$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: JBABfGHwWbghO/B2G9mbb+xHnRkr8WhbaVf9LOII1h0= Subject key identifier: 70:2A:53:9F:08:F4:FB:18:81:48:14:B5:19:AE:D7:0C:D3:6D:6C:17 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 04E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 04D8 Signing time: Sat 29 Mar 2025 00:04:02 +0000 Manifest this update: Sat 29 Mar 2025 00:04:02 +0000 Manifest next update: Sat 05 Apr 2025 00:04:02 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: MWGlcu5aV+iqwfSQ+IsrioiWLK+Iph1z63HKC71CX7A=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490 Validity Not Before: Mar 29 00:04:02 2025 GMT Not After : Apr 5 00:04:02 2025 GMT Subject: CN=67e738f2-f418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:35:2c:f7:f5:d1:98:83:31:62:c7:5d:50: 4d:ba:82:97:89:25:52:0a:1e:bb:dd:ca:ac:bf:39: 91:2e:dd:a9:1a:5d:2b:3e:97:f8:87:05:43:5e:55: d2:65:a3:79:37:db:de:26:00:8b:21:91:80:73:3e: 7f:9c:81:72:29:a5:27:9a:f1:69:c9:ab:42:10:20: e4:c5:be:49:1b:5e:14:5a:0a:ec:86:2d:2e:e1:e8: c3:f3:3b:b7:77:16:2e:7e:e2:ca:9b:b9:cb:e0:51: c1:68:f8:77:e6:a2:a8:c0:5d:bd:30:96:ce:b7:5a: 5f:96:4e:3c:f2:7d:36:b2:25:6d:44:fa:51:0a:c5: a0:e2:eb:9a:28:af:09:66:ec:0c:3d:1a:f0:62:0e: d0:0a:66:c4:8a:97:27:7c:af:67:28:30:a3:81:a3: e1:cd:85:1f:dd:59:56:b4:40:1b:fe:30:f2:9b:2c: 73:8f:ab:0b:b5:13:ea:b4:ae:57:b1:68:42:83:f6: 04:04:ce:28:45:56:7c:55:b2:0d:ac:8c:c9:5b:70: 4b:8c:c0:a6:ba:be:7a:02:df:9a:54:09:14:d4:e5: 02:4e:2e:02:10:38:77:79:21:f3:ab:6b:90:f4:fd: d8:36:c2:f8:38:45:31:c6:84:8f:56:73:5d:79:1a: 72:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2A:53:9F:08:F4:FB:18:81:48:14:B5:19:AE:D7:0C:D3:6D:6C:17 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e1:ff:ee:e5:73:f6:6e:f9:6e:4b:b7:f4:0d:25:71:6f:f8: 49:9a:9d:f4:6f:24:5a:9e:53:fa:0d:c1:7a:a8:ea:ef:bc:35: 6d:5f:b6:0b:1b:05:d5:07:84:91:0a:48:70:a4:04:d8:f1:88: 1a:3f:ac:be:b7:d0:2d:17:09:1c:e1:8b:3c:01:29:6a:58:75: 95:5b:b7:61:90:ce:b2:3f:f6:18:59:72:2c:7a:28:b5:6b:37: f5:65:0a:18:be:04:d4:d7:d8:e8:5e:26:20:76:b7:ad:d6:8d: 80:da:3e:e7:4c:91:93:8c:88:65:b1:35:ec:fc:b0:f5:9c:11: 71:81:80:32:3b:b7:de:cd:0e:c8:a5:c3:34:61:27:6e:0d:57: 90:ff:49:02:10:93:a8:e3:56:ab:8b:44:fb:46:ce:c5:38:0b: 0a:73:8a:18:ff:73:4a:e8:c3:88:14:9d:c6:ef:2c:3a:45:23: 1d:9a:37:cd:a2:c1:61:9f:81:42:e5:66:35:46:23:62:44:61: e5:fe:56:ca:69:99:dc:79:1d:93:4f:dc:12:80:62:4c:38:f4: 4d:7e:2b:20:df:23:58:93:8a:e0:34:50:f0:df:83:63:46:25: 00:eb:23:01:97:8c:3f:27:fb:14:f3:45:8c:09:c2:da:a3:6d: 99:9e:8b:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUwMzI5MDAwNDAyWhcNMjUwNDA1MDAwNDAyWjAYMRYwFAYD VQQDEw02N2U3MzhmMi1mNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29k1LPf10ZiDMWLHXVBNuoKXiSVSCh673cqsvzmRLt2pGl0rPpf4hwVDXlXS ZaN5N9veJgCLIZGAcz5/nIFyKaUnmvFpyatCECDkxb5JG14UWgrshi0u4ejD8zu3 dxYufuLKm7nL4FHBaPh35qKowF29MJbOt1pflk488n02siVtRPpRCsWg4uuaKK8J ZuwMPRrwYg7QCmbEipcnfK9nKDCjgaPhzYUf3VlWtEAb/jDymyxzj6sLtRPqtK5X sWhCg/YEBM4oRVZ8VbINrIzJW3BLjMCmur56At+aVAkU1OUCTi4CEDh3eSHzq2uQ 9P3YNsL4OEUxxoSPVnNdeRpyMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAqU58I 9PsYgUgUtRmu1wzTbWwXMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd4f/u5XP2bvluS7f0DSVxb/hJmp30byRanlP6DcF6qOrvvDVtX7YL GwXVB4SRCkhwpATY8YgaP6y+t9AtFwkc4Ys8ASlqWHWVW7dhkM6yP/YYWXIseii1 azf1ZQoYvgTU19joXiYgdret1o2A2j7nTJGTjIhlsTXs/LD1nBFxgYAyO7fezQ7I pcM0YSduDVeQ/0kCEJOo41ari0T7Rs7FOAsKc4oY/3NK6MOIFJ3G7yw6RSMdmjfN osFhn4FC5WY1RiNiRGHl/lbKaZnceR2TT9wSgGJMOPRNfisg3yNYk4rgNFDw34Nj RiUA6yMBl4w/J/sU80WMCcLao22ZnotW -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:54 2025 by rpki-client