$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: XyzDtW0c1XjM96BpJdETIOCp1+za3RCV+XOacBn7HuQ= Subject key identifier: A7:38:79:32:4D:73:C9:08:7A:CC:8F:2E:9C:AD:59:16:95:9C:8D:63 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: B5 Signing time: Sat 05 Apr 2025 05:22:22 +0000 Manifest this update: Sat 05 Apr 2025 05:22:22 +0000 Manifest next update: Sat 12 Apr 2025 05:22:22 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: VTHTcp3sK94r1H9QpddlZR/i7hGDEyG4VRsBjimYA24=) 2: D755AA2EE9F611EFB59A884DC4F9AE02.roa (hash: lV5qM/X+FyRsvo6SuP6eEbXrIIjZgYN4sZJgxKBnADs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449 Validity Not Before: Apr 5 05:22:22 2025 GMT Not After : Apr 12 05:22:22 2025 GMT Subject: CN=67f0be0e-bcce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f2:5d:3b:e0:d5:c9:73:d8:92:c2:18:34:ee: a6:7a:8b:33:57:67:3f:3f:fe:d6:39:86:55:62:81: d4:e9:27:1c:f2:b3:06:49:da:ed:33:47:9e:45:aa: 9d:a9:69:81:31:78:a6:78:1f:ee:5a:ea:e7:e2:63: e9:1f:ba:1f:19:e2:99:58:31:ee:97:86:7a:d7:d9: bf:e9:22:7a:54:4f:25:56:a9:15:80:8a:bf:1d:21: de:16:2d:36:7f:5e:79:e0:4b:5f:dc:39:d2:18:d4: 3b:fa:5e:c3:02:66:c3:3d:36:40:43:1a:49:13:82: 5f:b3:23:1e:3a:aa:bf:98:07:06:3d:67:44:97:10: e5:f6:ee:92:af:3b:82:4e:28:eb:c6:d1:08:c5:3a: 5a:79:92:71:09:04:3b:64:1e:8f:b0:49:38:61:7e: 7f:0b:a9:17:76:a2:22:bf:11:f0:84:89:fd:a2:5c: cc:3a:24:fc:55:59:3a:c0:28:98:db:bc:d1:07:23: 8a:0d:72:79:bf:88:22:f5:81:7a:08:3c:9f:b7:1d: 0d:33:6d:00:0b:25:f3:39:41:5f:5b:b7:4a:44:bf: b4:ae:fc:22:bb:73:12:6f:69:6c:5e:d3:e5:48:ee: 88:a1:9a:ab:4a:b1:e4:33:32:41:05:10:9c:3a:d2: d8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:38:79:32:4D:73:C9:08:7A:CC:8F:2E:9C:AD:59:16:95:9C:8D:63 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:cf:b0:fd:dc:aa:76:ee:d5:44:7b:4c:0b:c3:92:dd:5c:ce: ee:78:5f:88:8c:6a:91:6a:8a:b5:96:31:48:58:81:38:99:c5: d7:a0:7b:58:1a:84:bc:6a:b3:b3:15:30:30:82:33:c5:09:ad: 03:c8:ac:5b:89:0e:96:44:26:86:a3:09:e5:ba:b4:61:1d:09: 46:6e:f9:c5:23:24:98:dd:ec:9c:60:32:11:c8:4c:68:34:02: d8:47:ed:3b:cc:ec:8c:56:d1:b7:e0:2c:08:f3:9e:c3:fc:2f: cb:f3:ba:8b:1c:d0:4d:d8:28:20:16:ea:6c:0b:f9:b0:1f:57: c1:4d:38:b1:e2:7d:7a:89:5b:f3:51:6d:30:5d:86:0c:94:20: 74:b0:20:81:d0:44:a1:07:b9:72:83:2a:09:9a:48:a8:b1:20: 96:a6:35:60:13:8e:8b:08:f9:f4:38:b2:3b:15:ba:78:3e:8e: ac:13:f0:21:10:6a:ee:86:77:d6:eb:50:e9:86:c4:f3:88:26: d1:5e:c2:0c:57:b9:38:f6:f2:15:e3:dc:1e:af:2a:79:e1:30: f1:c8:3c:72:56:27:85:85:8e:1c:65:d6:8f:63:32:48:d5:2f: 55:c9:77:a4:93:f1:0f:98:73:86:2e:13:3b:57:4d:75:28:7f: 4d:c0:24:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNDA1MDUyMjIyWhcNMjUwNDEyMDUyMjIyWjAYMRYwFAYD VQQDEw02N2YwYmUwZS1iY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovJdO+DVyXPYksIYNO6meoszV2c/P/7WOYZVYoHU6Scc8rMGSdrtM0eeRaqd qWmBMXimeB/uWurn4mPpH7ofGeKZWDHul4Z619m/6SJ6VE8lVqkVgIq/HSHeFi02 f1554Etf3DnSGNQ7+l7DAmbDPTZAQxpJE4JfsyMeOqq/mAcGPWdElxDl9u6SrzuC TijrxtEIxTpaeZJxCQQ7ZB6PsEk4YX5/C6kXdqIivxHwhIn9olzMOiT8VVk6wCiY 27zRByOKDXJ5v4gi9YF6CDyftx0NM20ACyXzOUFfW7dKRL+0rvwiu3MSb2lsXtPl SO6IoZqrSrHkMzJBBRCcOtLYFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc4eTJN c8kIesyPLpytWRaVnI1jMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcz7D93Kp27tVEe0wLw5LdXM7ueF+IjGqRaoq1ljFIWIE4mcXXoHtY GoS8arOzFTAwgjPFCa0DyKxbiQ6WRCaGownlurRhHQlGbvnFIySY3eycYDIRyExo NALYR+07zOyMVtG34CwI857D/C/L87qLHNBN2CggFupsC/mwH1fBTTix4n16iVvz UW0wXYYMlCB0sCCB0EShB7lygyoJmkiosSCWpjVgE46LCPn0OLI7Fbp4Po6sE/Ah EGruhnfW61DphsTziCbRXsIMV7k49vIV49weryp54TDxyDxyVieFhY4cZdaPYzJI 1S9VyXekk/EPmHOGLhM7V011KH9NwCRV -----END CERTIFICATE-----Generated at Sun Apr 6 21:07:45 2025 by rpki-client