$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft File: MU9VrlJExM2xD3hN_xXQItOJaEg.mft (raw, json) Hash identifier: UcA/cUW6bcG7Jhg/Lm2JAHUotOVNkbmWzG+pMcmcp2I= Subject key identifier: 28:34:55:6D:67:81:FE:0C:08:C7:50:F5:B6:74:93:5C:F7:A2:BC:C8 Authority key identifier: 31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 Certificate issuer: /CN=A91F4288/serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Certificate serial: 1D9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft Manifest number: 1D7B Signing time: Fri 04 Apr 2025 16:10:50 +0000 Manifest this update: Fri 04 Apr 2025 16:10:50 +0000 Manifest next update: Fri 11 Apr 2025 16:10:50 +0000 Files and hashes: 1: MU9VrlJExM2xD3hN_xXQItOJaEg.crl (hash: 20JK6LW2aL2Em3gy5459ZtvLD6J0C5p90/NOHIKN9Mc=) 2: 30C10672A27411E68C8EC670C4F9AE02.roa (hash: akkWYjfaWEhqYJZrRKjxCpGXnYxAkiIziyHvD0Tsd7w=) 3: 2445BC6A6FCE11E9AA5D2439C4F9AE02.roa (hash: 7TEbSw3PqWXAumkD/6WCBubmNiQ54mZObTiNmT20Qfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7582 (0x1d9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4288 Validity Not Before: Apr 4 16:10:50 2025 GMT Not After : Apr 11 16:10:50 2025 GMT Subject: CN=67f0048a-b272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:70:74:60:55:32:83:aa:fe:5b:99:50:a6: 6e:03:9b:7a:aa:f1:ad:58:0a:3e:b1:d5:e9:34:2b: 70:33:08:d5:0d:80:de:ae:19:df:00:16:3d:47:ba: 36:79:a4:40:c3:5e:e6:1c:6c:d3:c0:1b:9a:d8:a8: 6e:7b:a2:2f:41:43:53:b6:5d:dc:f0:88:87:28:a7: c7:ef:9e:06:1e:08:84:66:41:75:23:49:c1:81:b4: 88:61:ce:b1:f8:8e:df:84:8d:6f:3a:e4:26:c1:0c: 64:e7:de:5c:81:56:06:aa:cb:50:07:de:6b:9d:b7: 5c:59:5a:46:2b:46:93:ff:b2:21:b6:30:7e:ff:d3: d5:94:fd:c6:06:6d:11:6e:d0:a1:98:90:16:54:da: 65:8f:70:7f:0d:0d:9d:91:d1:a7:82:5f:a2:ab:84: 9e:2b:6b:61:a4:21:5a:84:9d:94:2e:c5:60:50:9a: d3:be:a3:bb:e2:17:16:be:0e:58:dd:ad:e0:dc:b4: 5f:5a:33:75:f6:62:d1:34:52:8d:4e:3e:16:97:43: 94:81:3f:2b:5f:2b:f5:ca:6b:46:62:13:aa:4f:e4: c4:0b:0f:8e:be:67:57:4e:ee:4c:08:c8:8f:55:0a: d8:8a:f0:8b:22:c7:5a:6e:8b:57:51:ed:65:d3:ae: 68:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:34:55:6D:67:81:FE:0C:08:C7:50:F5:B6:74:93:5C:F7:A2:BC:C8 X509v3 Authority Key Identifier: keyid:31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a8:e0:fc:e9:7c:bd:e2:53:00:c9:9d:a1:6f:3c:e6:99:0b: a1:80:dc:6c:63:36:5b:12:ed:66:8c:96:fa:be:a3:8b:41:0a: 16:23:82:5f:37:73:88:cb:72:4b:00:0a:2b:ed:f1:31:a0:e9: ec:ee:de:a5:db:57:ff:bb:d6:44:82:a6:10:38:21:1b:1c:72: e2:f1:e2:82:94:ee:1a:94:3c:3c:d3:c9:ff:7c:1a:5f:e6:42: 90:58:c9:2e:8d:c5:7c:d7:b6:a6:6f:b7:52:34:a7:27:4c:7f: 5c:f9:75:12:8c:d8:be:3c:48:d6:d9:4e:8f:7c:14:92:f7:9b: 3f:a1:73:56:65:2f:d6:99:dc:9d:1b:d0:1b:d8:93:76:9b:00: 77:01:b7:66:5d:59:be:70:7a:29:14:fc:4f:68:37:1a:0a:a5: e0:b9:fe:f3:48:32:ea:2d:a3:65:9e:6b:b6:86:7c:6c:a2:b3: 47:42:0d:3f:7c:17:ff:3d:7b:6e:f7:9e:d1:6c:3a:8d:e7:c4: 6a:69:0e:bb:cb:69:7f:e3:be:ec:72:a4:4e:a2:55:9e:9d:5e: b0:40:bc:c1:3c:cb:5b:5b:28:c2:6c:94:3a:32:a0:8d:39:e1: 38:14:36:f2:90:22:0d:8b:1e:a8:e2:16:2b:cc:5c:47:41:27: a4:86:15:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyODgxMTAvBgNVBAUTKDMxNEY1NUFFNTI0NEM0Q0RCMTBGNzg0REZGMTVEMDIy RDM4OTY4NDgwHhcNMjUwNDA0MTYxMDUwWhcNMjUwNDExMTYxMDUwWjAYMRYwFAYD VQQDEw02N2YwMDQ4YS1iMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt1wdGBVMoOq/luZUKZuA5t6qvGtWAo+sdXpNCtwMwjVDYDerhnfABY9R7o2 eaRAw17mHGzTwBua2Khue6IvQUNTtl3c8IiHKKfH754GHgiEZkF1I0nBgbSIYc6x +I7fhI1vOuQmwQxk595cgVYGqstQB95rnbdcWVpGK0aT/7IhtjB+/9PVlP3GBm0R btChmJAWVNplj3B/DQ2dkdGngl+iq4SeK2thpCFahJ2ULsVgUJrTvqO74hcWvg5Y 3a3g3LRfWjN19mLRNFKNTj4Wl0OUgT8rXyv1ymtGYhOqT+TECw+OvmdXTu5MCMiP VQrYivCLIsdabotXUe1l065obQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg0VW1n gf4MCMdQ9bZ0k1z3orzIMB8GA1UdIwQYMBaAFDFPVa5SRMTNsQ94Tf8V0CLTiWhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4OC9BOTNBQTg4MEEy NzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhNMnhEM2hOX3hYUUl0T0ph RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01VOVZybEpFeE0yeEQzaE5feFhRSXRPSmFFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4OC9BOTNBQTg4MEEyNzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhN MnhEM2hOX3hYUUl0T0phRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4qOD86Xy94lMAyZ2hbzzmmQuhgNxsYzZbEu1mjJb6vqOLQQoWI4Jf N3OIy3JLAAor7fExoOns7t6l21f/u9ZEgqYQOCEbHHLi8eKClO4alDw808n/fBpf 5kKQWMkujcV817amb7dSNKcnTH9c+XUSjNi+PEjW2U6PfBSS95s/oXNWZS/Wmdyd G9Ab2JN2mwB3AbdmXVm+cHopFPxPaDcaCqXguf7zSDLqLaNlnmu2hnxsorNHQg0/ fBf/PXtu957RbDqN58RqaQ67y2l/477scqROolWenV6wQLzBPMtbWyjCbJQ6MqCN OeE4FDbykCINix6o4hYrzFxHQSekhhWV -----END CERTIFICATE-----Generated at Sat Apr 5 11:40:51 2025 by rpki-client