$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: 7in9b8tYtq4yY/ZhNeeBLmnHlPkF8pgmRAV2GjymDOw= Subject key identifier: 56:1C:5F:C6:94:CC:7E:E8:BC:3D:44:BB:B0:4A:4D:BD:31:62:1A:74 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 0104 Signing time: Sat 29 Mar 2025 04:29:54 +0000 Manifest this update: Sat 29 Mar 2025 04:29:53 +0000 Manifest next update: Sat 05 Apr 2025 04:29:53 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: AJTN1vdOIJ1IpcziEVcP8LVFWgXxAez0lDEDA0iObjU=) 2: E7021416B54B11EE86895416C4F9AE02.roa (hash: vzHahXAFIekcStIbFKvBTMDftL9nSsfmNUK1qbKIERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2 Validity Not Before: Mar 29 04:29:53 2025 GMT Not After : Apr 5 04:29:53 2025 GMT Subject: CN=67e77742-2712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:1a:95:3c:01:2c:8d:93:81:0f:e3:37:60: 26:a4:b5:26:08:cd:c7:51:98:ba:af:0d:c3:2e:3b: 5b:c6:cb:95:31:e7:30:02:f2:f6:08:5e:1b:80:36: aa:d9:0e:37:7b:69:8b:6b:b5:82:fe:69:c6:a2:2e: 5f:52:32:75:9d:65:d6:41:5a:aa:c1:78:6c:ca:f1: 51:27:23:1c:35:48:ca:7e:4d:af:57:77:a0:98:5f: 4d:15:f5:30:ae:0f:e4:74:f3:f5:71:a3:1b:ba:ef: 70:4b:b8:b5:93:c4:4c:21:7a:55:0f:4c:5a:54:ea: d8:4b:36:8b:52:cd:ba:1c:e6:18:88:81:04:16:0c: e2:58:70:dd:68:0e:a3:8c:33:78:c6:2e:86:34:08: dd:1f:53:4b:6e:53:b1:e5:bc:93:01:3c:5c:e0:c0: 9d:fa:fe:35:20:16:98:8e:fb:cf:03:73:0d:95:b9: cf:ca:1c:f2:ec:75:f9:df:07:cb:bf:96:9a:ee:d5: f3:33:bb:b9:32:8b:e2:b6:bc:39:33:a3:7b:86:e2: ff:61:87:30:e8:89:9d:41:b5:15:7c:df:44:83:af: f1:a4:14:ce:fa:49:26:3b:ac:05:bf:e6:8d:e4:ab: 84:59:fe:97:e9:59:20:8b:b4:71:f3:ab:27:eb:b4: a2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1C:5F:C6:94:CC:7E:E8:BC:3D:44:BB:B0:4A:4D:BD:31:62:1A:74 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:89:94:91:4c:6b:a5:78:c7:f9:4a:5a:a7:7a:d6:68:c7:da: d6:97:f5:f1:17:0c:6d:f0:83:eb:62:ae:d8:51:91:2b:b8:98: 0b:b9:a3:19:03:25:cf:d4:52:c6:2e:ce:e6:70:d8:8f:73:87: 12:0c:c4:c0:e3:ea:ed:91:96:37:be:24:3b:ba:13:93:65:3f: 43:82:90:cc:fd:aa:8a:3b:1f:21:a2:2d:8c:90:37:df:ff:5f: 27:53:c6:fe:30:a6:06:27:a0:18:22:48:39:8d:c2:c5:53:b4: 56:5a:ad:df:41:80:b1:10:46:49:53:79:f0:2e:85:31:62:b1: 96:de:95:4d:fc:d0:29:6a:5d:da:3f:17:e7:a6:13:f7:7f:13: 34:24:a1:88:7c:0c:06:47:2f:68:17:6b:89:b4:04:77:13:b5: c0:57:fa:10:b1:26:16:64:a6:9b:1f:77:32:67:51:6f:64:bb: 7d:01:d0:aa:ca:d7:25:12:d5:10:22:e0:7a:4d:49:cc:f8:92: a7:0d:b2:8e:3f:ff:6d:a3:a8:16:2f:1d:fd:c7:6e:3c:cc:04: 9c:f2:22:1b:48:d0:8c:f4:c9:73:80:2e:da:5b:56:6a:90:f8: 32:81:e4:83:34:38:26:59:16:91:06:31:70:47:68:d5:c6:00: f7:84:68:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjUwMzI5MDQyOTUzWhcNMjUwNDA1MDQyOTUzWjAYMRYwFAYD VQQDEw02N2U3Nzc0Mi0yNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwesalTwBLI2TgQ/jN2AmpLUmCM3HUZi6rw3DLjtbxsuVMecwAvL2CF4bgDaq 2Q43e2mLa7WC/mnGoi5fUjJ1nWXWQVqqwXhsyvFRJyMcNUjKfk2vV3egmF9NFfUw rg/kdPP1caMbuu9wS7i1k8RMIXpVD0xaVOrYSzaLUs26HOYYiIEEFgziWHDdaA6j jDN4xi6GNAjdH1NLblOx5byTATxc4MCd+v41IBaYjvvPA3MNlbnPyhzy7HX53wfL v5aa7tXzM7u5Movitrw5M6N7huL/YYcw6ImdQbUVfN9Eg6/xpBTO+kkmO6wFv+aN 5KuEWf6X6Vkgi7Rx86sn67SiYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYcX8aU zH7ovD1Eu7BKTb0xYhp0MB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFiZSRTGuleMf5SlqnetZox9rWl/XxFwxt8IPrYq7YUZEruJgLuaMZ AyXP1FLGLs7mcNiPc4cSDMTA4+rtkZY3viQ7uhOTZT9DgpDM/aqKOx8hoi2MkDff /18nU8b+MKYGJ6AYIkg5jcLFU7RWWq3fQYCxEEZJU3nwLoUxYrGW3pVN/NApal3a PxfnphP3fxM0JKGIfAwGRy9oF2uJtAR3E7XAV/oQsSYWZKabH3cyZ1FvZLt9AdCq ytclEtUQIuB6TUnM+JKnDbKOP/9to6gWLx39x248zASc8iIbSNCM9MlzgC7aW1Zq kPgygeSDNDgmWRaRBjFwR2jVxgD3hGjc -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:36 2025 by rpki-client