$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft File: N-24AKVpn6hX9211S38vQXXuqF0.mft (raw, json) Hash identifier: YTOXN04jzxOVwOmwYTCf9t2LmC96yNWhqCkp/toxvMM= Subject key identifier: 66:99:07:91:FE:E4:64:54:95:F6:63:6C:E3:88:4B:60:57:08:86:22 Authority key identifier: 37:ED:B8:00:A5:69:9F:A8:57:F7:6D:75:4B:7F:2F:41:75:EE:A8:5D Certificate issuer: /CN=A91E6F07/serialNumber=37EDB800A5699FA857F76D754B7F2F4175EEA85D Certificate serial: 0835 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft Manifest number: 144F Signing time: Fri 04 Apr 2025 18:36:02 +0000 Manifest this update: Fri 04 Apr 2025 18:36:01 +0000 Manifest next update: Fri 11 Apr 2025 18:36:01 +0000 Files and hashes: 1: N-24AKVpn6hX9211S38vQXXuqF0.crl (hash: VbsEFtTbsg4iaxxcAlA+r3uRmRvpDGevt4u0o1cGABs=) 2: 6E570966CD1B11EA9613AA1DC4F9AE02.roa (hash: ohLcJGiw9Qpz+3q7Qq1rXsYI1VYW0bgcQ/ITvPJhtyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.crl rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6F07 Validity Not Before: Apr 4 18:36:01 2025 GMT Not After : Apr 11 18:36:01 2025 GMT Subject: CN=67f02692-f77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:cc:1a:86:64:a4:21:3b:b2:39:fa:5f:b2: 9a:e9:95:90:fa:cf:16:9b:31:e3:73:a1:9e:6f:75: 57:96:08:cf:d0:4f:37:84:6f:b4:a9:74:02:c1:0b: 21:c7:e3:c3:9d:86:e0:27:b5:e3:d5:43:ad:13:f1: 0f:3e:2f:25:90:26:5d:3e:3a:c1:d3:de:9e:14:0d: 6a:4c:8e:14:c1:73:18:d9:ba:fd:b2:ae:27:64:e0: 8c:5e:5e:12:05:06:9b:1c:6e:3d:3c:8c:f9:93:ad: 17:b8:9f:0e:26:b2:de:10:a7:43:cb:56:c1:ed:a1: 29:7b:b1:05:b5:e1:e1:7a:a0:7a:86:5e:ab:63:b4: ee:a7:32:d0:8f:10:f1:9a:ef:00:ab:92:26:4d:42: cc:59:8b:a2:dd:4d:22:59:85:9b:87:eb:86:9e:05: 5c:37:4b:f2:61:e3:b9:5c:19:e5:5a:d3:b2:66:d8: 86:53:f2:9f:1e:e9:b3:ec:a0:4c:56:ae:6b:02:d9: 61:6f:fb:c8:57:06:26:0d:80:a0:13:dc:0e:ca:a5: 4c:ba:5b:b3:9c:c3:3e:b8:83:e7:56:d6:dc:e1:4d: c3:80:f0:60:38:3b:33:65:5f:3d:1d:43:7e:d2:0d: e0:ae:f3:97:e6:fe:5a:57:b9:1b:b4:2f:de:94:83: 47:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:99:07:91:FE:E4:64:54:95:F6:63:6C:E3:88:4B:60:57:08:86:22 X509v3 Authority Key Identifier: keyid:37:ED:B8:00:A5:69:9F:A8:57:F7:6D:75:4B:7F:2F:41:75:EE:A8:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:78:8b:2e:b4:0a:25:16:c1:f8:1a:32:a1:10:01:24:e2:d1: 