$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: WuDLCvQ5uae0Dx1Gc43k4JYuDZhCgPXMUr/DFXPt+nE= Subject key identifier: 71:57:83:2D:8D:F5:C8:E3:1B:1A:2E:A2:84:3C:B6:5C:C3:84:8E:C7 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 0146 Signing time: Sat 29 Mar 2025 03:42:51 +0000 Manifest this update: Sat 29 Mar 2025 03:42:51 +0000 Manifest next update: Sat 05 Apr 2025 03:42:51 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: EIAwNSAcOa2DugsD57ynVgQCb84V6W2V7Qu6kAQOnVA=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: wqZWqZ8fa4R6eMrcXZq1r/urB8kEflCs9S9caDMISYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641 Validity Not Before: Mar 29 03:42:51 2025 GMT Not After : Apr 5 03:42:51 2025 GMT Subject: CN=67e76c3b-5611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:36:c6:1a:1d:b1:6f:9c:6b:30:23:9f:ba: 53:77:58:63:df:43:49:03:ea:52:a6:80:f2:af:62: 32:38:9e:f3:14:ac:42:18:f8:76:7d:e7:9c:9a:96: ee:a1:2d:91:69:fa:59:97:0d:9a:53:5d:ae:37:e7: 97:4e:39:d7:d6:89:e1:0f:43:be:76:87:a8:e1:3b: 0c:29:f9:39:ab:87:50:a2:e4:2a:55:71:c9:75:49: a1:3d:34:fd:6e:0e:14:08:d0:4a:f5:2a:c1:c0:7e: 94:34:fe:65:4a:33:18:0d:1e:67:0c:24:fe:cb:2f: c9:92:ed:bc:26:50:a8:49:32:d0:ef:8b:8a:a8:56: 0e:7f:f7:de:62:a4:76:cf:2c:6a:26:79:96:6e:51: ad:f3:10:80:a7:17:3d:60:61:e7:e0:53:b3:3a:3e: f4:2b:0c:20:88:0f:82:0c:ff:72:bd:47:3b:b3:0f: c1:b6:83:02:58:f1:68:70:f3:39:90:d5:92:f5:2d: 77:93:32:16:f2:11:08:68:a2:f4:60:4b:35:19:45: fa:7b:a4:b0:d7:b7:11:de:ae:e5:06:43:73:07:6c: 59:e4:fb:05:c1:8a:16:20:10:cc:b3:bb:5c:a0:bb: 3d:66:83:e8:df:7d:1a:23:8f:bd:20:75:dd:33:ad: 77:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:57:83:2D:8D:F5:C8:E3:1B:1A:2E:A2:84:3C:B6:5C:C3:84:8E:C7 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:39:5e:07:3c:de:f9:d6:df:aa:94:52:ce:44:1f:f1:f2:5b: b3:4b:27:63:b4:83:de:f2:fc:f3:b4:f3:99:da:17:64:1c:ad: d4:b0:3b:be:e2:37:98:e2:35:13:ac:bd:76:37:90:87:36:34: 70:c9:05:94:6f:64:0f:6c:10:06:89:f8:62:e3:8c:fb:35:a0: ee:8d:72:fe:cd:26:1a:22:2e:00:57:13:31:1f:94:67:ee:ea: c0:87:94:e7:66:31:c3:04:c3:bf:61:54:5e:f3:95:91:31:d0: 1c:ab:f0:3a:76:f4:f9:b1:07:7a:78:4c:76:0a:be:7e:78:c5: 92:a3:ef:cc:be:ce:a7:97:73:fb:40:38:32:96:fd:4c:e3:02: 5f:ed:f7:6b:1c:91:34:db:5f:83:59:d7:64:71:83:83:cc:3c: e8:59:b7:e4:bc:a6:d6:c7:27:ab:c8:81:91:7d:c1:b5:4b:07: 79:e4:5d:70:5f:bc:06:cf:47:3c:d8:e6:60:bf:fb:9c:ae:6e: ac:86:35:51:e2:92:51:36:ce:84:79:4b:43:58:08:b9:5b:10: 7b:db:ed:5b:75:d7:6c:70:ee:8b:9c:43:ce:c4:8a:8d:5c:19: 2f:57:0c:68:24:41:df:31:55:2d:91:ae:4a:b9:3a:4e:bf:1b: 7f:6b:d6:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUwMzI5MDM0MjUxWhcNMjUwNDA1MDM0MjUxWjAYMRYwFAYD VQQDEw02N2U3NmMzYi01NjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPg2xhodsW+cazAjn7pTd1hj30NJA+pSpoDyr2IyOJ7zFKxCGPh2feecmpbu oS2RafpZlw2aU12uN+eXTjnX1onhD0O+doeo4TsMKfk5q4dQouQqVXHJdUmhPTT9 bg4UCNBK9SrBwH6UNP5lSjMYDR5nDCT+yy/Jku28JlCoSTLQ74uKqFYOf/feYqR2 zyxqJnmWblGt8xCApxc9YGHn4FOzOj70KwwgiA+CDP9yvUc7sw/BtoMCWPFocPM5 kNWS9S13kzIW8hEIaKL0YEs1GUX6e6Sw17cR3q7lBkNzB2xZ5PsFwYoWIBDMs7tc oLs9ZoPo330aI4+9IHXdM6131QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFXgy2N 9cjjGxouooQ8tlzDhI7HMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDOV4HPN751t+qlFLORB/x8luzSydjtIPe8vzztPOZ2hdkHK3UsDu+ 4jeY4jUTrL12N5CHNjRwyQWUb2QPbBAGifhi44z7NaDujXL+zSYaIi4AVxMxH5Rn 7urAh5TnZjHDBMO/YVRe85WRMdAcq/A6dvT5sQd6eEx2Cr5+eMWSo+/Mvs6nl3P7 QDgylv1M4wJf7fdrHJE021+DWddkcYODzDzoWbfkvKbWxyeryIGRfcG1Swd55F1w X7wGz0c82OZgv/ucrm6shjVR4pJRNs6EeUtDWAi5WxB72+1bdddscO6LnEPOxIqN XBkvVwxoJEHfMVUtka5KuTpOvxt/a9Y/ -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:00 2025 by rpki-client