvueXSya8rJBj6nm6xk4iJ/Zvaoe My0Q7tZc3KfEUFRfrneKWAf06mFNq40k -----END CERTIFICATE-----Generated at Sat Apr 5 21:41:36 2025 by rpki-client