$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft File: CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft (raw, json) Hash identifier: JntiiNisDGtceh1G0EG41R8ODx0Sacn49K6clWrUP24= Subject key identifier: D6:3A:CC:88:1A:CE:D5:F5:99:33:60:08:78:76:46:36:D7:89:01:F8 Authority key identifier: 08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 Certificate issuer: /CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Certificate serial: 034A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft Manifest number: 0345 Signing time: Sat 29 Mar 2025 01:17:54 +0000 Manifest this update: Sat 29 Mar 2025 01:17:53 +0000 Manifest next update: Sat 05 Apr 2025 01:17:53 +0000 Files and hashes: 1: CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl (hash: +MvwXwuvS+bePgqNqe5S99K6Ij5H6PGFxZjBSwdY2aI=) 2: 97E05E58B15E11ECB6B31625C4F9AE02.roa (hash: 814gK30vRsw3f3GeLBYUI3A+K0FBKsWqCyMte+6ZS3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46E8 Validity Not Before: Mar 29 01:17:53 2025 GMT Not After : Apr 5 01:17:53 2025 GMT Subject: CN=67e74a41-0a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:03:bd:76:ac:58:8e:a9:2f:98:c3:ab:5f: f0:92:63:fc:26:41:40:2f:45:df:73:bf:d3:5e:f6: 29:46:bb:6b:2a:d3:48:ac:c6:43:66:89:f9:f7:64: 36:69:ac:84:5c:dc:fd:99:77:24:14:df:9d:3b:c6: df:87:b6:6b:56:65:de:3e:a1:64:32:38:01:20:a1: 11:8f:55:2c:e7:c2:b5:0f:47:ac:af:f5:e5:b1:9f: 94:38:7d:b5:22:5a:0a:b6:88:2f:a1:e5:4a:f0:29: b5:59:ae:0e:f0:30:13:2d:fb:29:9d:23:e0:8b:dd: 43:a9:6f:46:73:7b:80:fe:b5:cb:44:4e:54:fb:a5: 7e:de:15:51:f6:4d:e4:12:0c:8f:82:3c:bb:1f:7f: 58:10:3b:a4:06:1f:2f:32:19:32:c1:e3:97:02:49: 48:62:54:ef:59:61:6d:3c:a1:eb:05:96:da:3d:99: fe:e5:22:47:93:09:90:5b:94:b1:d0:cf:dd:1b:05: 4b:84:af:aa:13:44:ca:6e:09:3d:34:c5:df:a2:31: 5d:96:0b:11:17:14:98:31:49:b0:fc:3b:67:af:2a: 87:37:d2:2d:0f:cd:88:12:58:b8:a3:df:b4:29:d2: b3:ed:5b:dd:d0:20:68:4e:92:c0:8a:e8:1a:69:d6: 62:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3A:CC:88:1A:CE:D5:F5:99:33:60:08:78:76:46:36:D7:89:01:F8 X509v3 Authority Key Identifier: keyid:08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c0:9d:c0:bf:1d:3b:01:ae:48:88:6c:c0:57:4c:bf:aa:b3: 52:d5:95:b0:d1:29:21:83:f9:0c:39:4f:77:e9:8c:4f:b9:0f: ef:bb:56:6c:31:8a:b5:6e:65:5b:86:3d:7a:a8:05:4a:51:72: 6f:7d:03:3e:96:5f:f6:1a:13:16:36:bb:e4:7f:86:ea:31:1e: a6:bf:be:63:17:ea:0e:44:ce:fa:57:59:15:57:4f:11:c1:2d: f6:9f:f7:ca:d2:40:2a:05:d2:8f:81:ca:21:a9:cb:7f:e6:a2: eb:9b:a2:9b:bb:fe:9b:19:4c:0b:c2:b4:26:fb:eb:6e:ba:30: cc:b7:06:fd:5d:07:5b:ef:aa:dc:bd:7a:3e:57:6b:b9:db:50: 84:40:08:67:9d:53:6c:10:03:c2:8d:09:60:df:33:4e:e8:31: cc:2f:60:58:1f:77:ad:e6:52:92:ea:40:5f:6a:fa:57:3b:6f: 38:4e:3d:28:7d:f3:0e:24:ae:1a:4a:cf:0e:78:ad:77:e3:16: 5e:6c:3f:d2:55:df:5f:34:c4:7a:44:c1:da:ff:e4:56:52:b1: 52:55:50:12:fd:63:57:5c:55:c9:db:9d:cf:d7:cc:0e:a8:1f: cf:9d:e3:58:c3:83:b3:c3:16:8d:ee:a3:bb:ad:d8:ea:89:87: 27:52:0c:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2RTgxMTAvBgNVBAUTKDA4NENGQTlFQkMwNkMwRDY4MTA1NDhCMEVEMUNDNDdD RjhFRTBGMzEwHhcNMjUwMzI5MDExNzUzWhcNMjUwNDA1MDExNzUzWjAYMRYwFAYD VQQDEw02N2U3NGE0MS0wYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpMDvXasWI6pL5jDq1/wkmP8JkFAL0Xfc7/TXvYpRrtrKtNIrMZDZon592Q2 aayEXNz9mXckFN+dO8bfh7ZrVmXePqFkMjgBIKERj1Us58K1D0esr/XlsZ+UOH21 IloKtogvoeVK8Cm1Wa4O8DATLfspnSPgi91DqW9Gc3uA/rXLRE5U+6V+3hVR9k3k EgyPgjy7H39YEDukBh8vMhkyweOXAklIYlTvWWFtPKHrBZbaPZn+5SJHkwmQW5Sx 0M/dGwVLhK+qE0TKbgk9NMXfojFdlgsRFxSYMUmw/DtnryqHN9ItD82IEli4o9+0 KdKz7Vvd0CBoTpLAiugaadZiAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY6zIga ztX1mTNgCHh2RjbXiQH4MB8GA1UdIwQYMBaAFAhM+p68BsDWgQVIsO0cxHz47g8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZFOC9ENEI4REExNkIx NUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dOYUJCVWl3N1J6RWZQanVE ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NFejZucndHd05hQkJVaXc3UnpFZlBqdUR6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZFOC9ENEI4REExNkIxNUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dO YUJCVWl3N1J6RWZQanVEekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9wJ3Avx07Aa5IiGzAV0y/qrNS1ZWw0Skhg/kMOU936YxPuQ/vu1Zs MYq1bmVbhj16qAVKUXJvfQM+ll/2GhMWNrvkf4bqMR6mv75jF+oORM76V1kVV08R wS32n/fK0kAqBdKPgcohqct/5qLrm6Kbu/6bGUwLwrQm++tuujDMtwb9XQdb76rc vXo+V2u521CEQAhnnVNsEAPCjQlg3zNO6DHML2BYH3et5lKS6kBfavpXO284Tj0o ffMOJK4aSs8OeK134xZebD/SVd9fNMR6RMHa/+RWUrFSVVAS/WNXXFXJ253P18wO qB/PneNYw4OzwxaN7qO7rdjqiYcnUgzv -----END CERTIFICATE-----Generated at Fri Apr 4 22:37:00 2025 by rpki-client