$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: ldkp044IDXkZbmQajq8NI43WmYnUabBqYhM4I4fOIuc= Subject key identifier: E1:6D:ED:58:F3:7A:58:42:07:74:0A:3C:E2:EA:FE:F6:04:ED:3E:41 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 0174 Signing time: Fri 11 Apr 2025 03:04:57 +0000 Manifest this update: Fri 11 Apr 2025 03:04:56 +0000 Manifest next update: Fri 18 Apr 2025 03:04:56 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: W7/B3Ydj3/rA5brBdgTGRtsP/LcJm7+K0LZ2FmKFLhw=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Apr 11 03:04:56 2025 GMT Not After : Apr 18 03:04:56 2025 GMT Subject: CN=67f886d8-ac80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e9:61:29:28:78:ed:00:39:24:e7:05:82:11: 82:2e:d9:3d:aa:70:74:dd:24:66:b1:a6:2d:be:44: 45:af:0f:fb:d9:4f:db:24:c2:94:ac:e7:7c:5a:27: 2b:bb:63:a9:b6:88:cf:dd:c3:2a:88:36:05:fb:a0: 07:b5:99:16:19:31:35:b6:b5:94:e0:8c:fe:b7:f1: f4:16:30:06:fc:a9:a4:ff:bb:d8:40:db:68:92:2b: 34:fd:94:ab:07:de:6b:97:63:c4:17:88:3a:af:b0: c6:6c:93:c4:fb:12:08:0d:7f:2c:0a:5e:d5:2c:a0: 10:2d:fd:50:19:cc:83:bb:27:74:e3:14:29:59:ec: e3:3d:26:65:61:62:2d:4d:ba:1b:a0:3c:3e:23:28: 74:ad:b3:fc:7f:e9:f4:f1:06:1d:0b:e3:bc:b6:65: d4:1b:57:1d:55:0f:46:f2:be:05:a6:b2:fd:53:19: 07:6f:35:d7:5c:b6:b9:8d:6d:5a:91:53:c2:eb:35: 7c:61:90:b6:fb:5f:69:36:1b:a5:37:55:a6:73:13: 4f:bf:96:72:b5:b5:db:93:99:7b:3f:75:1b:f6:6b: c3:55:0a:b4:57:ad:e3:ca:05:2b:9b:31:88:9e:fd: 01:07:0e:90:a5:65:2a:36:40:3e:27:8d:83:bc:53: f9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6D:ED:58:F3:7A:58:42:07:74:0A:3C:E2:EA:FE:F6:04:ED:3E:41 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1a:53:99:2e:84:98:3b:0b:29:f7:ef:53:b7:68:c1:62:dd: 48:8f:66:06:0a:08:d6:12:5e:82:5a:da:7b:b9:21:f6:d8:b6: d8:c3:99:02:da:0b:3b:27:37:7e:ed:47:99:10:db:0a:e5:b8: f5:71:b1:f3:f4:d9:84:79:e2:41:e9:da:ef:59:08:ad:48:dc: b3:b1:94:9c:b1:85:5d:1b:d5:03:2c:6e:c1:47:71:c2:8d:62: 0b:5c:0b:08:43:4c:b8:3e:07:18:8a:27:e4:cc:2f:0f:ec:14: e8:0d:92:21:28:93:9d:5b:87:90:11:2f:51:b1:d4:5c:d5:58: 11:65:30:e2:35:48:c7:ae:c0:00:e8:ba:2f:66:58:3f:05:cc: 4a:f2:52:34:33:68:a8:d5:ed:55:2e:75:c7:3b:50:aa:f5:48: 6b:dd:45:9d:1d:b9:09:44:ca:6d:13:0d:dd:1f:13:31:86:a3: eb:81:4d:7d:21:aa:f2:c6:4e:d8:0f:10:6e:4f:46:01:cd:0d: 20:f3:e9:32:ff:67:13:cc:05:26:6c:86:9e:66:95:03:68:5d: 68:0b:fa:7a:6f:47:5b:e4:d9:6f:a4:3c:fb:0d:2f:a7:f3:88: 0f:4e:cc:1c:00:e6:a0:87:8f:6a:d7:0a:31:ca:8b:23:e7:0a: 83:aa:f2:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUwNDExMDMwNDU2WhcNMjUwNDE4MDMwNDU2WjAYMRYwFAYD VQQDEw02N2Y4ODZkOC1hYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+lhKSh47QA5JOcFghGCLtk9qnB03SRmsaYtvkRFrw/72U/bJMKUrOd8Wicr u2OptojP3cMqiDYF+6AHtZkWGTE1trWU4Iz+t/H0FjAG/Kmk/7vYQNtokis0/ZSr B95rl2PEF4g6r7DGbJPE+xIIDX8sCl7VLKAQLf1QGcyDuyd04xQpWezjPSZlYWIt TboboDw+Iyh0rbP8f+n08QYdC+O8tmXUG1cdVQ9G8r4FprL9UxkHbzXXXLa5jW1a kVPC6zV8YZC2+19pNhulN1WmcxNPv5ZytbXbk5l7P3Ub9mvDVQq0V63jygUrmzGI nv0BBw6QpWUqNkA+J42DvFP5kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFt7Vjz elhCB3QKPOLq/vYE7T5BMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUGlOZLoSYOwsp9+9Tt2jBYt1Ij2YGCgjWEl6CWtp7uSH22LbYw5kC 2gs7Jzd+7UeZENsK5bj1cbHz9NmEeeJB6drvWQitSNyzsZScsYVdG9UDLG7BR3HC jWILXAsIQ0y4PgcYiifkzC8P7BToDZIhKJOdW4eQES9RsdRc1VgRZTDiNUjHrsAA 6LovZlg/BcxK8lI0M2io1e1VLnXHO1Cq9Uhr3UWdHbkJRMptEw3dHxMxhqPrgU19 Iaryxk7YDxBuT0YBzQ0g8+ky/2cTzAUmbIaeZpUDaF1oC/p6b0db5NlvpDz7DS+n 84gPTswcAOagh49q1woxyosj5wqDqvLk -----END CERTIFICATE-----Generated at Sat Apr 12 14:47:07 2025 by rpki-client