04:90:d8:1b:4d:12:cf:3c:fc:f1:3a:96:14:41:b8:70:41:17: 4d:62:b0:35:39:c2:d4:e3:e1:ca:74:5f:64:7c:e1:0b:8d:ac: ca:da:c8:59:47:ad:d7:a8:40:c8:f0:04:b0:ed:82:e9:2d:9a: 62:ed:e9:e0:f1:80:d0:f2:a4:3b:0a:13:01:ce:e6:b7:06:b2: f9:54:9c:8f:33:c4:f5:46:b9:45:eb:81:53:59:7b:15:cd:a0: dc:97:9b:6b:8c:3b:eb:a8:2f:e6:e3:22:96:b4:b1:6c:4e:04: c1:3f:9b:5d:5f:87:e6:fb:18:3e:50:4d:25:e6:9e:9a:40:ed: 5a:61:06:1f:9b:3f:e2:68:56:6f:ef:99:82:c8:bf:7f:d3:2f: 72:bd:77:fc:fc:6f:0e:76:e6:8a:14:0e:f4:8c:cc:bf:09:8a: 46:03:dc:e4:bd:f8:47:ad:a3:84:87:34:f3:27:08:e2:7e:83: 88:c6:24:21:6a:3c:5e:69:db:5f:67:b1:2d:6a:a0:2b:ac:c8: ab:62:b4:05:08:3c:53:42:91:0a:65:2d:70:a3:a8:76:ba:f4: c9:b7:56:2b:e4:24:ac:4a:b1:58:9a:83:4e:38:98:54:bd:17: 71:7e:17:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZGMDcxMTAvBgNVBAUTKDM3RURCODAwQTU2OTlGQTg1N0Y3NkQ3NTRCN0YyRjQx NzVFRUE4NUQwHhcNMjUwNDA0MTgzNjAxWhcNMjUwNDExMTgzNjAxWjAYMRYwFAYD VQQDEw02N2YwMjY5Mi1mNzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYLMGoZkpCE7sjn6X7Ka6ZWQ+s8WmzHjc6Geb3VXlgjP0E83hG+0qXQCwQsh x+PDnYbgJ7Xj1UOtE/EPPi8lkCZdPjrB096eFA1qTI4UwXMY2br9sq4nZOCMXl4S BQabHG49PIz5k60XuJ8OJrLeEKdDy1bB7aEpe7EFteHheqB6hl6rY7TupzLQjxDx mu8Aq5ImTULMWYui3U0iWYWbh+uGngVcN0vyYeO5XBnlWtOyZtiGU/KfHumz7KBM Vq5rAtlhb/vIVwYmDYCgE9wOyqVMuluznMM+uIPnVtbc4U3DgPBgODszZV89HUN+ 0g3grvOX5v5aV7kbtC/elINHbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaZB5H+ 5GRUlfZjbOOIS2BXCIYiMB8GA1UdIwQYMBaAFDftuAClaZ+oV/dtdUt/L0F17qhd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkYwNy9DMTNEODFEODA1 MjkxMUVBODJENzQzMzdDNEY5QUUwMi9OLTI0QUtWcG42aFg5MjExUzM4dlFYWHVx RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tMjRBS1ZwbjZoWDkyMTFTMzh2UVhYdXFGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkYwNy9DMTNEODFEODA1MjkxMUVBODJENzQzMzdDNEY5QUUwMi9OLTI0QUtWcG42 aFg5MjExUzM4dlFYWHVxRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCneIsutAolFsH4GjKhEAEk4tEEkNgbTRLPPPzxOpYUQbhwQRdNYrA1 OcLU4+HKdF9kfOELjazK2shZR63XqEDI8ASw7YLpLZpi7eng8YDQ8qQ7ChMBzua3 BrL5VJyPM8T1RrlF64FTWXsVzaDcl5trjDvrqC/m4yKWtLFsTgTBP5tdX4fm+xg+ UE0l5p6aQO1aYQYfmz/iaFZv75mCyL9/0y9yvXf8/G8OduaKFA70jMy/CYpGA9zk vfhHraOEhzTzJwjifoOIxiQhajxeadtfZ7EtaqArrMirYrQFCDxTQpEKZS1wo6h2 uvTJt1Yr5CSsSrFYmoNOOJhUvRdxfhdL -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:46 2025 by rpki-client