$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: onKsfI830bVXTPkwlwMkgzCT1AIjehVw2hvArWBo5Qo= Subject key identifier: F3:89:7A:89:6A:A8:1F:CC:13:A3:A1:93:94:D2:6B:7E:EC:C4:41:73 Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 01C7 Signing time: Sat 29 Mar 2025 02:38:08 +0000 Manifest this update: Sat 29 Mar 2025 02:38:08 +0000 Manifest next update: Sat 05 Apr 2025 02:38:08 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: 7wD0twEk3J34TcAsEU+G7iIqSpHU3qCb1PZ87nzqj34=) 2: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: CgMPU2zKmFQv28rwsx7lyUdY/WjeUcfrzEMiRjZzUr8=) 3: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: l/45mJzVlvrXkvMnYsTOqET7KEWpbH/MA+sFMBUmJ+A=) 4: C82A0778680811EE88B5527CC4F9AE02.roa (hash: FMfFksLuvdDh719tgVb78yQXrHhuawjPdGhDWuzq2VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24 Validity Not Before: Mar 29 02:38:08 2025 GMT Not After : Apr 5 02:38:08 2025 GMT Subject: CN=67e75d10-0609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:bf:67:ea:e3:34:72:f1:5b:be:0e:7e:6b: d5:1f:d4:27:cb:b4:55:70:ff:40:6d:f4:19:fd:8d: 06:5c:a6:48:4d:91:73:05:7a:8f:b8:83:4e:5c:03: d0:26:6d:95:84:35:5d:df:7a:fe:7f:ae:43:dd:5a: 77:74:56:78:48:00:f7:9a:55:07:6a:eb:71:8f:bd: 1f:63:b3:fb:8b:04:a4:a3:53:9a:23:ac:c1:3b:f2: 1e:90:5b:cf:af:3e:9b:86:c1:ce:b6:b2:84:e6:0a: be:a4:0c:59:b7:23:fe:ba:b4:dd:76:35:bb:43:85: 97:ba:4e:9d:c7:2d:2b:d7:14:79:47:8b:20:98:2f: 1c:4e:ab:de:c9:6c:f9:36:cb:b8:03:04:2f:cf:3e: 0f:15:6f:5b:a9:47:d8:eb:c3:b5:75:5f:a6:9c:72: b0:27:aa:3b:cb:ba:c3:a9:a5:5d:16:c6:d7:af:2f: c0:98:00:59:ad:6b:71:7c:0a:40:ed:6f:1c:ab:8c: 4c:a7:fe:01:2f:dc:2b:25:5a:ff:f9:76:22:1c:6b: f3:be:55:f0:93:b5:60:98:01:17:3b:37:39:e4:70: f3:4d:e1:e2:f7:2c:6f:fb:7f:33:57:94:f8:16:8d: 10:a0:7d:5d:b7:63:5c:77:ef:9a:70:7f:8c:99:b3: 90:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:89:7A:89:6A:A8:1F:CC:13:A3:A1:93:94:D2:6B:7E:EC:C4:41:73 X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:6e:fc:c7:d6:98:9f:ef:58:42:0d:50:b9:95:51:03:4d:26: 63:cc:53:52:bb:6e:9d:52:6f:b6:a1:cf:d6:c0:a4:1b:3f:ca: 0f:18:2e:f4:e9:e4:dc:3f:1d:5a:a6:11:47:6d:9a:f6:88:de: 58:f2:2c:7d:2f:04:b3:1b:d9:fd:38:db:1d:71:55:8d:38:15: 83:8f:43:2c:36:28:53:73:f8:7d:bd:c5:c5:1d:8b:37:77:61: 1d:06:90:d5:7f:1c:fe:2f:1a:9d:28:9b:ef:d0:e6:bf:ac:68: 5f:b0:05:60:92:9e:87:eb:2d:4f:69:93:cc:66:25:da:06:1a: 9f:3b:16:ff:38:88:a0:d4:90:b9:1e:71:0e:62:84:af:fa:92: 42:f0:82:c2:a1:81:b1:71:62:b3:a1:38:d5:63:54:dd:75:77: 96:ef:e4:68:74:1a:a2:b0:ca:86:73:98:f0:94:aa:17:51:84: a3:fd:18:0a:db:d9:47:38:f3:4c:c3:1f:cd:7f:04:79:9b:04: 10:d8:2b:d3:44:67:e3:e9:cd:ea:d0:26:57:eb:e6:2f:af:74: da:b4:ab:78:8e:00:ff:f2:47:7d:d7:2e:89:cd:99:ed:0e:8e: f8:df:ec:98:9e:7d:57:eb:4d:a6:db:4c:cf:67:23:eb:a9:0c: 65:23:81:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjUwMzI5MDIzODA4WhcNMjUwNDA1MDIzODA4WjAYMRYwFAYD VQQDEw02N2U3NWQxMC0wNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Va/Z+rjNHLxW74OfmvVH9Qny7RVcP9AbfQZ/Y0GXKZITZFzBXqPuINOXAPQ Jm2VhDVd33r+f65D3Vp3dFZ4SAD3mlUHautxj70fY7P7iwSko1OaI6zBO/IekFvP rz6bhsHOtrKE5gq+pAxZtyP+urTddjW7Q4WXuk6dxy0r1xR5R4sgmC8cTqveyWz5 Nsu4AwQvzz4PFW9bqUfY68O1dV+mnHKwJ6o7y7rDqaVdFsbXry/AmABZrWtxfApA 7W8cq4xMp/4BL9wrJVr/+XYiHGvzvlXwk7VgmAEXOzc55HDzTeHi9yxv+38zV5T4 Fo0QoH1dt2Ncd++acH+MmbOQGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOJeolq qB/ME6Ohk5TSa37sxEFzMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBabvzH1pif71hCDVC5lVEDTSZjzFNSu26dUm+2oc/WwKQbP8oPGC70 6eTcPx1aphFHbZr2iN5Y8ix9LwSzG9n9ONsdcVWNOBWDj0MsNihTc/h9vcXFHYs3 d2EdBpDVfxz+LxqdKJvv0Oa/rGhfsAVgkp6H6y1PaZPMZiXaBhqfOxb/OIig1JC5 HnEOYoSv+pJC8ILCoYGxcWKzoTjVY1TddXeW7+RodBqisMqGc5jwlKoXUYSj/RgK 29lHOPNMwx/NfwR5mwQQ2CvTRGfj6c3q0CZX6+Yvr3TatKt4jgD/8kd91y6JzZnt Do743+yYnn1X602m20zPZyPrqQxlI4HM -----END CERTIFICATE-----Generated at Fri Apr 4 21:25:31 2025 by rpki-client