$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: kUv8Tt+yoWd96HKETXyZTqjLrRuPZ2eCVb33BhW0fi4= Subject key identifier: 8F:B1:7E:EA:42:DC:D8:8B:F4:21:9F:5B:18:34:E8:4C:37:35:7F:41 Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 05D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 05D6 Signing time: Wed 02 Apr 2025 22:59:22 +0000 Manifest this update: Wed 02 Apr 2025 22:59:21 +0000 Manifest next update: Wed 09 Apr 2025 22:59:21 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: 9bX6ksJ9LuJxhQMCL2dUt3ZYwl0geE/ws1yP9ccnTRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27 Validity Not Before: Apr 2 22:59:21 2025 GMT Not After : Apr 9 22:59:21 2025 GMT Subject: CN=67edc14a-58e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:23:10:48:46:a8:29:50:6c:fe:d0:59:99: f7:58:0c:01:7d:26:16:4e:e4:af:8b:e5:15:01:8a: 45:14:50:45:b6:2e:f3:7c:85:54:77:04:ce:c7:f9: 3e:d6:b3:f3:a0:b4:87:0d:13:a0:47:74:20:bd:53: 37:dd:50:db:5e:77:40:7f:85:a7:54:b8:14:6f:4a: ae:49:6b:a6:6d:a6:d3:c9:96:9b:87:d6:f8:90:90: 32:03:f1:23:0f:07:60:a4:a2:d3:e1:95:e7:77:de: 97:f8:93:da:4d:53:a5:37:a3:dc:7a:fc:a4:71:5a: b4:ec:d7:f0:1f:76:53:73:55:d4:a0:47:69:eb:76: 5d:e4:b6:5c:4e:df:16:ae:da:12:9c:b1:c9:3b:f8: fd:8d:3c:ed:3b:c5:80:63:2e:f2:14:8d:a9:43:cf: c5:e6:0a:59:5d:78:5f:ad:db:96:41:a3:3c:fa:67: d7:68:19:9b:02:76:f6:ef:9a:33:6c:bc:17:b2:c1: 84:ac:e6:22:cf:15:50:7d:0a:92:56:55:ea:dd:5e: 5c:3d:81:e9:4a:84:5d:ee:95:29:e3:9a:d5:89:4a: 8a:33:1b:7c:ba:c7:e6:4f:a6:f6:90:a8:2d:25:b3: 4f:be:82:9f:d7:e4:90:85:0e:78:a5:79:db:86:aa: 8f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B1:7E:EA:42:DC:D8:8B:F4:21:9F:5B:18:34:E8:4C:37:35:7F:41 X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:6a:f1:cf:2f:a9:69:d5:2c:2b:05:d9:b2:55:ea:f4:31:ee: 57:da:ac:78:ac:d0:39:9a:a2:13:8b:cf:8c:36:17:ad:1a:f1: f5:66:bf:4d:3d:cc:d7:43:9d:88:ea:0b:1a:e5:b3:6d:fc:1f: fa:fc:2a:68:bb:36:bd:50:5f:e1:81:72:de:f6:fa:10:65:9e: fa:86:7e:1a:ce:83:d3:bd:eb:30:f2:95:7d:f2:90:8a:01:28: 17:ea:67:16:d9:76:97:34:f1:bc:e6:05:b9:ab:da:d8:c2:ed: d3:93:62:60:ae:3a:19:41:02:e5:ef:68:02:f5:e6:90:ed:5b: a0:d2:8a:6c:4b:d9:8f:c3:6e:31:c3:79:e2:bf:a8:27:d3:e2: 44:05:e2:9c:e1:6f:49:cc:2f:ab:4e:15:60:cb:02:35:49:66: f0:81:ae:72:63:90:d3:eb:58:4c:54:4e:dd:95:09:3b:80:7e: 52:9a:a0:81:8a:be:a0:53:49:33:a5:92:fd:cc:27:45:13:10: 06:83:b2:94:af:e6:45:32:19:1f:2e:a0:2c:26:7f:68:f1:2e: 65:77:8d:76:dc:d1:b0:d1:33:4d:f5:de:80:62:d6:7b:6b:8c: 76:8e:c0:ac:dd:59:6d:5d:13:35:98:34:4e:d0:8c:be:98:24: d1:fd:53:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUwNDAyMjI1OTIxWhcNMjUwNDA5MjI1OTIxWjAYMRYwFAYD VQQDEw02N2VkYzE0YS01OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xEjEEhGqClQbP7QWZn3WAwBfSYWTuSvi+UVAYpFFFBFti7zfIVUdwTOx/k+ 1rPzoLSHDROgR3QgvVM33VDbXndAf4WnVLgUb0quSWumbabTyZabh9b4kJAyA/Ej DwdgpKLT4ZXnd96X+JPaTVOlN6PcevykcVq07NfwH3ZTc1XUoEdp63Zd5LZcTt8W rtoSnLHJO/j9jTztO8WAYy7yFI2pQ8/F5gpZXXhfrduWQaM8+mfXaBmbAnb275oz bLwXssGErOYizxVQfQqSVlXq3V5cPYHpSoRd7pUp45rViUqKMxt8usfmT6b2kKgt JbNPvoKf1+SQhQ54pXnbhqqPSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+xfupC 3NiL9CGfWxg06Ew3NX9BMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7avHPL6lp1SwrBdmyVer0Me5X2qx4rNA5mqITi8+MNhetGvH1Zr9N PczXQ52I6gsa5bNt/B/6/Cpouza9UF/hgXLe9voQZZ76hn4azoPTvesw8pV98pCK ASgX6mcW2XaXNPG85gW5q9rYwu3Tk2JgrjoZQQLl72gC9eaQ7Vug0opsS9mPw24x w3niv6gn0+JEBeKc4W9JzC+rThVgywI1SWbwga5yY5DT61hMVE7dlQk7gH5SmqCB ir6gU0kzpZL9zCdFExAGg7KUr+ZFMhkfLqAsJn9o8S5ld4123NGw0TNN9d6AYtZ7 a4x2jsCs3VltXRM1mDRO0Iy+mCTR/VP+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:27:06 2025 by rpki-client