$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: YIiR9RplcYxXcGQ2D7H7atj1FnvRsok2MK0qIZrQbiE= Subject key identifier: E6:02:0A:52:22:05:56:91:9D:4B:6A:94:AD:6E:28:48:33:5A:83:C1 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0C58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0C4B Signing time: Thu 10 Apr 2025 18:19:22 +0000 Manifest this update: Thu 10 Apr 2025 18:19:22 +0000 Manifest next update: Thu 17 Apr 2025 18:19:22 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: 7Gms8bWdy63S39QeQ/Xi4k74nAWg16FLhKasezEbCJ0=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: 3at8OHhr3TWPa09hDLUXiFFjg44cS/0xW9KQOVKngqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 18:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3160 (0xc58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5, serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Apr 10 18:19:22 2025 GMT Not After : Apr 17 18:19:22 2025 GMT Subject: CN=67f80baa-0a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:09:01:01:22:61:e2:9f:db:1a:fc:fa:5a:d3: c5:65:9f:59:73:3b:95:13:42:d3:19:14:db:41:56: 36:9d:d9:54:46:cf:3a:80:d8:c0:c3:fe:7e:09:69: 33:6a:29:9b:13:0c:43:ea:3c:be:b9:3b:20:24:b9: 1d:1b:94:78:0c:1a:d4:7a:47:cc:cf:74:fe:50:8c: a7:42:ee:e4:6f:65:95:bf:d9:28:aa:33:78:66:f3: f9:44:6b:4a:19:a0:c3:97:e7:1e:ff:8d:82:d6:5b: ab:be:c5:c2:71:8b:06:fe:11:fd:ea:5e:e7:41:e0: aa:67:40:92:5a:a1:7e:65:f8:9a:fb:fb:3b:fb:d0: bc:95:8a:52:66:6f:0b:fd:cf:5f:5a:b3:3f:13:c5: d9:d1:7a:45:8a:33:fc:24:08:e6:ed:94:c7:4f:7a: 4b:bc:eb:df:43:02:3d:66:d6:3f:64:08:24:4d:05: 40:d8:d1:55:02:9f:48:97:b4:22:9b:bf:1e:4b:c4: 45:b4:87:bf:7e:0c:50:fb:fb:01:46:b0:f8:78:e9: 5d:d7:00:77:75:25:a8:0f:26:c0:68:87:d6:20:b3: 2a:04:b3:fb:7b:52:bc:6e:d7:05:16:71:b4:6f:64: a4:29:b2:75:f5:c4:13:44:e3:95:2f:4d:db:23:06: ce:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:02:0A:52:22:05:56:91:9D:4B:6A:94:AD:6E:28:48:33:5A:83:C1 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ed:88:74:59:aa:b4:72:71:8c:66:7c:0f:a3:71:e9:0a:f4: 9b:e0:49:c7:d7:ef:c7:d7:85:22:31:1c:f5:d1:1e:7c:5f:65: a9:25:30:f1:ad:71:5c:e1:3f:2c:6e:df:0f:d6:35:00:fa:87: 99:3c:a4:77:19:71:21:45:5b:b1:4b:bd:d8:d3:24:64:f1:6b: d0:f6:b2:3d:77:d3:de:ab:24:f9:e8:e5:99:22:37:d2:60:06: 70:35:30:05:bc:72:7b:29:1b:25:0e:08:84:7e:27:ae:dc:05: 37:1e:4e:1c:ba:ec:a3:12:71:c1:44:36:03:97:55:df:64:d6: 70:a6:1a:44:4b:16:9a:4f:ae:c3:91:61:88:a2:fd:d2:8a:7a: dd:73:24:09:f4:78:a0:84:e6:a3:1a:6e:46:94:a0:7a:62:5d: ed:73:8b:33:a7:ad:55:92:fa:6b:53:9c:81:2e:a3:43:2a:8f: ac:d1:9f:51:d8:9f:63:9d:f6:7c:e9:4b:e6:1e:1e:fa:45:32: 39:d3:d3:bb:ce:90:68:8c:6a:95:8e:1a:ef:09:33:ad:19:d4: 44:84:60:96:3e:18:79:4d:c1:21:c9:42:3d:8e:d8:c3:b3:70: b5:9f:29:7a:fa:b0:cd:e0:5f:c3:e6:2e:df:5a:ba:0f:8d:26: 34:e3:c6:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjUwNDEwMTgxOTIyWhcNMjUwNDE3MTgxOTIyWjAYMRYwFAYD VQQDEw02N2Y4MGJhYS0wYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAkBASJh4p/bGvz6WtPFZZ9ZczuVE0LTGRTbQVY2ndlURs86gNjAw/5+CWkz aimbEwxD6jy+uTsgJLkdG5R4DBrUekfMz3T+UIynQu7kb2WVv9koqjN4ZvP5RGtK GaDDl+ce/42C1lurvsXCcYsG/hH96l7nQeCqZ0CSWqF+Zfia+/s7+9C8lYpSZm8L /c9fWrM/E8XZ0XpFijP8JAjm7ZTHT3pLvOvfQwI9ZtY/ZAgkTQVA2NFVAp9Il7Qi m78eS8RFtIe/fgxQ+/sBRrD4eOld1wB3dSWoDybAaIfWILMqBLP7e1K8btcFFnG0 b2SkKbJ19cQTROOVL03bIwbO1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYCClIi BVaRnUtqlK1uKEgzWoPBMB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm7Yh0Waq0cnGMZnwPo3HpCvSb4EnH1+/H14UiMRz10R58X2WpJTDx rXFc4T8sbt8P1jUA+oeZPKR3GXEhRVuxS73Y0yRk8WvQ9rI9d9PeqyT56OWZIjfS YAZwNTAFvHJ7KRslDgiEfieu3AU3Hk4cuuyjEnHBRDYDl1XfZNZwphpESxaaT67D kWGIov3SinrdcyQJ9HighOajGm5GlKB6Yl3tc4szp61VkvprU5yBLqNDKo+s0Z9R 2J9jnfZ86UvmHh76RTI509O7zpBojGqVjhrvCTOtGdREhGCWPhh5TcEhyUI9jtjD s3C1nyl6+rDN4F/D5i7fWroPjSY048Zt -----END CERTIFICATE-----Generated at Sat Apr 12 16:49:38 2025 by rpki-client