$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: 6USwvi3twypJ9MloQHAE4STjBPpDqT3T05MnzemRIDI= Subject key identifier: 34:6F:66:60:8A:0E:BC:A7:2A:D4:D7:58:D7:65:09:1A:29:F5:8E:2B Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0BDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0BD6 Signing time: Fri 04 Apr 2025 18:54:43 +0000 Manifest this update: Fri 04 Apr 2025 18:54:42 +0000 Manifest next update: Fri 11 Apr 2025 18:54:42 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: LO3+X5qfZxlp4IS1dNj/QsxVoET+4sEO2ebHXKkktXg=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046 Validity Not Before: Apr 4 18:54:42 2025 GMT Not After : Apr 11 18:54:42 2025 GMT Subject: CN=67f02af2-9b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:59:17:58:49:d3:b7:8c:02:41:59:c7:14: 45:d7:f1:c8:e4:62:4b:cc:42:2a:07:d9:f7:cd:38: 12:eb:5a:2f:c8:a5:8d:fa:76:e7:53:00:fc:0e:06: ff:05:17:ac:4a:e1:e8:c9:47:84:41:f1:50:8e:8a: 76:f0:9e:33:d1:2d:79:38:57:be:ed:f2:74:11:ef: 61:89:31:39:a6:26:60:97:f0:99:7d:07:12:13:35: 81:2a:f3:65:e0:15:8d:28:e5:a4:67:a7:74:ba:33: 13:6c:b3:b2:38:a4:eb:a2:21:91:7c:7b:8c:f2:51: b0:b1:50:20:f2:a3:15:b3:73:bc:29:be:9d:54:e4: 2b:04:77:74:82:2a:64:f6:49:d7:ed:95:81:96:69: 47:92:9f:5a:c2:d2:a7:4f:57:87:0b:23:91:f4:62: 02:4d:68:3b:cd:77:05:2e:2f:23:7e:39:c6:28:7c: df:50:3d:62:55:17:ca:0a:ff:a3:0e:74:66:47:1c: 63:48:81:21:0f:5b:4c:82:28:14:e0:2b:1c:6d:36: 6a:8b:86:62:84:32:b1:b7:65:63:14:77:36:a9:52: 82:b0:42:3c:96:51:1b:68:7b:2f:cc:3c:b9:e0:6e: 92:63:d6:3a:78:53:78:b3:19:7e:a0:80:ba:df:ec: 32:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6F:66:60:8A:0E:BC:A7:2A:D4:D7:58:D7:65:09:1A:29:F5:8E:2B X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9c:77:93:6f:74:2c:c1:94:6c:61:5e:61:8b:c7:ef:2e:1a: c3:89:0d:c9:5e:73:96:0c:1b:25:29:98:42:98:80:e7:29:dc: 15:bb:84:5e:d7:b4:30:2c:af:ae:89:34:8e:b2:6b:f4:c5:e6: ab:9e:3c:ff:2f:01:37:97:5d:23:09:38:04:9a:bc:de:f1:9d: b2:b9:c7:0f:91:3b:7c:1f:66:db:8f:47:2f:0e:3b:62:ee:89: 92:a3:5b:07:b9:20:0e:62:57:ab:17:1c:3d:36:f6:d8:a0:c7: c8:f0:8e:42:18:c3:4f:ae:de:25:53:c5:4b:96:f8:67:ca:7d: 9d:fa:39:1b:1e:78:51:0c:c9:37:44:12:e9:37:72:27:cb:1f: 6e:f8:2b:93:fc:df:d0:49:8b:f3:63:3b:a6:a9:d5:36:0f:6c: db:93:7a:8e:70:1d:0b:11:19:32:12:46:25:0b:3d:ed:ae:13: 66:2e:e8:59:27:2a:4c:5f:2a:0a:32:c6:cf:bd:53:56:f2:fa: cf:97:3c:27:a7:91:28:4b:02:71:8b:a9:e1:80:b4:da:61:4f: 1a:82:83:2a:5e:c5:35:e8:fc:04:34:b3:d7:21:6d:b7:ee:8a: 5d:dd:0b:2d:39:50:24:58:47:dc:db:42:0c:78:13:07:e3:3b: 6c:bc:4f:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUwNDA0MTg1NDQyWhcNMjUwNDExMTg1NDQyWjAYMRYwFAYD VQQDEw02N2YwMmFmMi05YjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp9ZF1hJ07eMAkFZxxRF1/HI5GJLzEIqB9n3zTgS61ovyKWN+nbnUwD8Dgb/ BResSuHoyUeEQfFQjop28J4z0S15OFe+7fJ0Ee9hiTE5piZgl/CZfQcSEzWBKvNl 4BWNKOWkZ6d0ujMTbLOyOKTroiGRfHuM8lGwsVAg8qMVs3O8Kb6dVOQrBHd0gipk 9knX7ZWBlmlHkp9awtKnT1eHCyOR9GICTWg7zXcFLi8jfjnGKHzfUD1iVRfKCv+j DnRmRxxjSIEhD1tMgigU4CscbTZqi4ZihDKxt2VjFHc2qVKCsEI8llEbaHsvzDy5 4G6SY9Y6eFN4sxl+oIC63+wyEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRvZmCK DrynKtTXWNdlCRop9Y4rMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMnHeTb3QswZRsYV5hi8fvLhrDiQ3JXnOWDBslKZhCmIDnKdwVu4Re 17QwLK+uiTSOsmv0xearnjz/LwE3l10jCTgEmrze8Z2yuccPkTt8H2bbj0cvDjti 7omSo1sHuSAOYlerFxw9NvbYoMfI8I5CGMNPrt4lU8VLlvhnyn2d+jkbHnhRDMk3 RBLpN3Inyx9u+CuT/N/QSYvzYzumqdU2D2zbk3qOcB0LERkyEkYlCz3trhNmLuhZ JypMXyoKMsbPvVNW8vrPlzwnp5EoSwJxi6nhgLTaYU8agoMqXsU16PwENLPXIW23 7opd3QstOVAkWEfc20IMeBMH4ztsvE/P -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:43 2025 by rpki-client