$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: X5j+RthvZc7EHY9I9gUQmEpdo+G7zis9J0tsaMNpXjM= Subject key identifier: 23:54:28:2F:25:06:0E:A0:14:EF:37:B2:EF:A3:A8:92:1D:F2:B5:3D Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 07B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 07AB Signing time: Wed 02 Apr 2025 21:10:16 +0000 Manifest this update: Wed 02 Apr 2025 21:10:15 +0000 Manifest next update: Wed 09 Apr 2025 21:10:15 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: yKn2UznNcplczPsAArD88qDAvOEj0+ZUt2LJPqe+UuE=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: AWPlkT/VPOlTrND3SaqX87pYECk2GQcIiP0u70mzoFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458 Validity Not Before: Apr 2 21:10:15 2025 GMT Not After : Apr 9 21:10:15 2025 GMT Subject: CN=67eda7b8-94c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:75:6f:c8:de:9f:6d:f5:12:b1:cd:88:55:62: d7:5c:fb:ed:ea:23:8e:4a:ea:e9:2a:60:3d:94:ae: 17:4f:da:29:00:d9:30:c3:f3:b0:3d:9f:58:71:21: 1f:30:29:f9:28:fb:5b:a9:66:f8:af:79:48:5c:ee: f5:32:8a:7a:ed:f3:00:37:d2:d0:86:25:89:b3:e0: dd:f4:bb:bd:ad:b4:f6:c5:c0:fe:fe:07:ec:4d:f9: d2:2c:be:67:cd:4b:3b:01:32:43:a0:78:8a:e0:b9: 3f:03:44:77:6b:d1:d4:5b:b5:6d:62:03:1c:0c:a2: 30:63:a6:42:74:e5:64:5c:cb:b9:b4:d3:f6:03:29: 89:73:29:34:2a:20:4e:41:77:68:38:1f:dd:18:04: 67:5b:18:c1:f8:f8:ec:8c:73:9b:20:b1:38:45:8e: 59:40:ee:2f:e7:1f:59:0a:64:3c:0d:a4:46:52:48: 09:19:61:64:e2:7b:fa:3f:0d:33:20:62:76:ca:6a: 3e:6c:67:a6:12:e1:62:80:76:8a:ed:66:f0:1a:b0: b9:6f:87:9e:52:80:7f:e3:af:f8:a5:1d:ca:8b:19: 3a:7c:bd:8d:7f:f4:a3:0a:23:d9:12:35:a9:56:b5: c7:d2:7c:8b:47:d4:10:3e:b4:04:fd:e1:93:17:41: f6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:54:28:2F:25:06:0E:A0:14:EF:37:B2:EF:A3:A8:92:1D:F2:B5:3D X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:3c:7d:59:fc:2e:2d:28:5c:3f:a4:e2:c2:23:ff:dc:b0:78: 1d:60:26:52:31:46:10:98:b0:95:83:34:be:0d:82:d9:79:6f: 8e:b7:fb:5a:25:31:58:33:0b:3a:42:d2:40:0c:d6:2f:93:c3: 4d:ef:64:34:9d:f6:8f:77:61:fc:17:23:6d:8c:8b:9d:e6:2d: ac:9a:3d:a1:b7:9f:1a:2d:2c:af:19:33:64:2e:74:7e:ca:16: 41:f8:37:02:e2:4e:34:6c:5e:a4:84:ef:19:c4:1c:08:ac:77: 4f:55:f5:8f:d0:5a:65:38:52:04:e4:f2:e2:44:68:75:8e:a5: 57:e6:2e:bc:c9:26:df:0e:16:4e:6a:97:40:47:08:44:7b:3c: f3:ac:48:50:f6:a0:52:65:13:13:30:79:e1:7d:6d:fc:35:dc: 75:1f:3f:0b:ed:d0:ac:68:35:cc:be:71:11:cc:7c:b4:46:dd: cb:49:23:b1:8f:3d:f8:2f:67:86:96:b2:2f:40:b0:41:2e:a5: 9b:a3:23:1a:9c:f2:d1:44:34:a6:e1:d7:8e:7a:9d:ff:2e:7d: df:25:b1:89:78:50:e5:6f:b4:53:6e:bc:cf:4a:bb:56:db:c2: 9b:b5:4a:88:48:9d:ba:dd:2d:ff:79:6b:dc:a7:74:17:e8:fe: 93:ac:a9:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUwNDAyMjExMDE1WhcNMjUwNDA5MjExMDE1WjAYMRYwFAYD VQQDEw02N2VkYTdiOC05NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXVvyN6fbfUSsc2IVWLXXPvt6iOOSurpKmA9lK4XT9opANkww/OwPZ9YcSEf MCn5KPtbqWb4r3lIXO71Mop67fMAN9LQhiWJs+Dd9Lu9rbT2xcD+/gfsTfnSLL5n zUs7ATJDoHiK4Lk/A0R3a9HUW7VtYgMcDKIwY6ZCdOVkXMu5tNP2AymJcyk0KiBO QXdoOB/dGARnWxjB+PjsjHObILE4RY5ZQO4v5x9ZCmQ8DaRGUkgJGWFk4nv6Pw0z IGJ2ymo+bGemEuFigHaK7WbwGrC5b4eeUoB/46/4pR3Kixk6fL2Nf/SjCiPZEjWp VrXH0nyLR9QQPrQE/eGTF0H2yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNUKC8l Bg6gFO83su+jqJId8rU9MB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnPH1Z/C4tKFw/pOLCI//csHgdYCZSMUYQmLCVgzS+DYLZeW+Ot/ta JTFYMws6QtJADNYvk8NN72Q0nfaPd2H8FyNtjIud5i2smj2ht58aLSyvGTNkLnR+ yhZB+DcC4k40bF6khO8ZxBwIrHdPVfWP0FplOFIE5PLiRGh1jqVX5i68ySbfDhZO apdARwhEezzzrEhQ9qBSZRMTMHnhfW38Ndx1Hz8L7dCsaDXMvnERzHy0Rt3LSSOx jz34L2eGlrIvQLBBLqWboyManPLRRDSm4deOep3/Ln3fJbGJeFDlb7RTbrzPSrtW 28KbtUqISJ263S3/eWvcp3QX6P6TrKmm -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:11 2025 by rpki-client