$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: D3Ax3thU9zxXHQzKmnPMAyanzjwv+b1/AMuDe3oZwj4= Subject key identifier: C4:92:A3:4C:72:D4:EC:C4:BB:A6:70:AF:1B:34:04:E8:E8:22:E6:62 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 20EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 20E0 Signing time: Sun 06 Apr 2025 15:53:35 +0000 Manifest this update: Sun 06 Apr 2025 15:53:35 +0000 Manifest next update: Sun 13 Apr 2025 15:53:35 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: LjIZzXAyZkUk7YMBRnMsnC3uwMGQVcDsFcxa7m9kW1M=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: BjqwppR+NMle1n/1OCoqadfW2SGArIC17ShPvDamqQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8428 (0x20ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E Validity Not Before: Apr 6 15:53:35 2025 GMT Not After : Apr 13 15:53:35 2025 GMT Subject: CN=67f2a37f-46e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:44:c3:39:dc:e7:fa:04:ea:db:53:81:c0:0c: 8d:44:ab:eb:fe:1e:e5:51:2c:a6:8a:61:7e:32:aa: 40:90:64:01:5b:d0:9b:d2:a2:0e:69:e9:1b:a7:29: a8:d5:1c:0d:71:56:9d:58:63:72:6f:a7:14:26:b4: 48:77:8b:19:7a:e6:f9:36:a5:2b:95:13:ab:1d:fb: 94:93:30:eb:85:ab:c2:9e:52:4e:9d:dc:72:1b:20: 56:c0:4f:8c:0a:f2:e0:f8:22:86:22:fe:07:f5:c3: be:ed:87:e2:3a:70:e4:33:48:05:54:a1:f3:c6:c4: 5d:7b:d3:55:68:c3:63:63:b9:ea:cc:db:0b:6a:85: c2:f7:63:6a:f5:70:86:37:f7:c5:62:c0:ab:0c:cf: c7:77:14:27:1e:f7:89:04:f6:7e:7a:f8:6c:ac:14: b6:5c:36:4f:fa:f8:0c:a3:ca:c3:94:5f:9a:59:25: 19:53:9c:73:e6:7c:69:6b:c7:48:87:c0:c8:f2:ac: 9d:af:6a:e1:0e:8b:c1:aa:97:88:9c:e8:b4:5c:dd: 86:97:32:81:6c:44:d8:09:ba:68:83:45:38:6b:6a: c3:4d:27:9f:f0:3f:0c:92:47:06:ab:ae:f5:c5:a0: 7b:a9:7a:57:87:8c:f5:1b:0e:36:05:d1:ae:b4:55: c0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:92:A3:4C:72:D4:EC:C4:BB:A6:70:AF:1B:34:04:E8:E8:22:E6:62 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:83:c2:4b:d9:4e:b4:17:58:f4:79:f8:a3:20:82:5f:8c:36: f0:31:ac:a1:8e:37:06:fc:98:37:d6:77:7a:44:2d:a0:31:b4: 68:33:ac:69:23:75:ee:f2:2d:95:a7:e9:27:36:d4:b9:ed:28: a4:9b:69:71:86:f1:78:ef:c0:62:36:3b:64:e3:41:3a:20:62: f4:3c:2b:4d:50:57:ae:4d:4b:a7:cc:9c:c7:e4:a8:10:f9:06: 5a:cc:78:33:d1:ed:25:fe:71:f3:79:af:70:26:48:40:02:d7: d2:43:15:d4:d1:f0:c0:e4:26:e0:9c:d0:c0:35:58:4b:e1:fb: 0d:e1:bc:71:5a:e8:8d:a2:31:6d:99:8c:7a:87:0c:3b:33:ec: dc:e9:92:b9:69:c2:c6:b2:5e:85:c1:16:a0:2b:50:e9:aa:bc: 98:4e:e7:8a:98:01:cb:76:04:d2:9d:29:f6:8c:85:5c:ec:54: 1a:4e:a5:9a:c7:80:18:7f:0c:3d:6a:58:c8:21:a8:14:3f:56: 1d:3b:ab:df:e1:6b:05:ea:c5:7a:00:b5:06:37:00:c3:fa:6c: 0f:16:0c:b9:e0:c0:f9:0f:3a:bb:33:af:23:ac:8c:8f:92:c6: a4:89:90:ab:9e:5b:e3:98:0e:d9:75:e4:1a:29:4d:33:ab:44: 53:3a:1c:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjUwNDA2MTU1MzM1WhcNMjUwNDEzMTU1MzM1WjAYMRYwFAYD VQQDEw02N2YyYTM3Zi00NmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUTDOdzn+gTq21OBwAyNRKvr/h7lUSymimF+MqpAkGQBW9Cb0qIOaekbpymo 1RwNcVadWGNyb6cUJrRId4sZeub5NqUrlROrHfuUkzDrhavCnlJOndxyGyBWwE+M CvLg+CKGIv4H9cO+7YfiOnDkM0gFVKHzxsRde9NVaMNjY7nqzNsLaoXC92Nq9XCG N/fFYsCrDM/HdxQnHveJBPZ+evhsrBS2XDZP+vgMo8rDlF+aWSUZU5xz5nxpa8dI h8DI8qydr2rhDovBqpeInOi0XN2GlzKBbETYCbpog0U4a2rDTSef8D8MkkcGq671 xaB7qXpXh4z1Gw42BdGutFXA4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSSo0xy 1OzEu6Zwrxs0BOjoIuZiMB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkg8JL2U60F1j0efijIIJfjDbwMayhjjcG/Jg31nd6RC2gMbRoM6xp I3Xu8i2Vp+knNtS57Sikm2lxhvF478BiNjtk40E6IGL0PCtNUFeuTUunzJzH5KgQ +QZazHgz0e0l/nHzea9wJkhAAtfSQxXU0fDA5CbgnNDANVhL4fsN4bxxWuiNojFt mYx6hww7M+zc6ZK5acLGsl6FwRagK1DpqryYTueKmAHLdgTSnSn2jIVc7FQaTqWa x4AYfww9aljIIagUP1YdO6vf4WsF6sV6ALUGNwDD+mwPFgy54MD5Dzq7M68jrIyP ksakiZCrnlvjmA7ZdeQaKU0zq0RTOhyd -----END CERTIFICATE-----Generated at Mon Apr 7 10:27:24 2025 by rpki-client