$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft File: 4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft (raw, json) Hash identifier: TrRvGyGljFZHbiEEeMD1HkLMdCqOw76SwufBq8sfqZg= Subject key identifier: 8B:BC:A9:66:7E:8B:BC:F6:9C:BC:E4:8F:94:89:47:0D:E8:42:77:69 Authority key identifier: E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D Certificate issuer: /CN=A91F2B47/serialNumber=E11896B00C9486E43EE74802D21969F888EE4E2D Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft Manifest number: 020A Signing time: Sat 05 Apr 2025 02:11:35 +0000 Manifest this update: Sat 05 Apr 2025 02:11:35 +0000 Manifest next update: Sat 12 Apr 2025 02:11:35 +0000 Files and hashes: 1: 4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl (hash: 4PdpzVpuSlQatb9r0rs321ee1Tge02uxPtSzGFUXVEo=) 2: 909F94F070F911EDBA42F056C4F9AE02.roa (hash: J59LrtIyPPPdrZKXDpKJBMgQFNUlF3OmhLoyAq20BcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47 Validity Not Before: Apr 5 02:11:35 2025 GMT Not After : Apr 12 02:11:35 2025 GMT Subject: CN=67f09157-a7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:fc:88:4b:02:cd:98:aa:c1:79:ff:bb:a8:68: 31:b2:1f:e4:fc:1c:6a:58:9b:e9:6f:66:28:2c:f5: c2:ef:a2:42:58:ed:de:19:f0:95:f5:02:6d:10:ba: bf:fb:9b:9b:c8:8e:6d:05:f5:ed:11:74:55:00:2f: f1:e9:48:fd:4b:d1:c3:80:a5:36:8d:73:43:14:8a: 93:d3:29:74:eb:65:0c:5d:dc:46:87:20:08:8f:1a: 60:65:1a:c3:7d:6e:f7:4e:8f:b2:05:5c:ea:6e:e9: cd:be:d9:af:b8:f8:08:9a:f9:41:af:3b:4d:be:54: eb:fa:0a:b3:37:a8:5d:a8:7f:2c:a6:67:82:2d:17: 50:2d:e6:91:3c:4b:70:de:ab:f1:af:65:e5:87:b0: bf:44:d9:56:e7:49:46:44:b1:bd:38:c9:8f:cf:8d: db:32:62:64:47:b0:37:49:04:0b:2e:5a:7c:85:1d: e5:0d:45:86:52:c5:c3:9a:a4:ae:ab:a5:9b:50:d8: 66:24:eb:6c:26:82:3c:28:29:ad:c4:5d:93:fd:c3: 26:08:c4:5c:b8:ad:3d:28:7a:ce:d2:7b:ff:c0:b5: 09:b7:5e:33:2e:24:ff:3a:73:f4:21:c0:c6:4d:e2: 6a:ea:bc:ca:30:5b:e0:c6:93:f1:0f:de:7c:50:8b: 91:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BC:A9:66:7E:8B:BC:F6:9C:BC:E4:8F:94:89:47:0D:E8:42:77:69 X509v3 Authority Key Identifier: keyid:E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:94:f3:0e:6d:bf:b5:73:cb:6f:3d:70:37:2d:70:a7:2c:e5: e7:32:41:49:b4:46:f5:b4:4a:05:bc:fb:d3:be:8a:7e:c8:eb: 4e:06:18:c0:bd:79:a7:10:7e:f2:66:c8:3a:32:4e:3c:39:b9: 16:af:bf:9a:3f:06:ee:1f:7c:d6:7d:ac:9a:7a:b7:0f:b1:1b: fe:6c:e6:38:59:73:01:0f:1b:9d:1c:29:9a:f2:cd:f0:cd:2c: e6:66:fe:6f:68:97:b9:fc:85:c2:11:4d:69:13:d4:4a:5e:00: 75:ec:ff:b1:ae:ab:52:42:d6:d4:e3:b6:c7:d7:60:02:b4:d2: 8e:3b:5a:72:be:39:46:4c:b7:e5:46:83:22:03:0c:34:1d:62: 3e:0c:98:db:e1:87:7c:49:21:60:62:b1:cf:bf:82:03:96:61: 9f:04:9e:8e:64:08:56:9b:3a:ad:6c:44:47:7d:a4:56:cd:eb: 42:38:50:24:d1:36:06:48:ed:f9:e3:ef:f2:24:34:9e:9f:06: 78:32:d1:77:57:ca:06:0a:ca:f5:aa:be:27:4a:29:00:81:ed: a6:d8:a2:a2:19:fa:65:6b:08:54:d0:5e:32:95:97:c0:03:bb: 07:d5:fb:0a:fd:cb:c5:a4:3d:7b:99:16:ca:6f:8c:bf:84:e3: 1d:86:41:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKEUxMTg5NkIwMEM5NDg2RTQzRUU3NDgwMkQyMTk2OUY4 ODhFRTRFMkQwHhcNMjUwNDA1MDIxMTM1WhcNMjUwNDEyMDIxMTM1WjAYMRYwFAYD VQQDEw02N2YwOTE1Ny1hN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/PyISwLNmKrBef+7qGgxsh/k/BxqWJvpb2YoLPXC76JCWO3eGfCV9QJtELq/ +5ubyI5tBfXtEXRVAC/x6Uj9S9HDgKU2jXNDFIqT0yl062UMXdxGhyAIjxpgZRrD fW73To+yBVzqbunNvtmvuPgImvlBrztNvlTr+gqzN6hdqH8spmeCLRdQLeaRPEtw 3qvxr2Xlh7C/RNlW50lGRLG9OMmPz43bMmJkR7A3SQQLLlp8hR3lDUWGUsXDmqSu q6WbUNhmJOtsJoI8KCmtxF2T/cMmCMRcuK09KHrO0nv/wLUJt14zLiT/OnP0IcDG TeJq6rzKMFvgxpPxD958UIuRNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu8qWZ+ i7z2nLzkj5SJRw3oQndpMB8GA1UdIwQYMBaAFOEYlrAMlIbkPudIAtIZafiI7k4t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9GMUZFMzJCQTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi80UmlXc0F5VWh1US01MGdDMGhscC1JanVU aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSaVdzQXlVaHVRLTUwZ0MwaGxwLUlqdVRpMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI0Ny9GMUZFMzJCQTMzQUYxMUVEQjYxMDc0MzRDNEY5QUUwMi80UmlXc0F5VWh1 US01MGdDMGhscC1JanVUaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAklPMObb+1c8tvPXA3LXCnLOXnMkFJtEb1tEoFvPvTvop+yOtOBhjA vXmnEH7yZsg6Mk48ObkWr7+aPwbuH3zWfayaercPsRv+bOY4WXMBDxudHCma8s3w zSzmZv5vaJe5/IXCEU1pE9RKXgB17P+xrqtSQtbU47bH12ACtNKOO1pyvjlGTLfl RoMiAww0HWI+DJjb4Yd8SSFgYrHPv4IDlmGfBJ6OZAhWmzqtbERHfaRWzetCOFAk 0TYGSO354+/yJDSenwZ4MtF3V8oGCsr1qr4nSikAge2m2KKiGfplawhU0F4ylZfA A7sH1fsK/cvFpD17mRbKb4y/hOMdhkHh -----END CERTIFICATE-----Generated at Sun Apr 6 16:19:30 2025 by rpki-client