$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: yFdN7enC0MZewTwmkXqlF6vXs9vlfIBxyLu6Wtbeqxc= Subject key identifier: 9C:F3:55:EF:AA:A0:47:9E:C8:38:AE:C4:2F:DF:9C:B8:B2:33:54:12 Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 15A2 Signing time: Fri 04 Apr 2025 16:52:19 +0000 Manifest this update: Fri 04 Apr 2025 16:52:19 +0000 Manifest next update: Fri 11 Apr 2025 16:52:19 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: s73VLKoDZHpTfNwnXqcj7WnrZBaZjpI41xWCb3GpLTc=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5552 (0x15b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA Validity Not Before: Apr 4 16:52:19 2025 GMT Not After : Apr 11 16:52:19 2025 GMT Subject: CN=67f00e43-4471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6a:1c:55:59:26:59:7b:d3:2d:8a:08:02:43: 35:26:b6:05:7d:3c:9e:ca:d0:fb:95:0e:e0:19:f9: c6:c8:09:d3:76:03:6e:b6:16:03:0e:a0:1c:b1:0b: b5:15:f5:4d:48:05:50:63:32:2c:ac:d4:05:b4:db: ad:72:c7:37:fd:5e:63:c2:87:83:88:b9:62:f9:95: 8c:8f:8c:94:e8:dc:c8:c0:a4:df:95:af:a0:d2:b5: 87:28:16:9c:b2:a0:b7:9d:42:e2:4a:e5:ad:e9:4f: 12:5b:72:b2:90:3c:70:51:57:b8:89:11:c1:5e:98: 7a:d6:c4:4e:d6:fe:f3:82:64:44:91:a4:dd:7c:fa: 7c:de:17:54:90:fb:4a:94:64:5e:ca:db:df:89:13: 29:bf:2a:90:91:dd:25:d9:c0:cd:7e:c3:9f:83:34: 17:9e:78:d4:e0:fd:44:5d:3c:a3:ed:33:f6:5b:e3: 86:7c:e7:f3:2f:15:d1:8f:21:09:b3:57:09:c4:1f: 6e:aa:16:f7:94:8d:ce:37:2e:70:f2:3e:45:2c:4b: 3e:fd:6c:23:96:39:ff:f5:61:79:d8:86:e4:61:ed: f6:9e:f2:ee:86:35:b7:28:32:2a:8e:13:46:4d:d4: 0d:b3:9e:e9:74:51:0e:c9:99:c6:9c:9a:80:4c:f7: b3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F3:55:EF:AA:A0:47:9E:C8:38:AE:C4:2F:DF:9C:B8:B2:33:54:12 X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ee:15:20:41:d8:03:da:f6:50:4a:d6:98:a9:01:a5:91:f8: 65:08:4e:b8:b8:2e:10:ba:64:4b:21:f3:0f:0e:d3:29:26:7c: a1:43:83:f1:67:46:60:2e:01:b6:1d:47:41:ac:9b:de:11:ec: 27:a9:5b:21:28:86:a1:d4:a3:7b:d7:30:c5:47:33:c9:fa:40: c0:44:2d:f1:49:d1:84:4b:ea:93:69:ca:78:6c:9f:0b:69:b9: dd:34:ea:cf:91:5e:26:d6:97:ee:4b:3a:a8:6f:00:db:97:76: 66:d7:47:c8:51:b2:dd:b0:41:7b:a9:1a:c5:3f:02:f0:69:9a: 0f:47:a9:d2:bd:0a:0e:cb:26:82:a0:92:2a:43:04:3b:c5:2b: 23:1e:8b:6a:bc:2c:12:c1:4c:18:19:ed:7a:5c:94:aa:65:e0: 6a:c6:1b:7c:bf:f6:d0:f7:65:d6:d4:4b:9c:7e:68:65:94:c4: 58:c6:5b:81:f2:40:fb:00:d7:8e:d0:19:c3:eb:0f:04:f7:21: ac:06:be:86:ec:5b:98:d2:8c:d6:1c:8e:b1:69:90:3e:68:37: 2d:91:e7:cd:52:37:61:ad:8c:7e:91:26:f5:fb:07:98:22:05: 62:07:b2:58:a5:ca:bd:db:31:01:c5:9d:af:09:d0:c2:b5:4a: b7:25:49:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwNDA0MTY1MjE5WhcNMjUwNDExMTY1MjE5WjAYMRYwFAYD VQQDEw02N2YwMGU0My00NDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmocVVkmWXvTLYoIAkM1JrYFfTyeytD7lQ7gGfnGyAnTdgNuthYDDqAcsQu1 FfVNSAVQYzIsrNQFtNutcsc3/V5jwoeDiLli+ZWMj4yU6NzIwKTfla+g0rWHKBac sqC3nULiSuWt6U8SW3KykDxwUVe4iRHBXph61sRO1v7zgmREkaTdfPp83hdUkPtK lGReytvfiRMpvyqQkd0l2cDNfsOfgzQXnnjU4P1EXTyj7TP2W+OGfOfzLxXRjyEJ s1cJxB9uqhb3lI3ONy5w8j5FLEs+/Wwjljn/9WF52IbkYe32nvLuhjW3KDIqjhNG TdQNs57pdFEOyZnGnJqATPezowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzzVe+q oEeeyDiuxC/fnLiyM1QSMB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl7hUgQdgD2vZQStaYqQGlkfhlCE64uC4QumRLIfMPDtMpJnyhQ4Px Z0ZgLgG2HUdBrJveEewnqVshKIah1KN71zDFRzPJ+kDARC3xSdGES+qTacp4bJ8L abndNOrPkV4m1pfuSzqobwDbl3Zm10fIUbLdsEF7qRrFPwLwaZoPR6nSvQoOyyaC oJIqQwQ7xSsjHotqvCwSwUwYGe16XJSqZeBqxht8v/bQ92XW1EucfmhllMRYxluB 8kD7ANeO0BnD6w8E9yGsBr6G7FuY0ozWHI6xaZA+aDctkefNUjdhrYx+kSb1+weY IgViB7JYpcq92zEBxZ2vCdDCtUq3JUl/ -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:09 2025 by rpki-client