$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: wrszJvTuvekiJseOpU5xamXzBrBEzBAwSSEQFlOUgYY= Subject key identifier: 8D:4E:F1:EE:CE:1A:A2:84:F6:A4:28:ED:12:95:26:4B:46:E0:3E:B4 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 01BE Signing time: Thu 03 Apr 2025 02:24:09 +0000 Manifest this update: Thu 03 Apr 2025 02:24:08 +0000 Manifest next update: Thu 10 Apr 2025 02:24:08 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: 3r8auxmwmC6vyGv55EciIROimRqS5HKlIWIsPHnxXt8=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: ZxJWdKT+dhhJyfungVSpx3334JD5sGMO+S5A+zHFl74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0 Validity Not Before: Apr 3 02:24:08 2025 GMT Not After : Apr 10 02:24:08 2025 GMT Subject: CN=67edf149-e3f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a6:fd:b7:78:d3:e4:90:2f:d2:f1:13:9a:16: 8b:e3:95:2d:58:ff:5b:8e:64:1a:78:02:b4:98:6b: 5b:f4:ab:8a:2a:9c:00:7d:40:54:2c:d0:1e:4e:df: d5:59:d4:78:82:d9:c8:03:8b:3b:df:8d:d6:a9:6e: fa:82:5a:25:df:62:ea:16:09:52:84:19:93:dd:88: 4e:83:3c:15:33:e2:28:4f:2b:0a:ed:e1:36:0b:65: 48:44:32:4d:13:6d:f3:c1:b5:c7:de:a9:a2:14:06: 70:42:86:5a:18:93:fb:a5:85:74:ed:59:5a:ef:ad: 99:40:0f:3c:ec:5e:a6:be:fa:f9:ec:28:cf:ca:85: 83:95:58:6d:86:94:df:78:a2:44:44:e5:97:96:b7: 66:2c:b8:0f:20:39:3a:e8:8d:06:85:54:aa:33:e9: df:c8:43:cb:7b:90:89:ce:b5:16:7d:4e:4b:14:52: 8a:7b:16:f3:d9:77:30:1c:45:10:b9:a2:29:c4:58: 86:3d:20:a6:70:1b:7e:33:c4:36:e5:ab:1e:66:e3: 2c:09:1c:8b:27:f3:98:aa:a8:8b:da:d8:a8:e5:2c: 88:78:fc:19:33:cc:52:b4:b3:53:be:d6:b0:91:5b: 7a:3c:eb:2a:a6:a8:78:7e:3f:8f:1d:6e:64:bc:66: 18:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4E:F1:EE:CE:1A:A2:84:F6:A4:28:ED:12:95:26:4B:46:E0:3E:B4 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:7d:f0:5a:bf:cd:d4:1b:0f:c5:5e:2c:83:84:a7:05:19:cd: c0:14:61:a2:3e:a3:ee:b1:5d:89:eb:06:b8:08:9a:de:5e:c0: a3:27:e5:4c:c2:cc:58:71:4f:d1:ff:1a:6c:41:50:74:c8:af: 94:34:74:4e:fc:c6:a1:18:75:0f:06:c2:1c:42:c3:ba:3b:d1: bd:c3:1c:3f:2c:cf:02:6a:19:c5:fd:3b:dd:12:b5:0c:58:a4: e4:19:0d:ba:aa:ce:2d:45:7c:c3:ef:14:9e:1b:bc:ee:f0:45: 8f:08:e5:b1:f6:37:e6:2c:a0:de:b2:3b:92:6b:b8:07:14:99: b7:b5:4d:2b:96:54:2b:f4:9e:f0:9d:b2:ce:cd:ee:e8:27:fd: e8:e5:6a:d8:05:63:cd:ff:86:61:31:ad:df:26:da:39:cb:fb: 6c:93:31:52:33:2f:da:4c:ce:55:45:f4:62:54:e6:b5:58:e4: 04:08:43:c8:1b:9f:2f:85:da:d4:bf:5c:de:13:c3:ec:cc:59: 73:a8:82:41:3b:ee:34:0a:29:29:8e:6b:ce:8c:d0:35:fc:0f: 18:db:84:e4:0b:0b:0e:07:52:fb:f8:6e:b9:56:4b:1a:82:0b: 31:f2:5b:20:5e:9a:0e:d6:6b:1f:d1:3b:27:87:79:3d:01:f3: cd:34:3f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjUwNDAzMDIyNDA4WhcNMjUwNDEwMDIyNDA4WjAYMRYwFAYD VQQDEw02N2VkZjE0OS1lM2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqb9t3jT5JAv0vETmhaL45UtWP9bjmQaeAK0mGtb9KuKKpwAfUBULNAeTt/V WdR4gtnIA4s7343WqW76glol32LqFglShBmT3YhOgzwVM+IoTysK7eE2C2VIRDJN E23zwbXH3qmiFAZwQoZaGJP7pYV07Vla762ZQA887F6mvvr57CjPyoWDlVhthpTf eKJEROWXlrdmLLgPIDk66I0GhVSqM+nfyEPLe5CJzrUWfU5LFFKKexbz2XcwHEUQ uaIpxFiGPSCmcBt+M8Q25aseZuMsCRyLJ/OYqqiL2tio5SyIePwZM8xStLNTvtaw kVt6POsqpqh4fj+PHW5kvGYYnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1O8e7O GqKE9qQo7RKVJktG4D60MB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWffBav83UGw/FXiyDhKcFGc3AFGGiPqPusV2J6wa4CJreXsCjJ+VM wsxYcU/R/xpsQVB0yK+UNHRO/MahGHUPBsIcQsO6O9G9wxw/LM8CahnF/TvdErUM WKTkGQ26qs4tRXzD7xSeG7zu8EWPCOWx9jfmLKDesjuSa7gHFJm3tU0rllQr9J7w nbLOze7oJ/3o5WrYBWPN/4ZhMa3fJto5y/tskzFSMy/aTM5VRfRiVOa1WOQECEPI G58vhdrUv1zeE8PszFlzqIJBO+40CikpjmvOjNA1/A8Y24TkCwsOB1L7+G65Vksa ggsx8lsgXpoO1msf0Tsnh3k9AfPNND/8 -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:18 2025 by rpki-client