$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft File: 9AFXH04P6PgNV80CfNnuFdc4jyQ.mft (raw, json) Hash identifier: 3r3TmIVW5RxEoVm1KiWVPQZtClmatm5XOAuAL7Z//Ks= Subject key identifier: 70:96:3C:58:12:6D:FE:2E:C5:B4:58:8A:5D:28:41:5A:24:96:6F:74 Authority key identifier: F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 Certificate issuer: /CN=A91EA54A/serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft Manifest number: 6F Signing time: Tue 15 Apr 2025 05:38:40 +0000 Manifest this update: Tue 15 Apr 2025 05:38:40 +0000 Manifest next update: Tue 22 Apr 2025 05:38:40 +0000 Files and hashes: 1: 9AFXH04P6PgNV80CfNnuFdc4jyQ.crl (hash: vSQNX4wKfvkLaNnwcLJX3QJoEk9iJiDUP+VPSd2+auM=) 2: 8D52A23871A611EF8F5B9755C4F9AE02.roa (hash: hF0cvJ5WGf8hjnk2FrHWwiuqbgTh6n818KkJ7xF10xU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA54A, serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Validity Not Before: Apr 15 05:38:40 2025 GMT Not After : Apr 22 05:38:40 2025 GMT Subject: CN=67fdf0e0-52b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:21:56:41:b4:56:58:05:46:54:f3:91:ef:e1: cc:d6:5d:7b:2d:f6:d7:8d:4a:22:c5:b5:d3:24:87: 23:71:f2:f5:0e:7a:6f:6d:58:8c:99:27:8b:80:6c: 6c:a2:e6:2f:96:5e:0f:ab:d5:4a:9d:7a:de:cd:fd: 03:76:5b:d0:25:c9:da:f9:93:09:45:d8:2b:98:b9: 8e:80:00:0c:21:0e:09:59:e5:87:75:79:8d:f3:30: 10:68:60:03:1b:94:17:7c:3f:4b:5a:49:2a:cc:3c: 9f:40:69:94:6a:4e:c4:2a:05:c9:aa:fb:d0:5c:c4: 4b:7a:21:a3:fa:65:d7:38:99:69:67:78:27:b2:d5: 35:a7:61:b2:6e:f3:51:bb:95:78:e5:63:54:ab:50: e0:36:12:0c:6f:3b:53:e1:fb:0f:4c:56:c5:a3:3a: 53:67:a4:37:74:6c:a2:14:d3:2c:b8:91:9c:b6:8a: 8d:34:16:90:99:9f:b8:dd:61:42:8b:68:21:1b:ba: 74:8d:37:62:5b:d1:d3:49:43:2e:91:41:95:d5:ed: 72:bb:be:37:c6:a9:4d:bb:3e:71:95:12:fd:5f:b5: b1:aa:87:f5:7e:71:ff:24:6c:af:26:60:b9:56:54: b6:a3:db:b7:1b:73:88:1d:75:75:25:a9:63:8d:14: 9a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:96:3C:58:12:6D:FE:2E:C5:B4:58:8A:5D:28:41:5A:24:96:6F:74 X509v3 Authority Key Identifier: keyid:F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:85:ed:6a:46:12:73:1e:ea:89:2d:6f:34:f6:07:40:b0:14: 74:d3:a1:7d:78:43:4d:48:75:f9:08:bf:f7:e3:46:5d:2f:7f: 91:c2:59:fa:2b:36:82:87:96:2f:00:89:02:84:37:aa:a7:b0: b5:67:39:92:35:16:fc:6e:3f:82:07:97:21:a7:1c:21:03:30: db:e0:70:4f:89:80:32:23:01:2a:e3:1b:f3:08:c8:9e:86:2e: 0f:a9:5a:90:25:7c:f3:2b:64:04:c7:c8:10:61:64:5d:c1:cd: 8b:11:85:1f:6b:35:72:15:22:43:45:20:82:7e:63:8b:44:59: 93:22:dd:73:4b:24:2c:76:e8:3e:76:2d:7d:bf:e8:ce:65:9e: 31:18:d9:20:a7:d7:28:22:b5:2c:03:90:72:5d:b7:62:bb:3e: b5:dc:59:60:26:1a:62:85:07:69:13:66:b3:dd:f0:f4:c8:8b: 3f:8a:52:df:7e:97:23:51:fc:59:1e:e0:29:c0:96:7c:8a:54: de:42:c3:a5:62:a8:08:96:c9:fd:1b:a6:fd:f1:52:14:48:0d: b7:39:84:3a:a3:92:2d:f8:34:7c:51:16:d9:a3:73:4b:ca:28: 6a:e3:41:5f:0f:0b:d0:b1:ee:a3:cd:3e:c5:09:94:ef:90:22: 67:f5:66:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTU0QTExMC8GA1UEBRMoRjQwMTU3MUY0RTBGRThGODBENTdDRDAyN0NEOUVFMTVE NzM4OEYyNDAeFw0yNTA0MTUwNTM4NDBaFw0yNTA0MjIwNTM4NDBaMBgxFjAUBgNV BAMTDTY3ZmRmMGUwLTUyYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiIVZBtFZYBUZU85Hv4czWXXst9teNSiLFtdMkhyNx8vUOem9tWIyZJ4uAbGyi 5i+WXg+r1Uqdet7N/QN2W9Alydr5kwlF2CuYuY6AAAwhDglZ5Yd1eY3zMBBoYAMb lBd8P0taSSrMPJ9AaZRqTsQqBcmq+9BcxEt6IaP6Zdc4mWlneCey1TWnYbJu81G7 lXjlY1SrUOA2EgxvO1Ph+w9MVsWjOlNnpDd0bKIU0yy4kZy2io00FpCZn7jdYUKL aCEbunSNN2Jb0dNJQy6RQZXV7XK7vjfGqU27PnGVEv1ftbGqh/V+cf8kbK8mYLlW VLaj27cbc4gddXUlqWONFJoVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcJY8WBJt /i7FtFiKXShBWiSWb3QwHwYDVR0jBBgwFoAU9AFXH04P6PgNV80CfNnuFdc4jyQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNTRBL0JFODRBODIwNzFB NTExRUY4RDgwNUM3OEM0RjlBRTAyLzlBRlhIMDRQNlBnTlY4MENmTm51RmRjNGp5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUFGWEgwNFA2UGdOVjgwQ2ZObnVGZGM0anlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NTRBL0JFODRBODIwNzFBNTExRUY4RDgwNUM3OEM0RjlBRTAyLzlBRlhIMDRQNlBn TlY4MENmTm51RmRjNGp5US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAASF7WpGEnMe6oktbzT2B0CwFHTToX14Q01IdfkIv/fjRl0vf5HCWfor NoKHli8AiQKEN6qnsLVnOZI1FvxuP4IHlyGnHCEDMNvgcE+JgDIjASrjG/MIyJ6G Lg+pWpAlfPMrZATHyBBhZF3BzYsRhR9rNXIVIkNFIIJ+Y4tEWZMi3XNLJCx26D52 LX2/6M5lnjEY2SCn1ygitSwDkHJdt2K7PrXcWWAmGmKFB2kTZrPd8PTIiz+KUt9+ lyNR/Fke4CnAlnyKVN5Cw6ViqAiWyf0bpv3xUhRIDbc5hDqjki34NHxRFtmjc0vK KGrjQV8PC9Cx7qPNPsUJlO+QImf1ZtI= -----END CERTIFICATE-----Generated at Wed Apr 16 17:14:20 2025 by rpki-client