$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: M9OPqOGdkuPzuCAU3XUkToXBIRGhRjV7AN8Y4ss5hFM= Subject key identifier: B6:67:E4:F1:29:F4:A0:8A:0C:E5:63:15:05:CB:F2:7A:E8:71:FE:B0 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B62 Signing time: Fri 04 Apr 2025 19:11:31 +0000 Manifest this update: Fri 04 Apr 2025 19:11:30 +0000 Manifest next update: Fri 11 Apr 2025 19:11:30 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: 0/62qqZ7PX1pXhNgzVUj8hNXSuQBv1jmehMKHH1nYkA=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89 Validity Not Before: Apr 4 19:11:30 2025 GMT Not After : Apr 11 19:11:30 2025 GMT Subject: CN=67f02ee3-b990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:60:02:2a:8c:b9:c9:b1:f6:f5:23:ba:d1: 83:81:be:33:3e:65:cd:c8:bb:2f:89:fa:bd:7f:48: 1a:bd:d3:8e:f8:0c:27:33:4d:cb:d3:f0:54:dd:aa: e8:8a:2a:d2:7e:0c:d4:38:c0:cf:ca:b5:d3:31:44: cf:6e:cc:fa:ed:dc:7b:bc:b2:39:20:0c:4c:5a:98: f0:66:3a:c5:4f:27:45:cc:1e:ab:88:93:a9:c7:20: e4:4d:0b:61:88:c0:e9:b7:61:3d:ba:78:1a:d6:6a: 96:a8:0a:1a:25:6c:19:12:e4:f8:c3:fb:a2:00:45: 1f:59:7c:d2:d6:74:ed:c5:d0:e8:14:f4:7b:12:75: 57:2b:f2:9c:08:1b:e6:54:07:83:31:3b:1c:d7:87: fc:86:40:74:9f:fe:a2:ea:f1:91:a1:cd:94:d1:1e: a1:55:46:53:29:2c:04:99:f8:d9:ef:97:92:fa:df: df:67:26:05:3e:00:20:a9:9f:1c:60:c9:f9:24:4f: 14:c2:4f:45:b7:7c:34:e2:c7:22:48:5b:92:6a:65: b5:e5:a8:5d:58:be:12:1e:95:a0:e3:6b:02:1e:06: be:b5:1e:43:7d:5f:75:55:dd:1f:54:d9:a8:4f:24: c6:3a:b0:7e:75:aa:8b:d0:4d:0c:96:09:c5:76:52: 35:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:E4:F1:29:F4:A0:8A:0C:E5:63:15:05:CB:F2:7A:E8:71:FE:B0 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:b3:b0:bf:34:c4:b1:90:39:5e:1e:70:d2:ab:86:84:fd:63: d8:5f:a8:d3:73:14:bd:67:c3:30:5a:ae:35:42:fe:e0:a9:9c: 3e:31:0f:71:0b:a4:f8:f4:9e:48:a4:43:55:6c:1d:3c:27:a8: bc:d9:dd:3a:ce:f7:31:5a:c9:50:73:90:13:57:fa:b4:4e:b7: 84:c7:f5:13:d6:53:eb:53:3b:10:02:91:de:2f:ce:33:06:f3: 35:cf:2d:2f:09:63:8a:34:9e:bf:2f:2a:87:a4:bf:db:b7:0b: 85:15:35:60:ed:ee:6f:63:02:1b:9f:6c:02:f5:d0:1c:53:8f: 72:8c:00:e9:f2:e8:1d:b1:e4:f7:4b:53:ba:de:20:57:58:ee: 73:c2:94:4b:7a:43:83:e8:a9:41:58:ca:65:43:c8:2d:96:c5: 35:95:dc:44:19:9a:0f:2a:7f:49:17:4f:ad:ca:5a:25:db:1b: bf:90:b2:eb:f0:91:1e:4f:28:8a:6e:3d:68:7b:82:e6:1b:87: 06:e5:11:24:d3:e9:f9:bb:4b:f1:2d:b0:4e:36:f4:58:71:01: b1:1f:fc:b9:ac:5b:ed:0b:4a:c4:d7:6b:ec:c6:86:e2:d6:f9: 0a:be:83:01:89:54:b4:eb:0d:23:36:33:cd:34:09:f8:10:59: ea:87:46:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwNDA0MTkxMTMwWhcNMjUwNDExMTkxMTMwWjAYMRYwFAYD VQQDEw02N2YwMmVlMy1iOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWhgAiqMucmx9vUjutGDgb4zPmXNyLsvifq9f0gavdOO+AwnM03L0/BU3aro iirSfgzUOMDPyrXTMUTPbsz67dx7vLI5IAxMWpjwZjrFTydFzB6riJOpxyDkTQth iMDpt2E9unga1mqWqAoaJWwZEuT4w/uiAEUfWXzS1nTtxdDoFPR7EnVXK/KcCBvm VAeDMTsc14f8hkB0n/6i6vGRoc2U0R6hVUZTKSwEmfjZ75eS+t/fZyYFPgAgqZ8c YMn5JE8Uwk9Ft3w04sciSFuSamW15ahdWL4SHpWg42sCHga+tR5DfV91Vd0fVNmo TyTGOrB+daqL0E0MlgnFdlI1aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZn5PEp 9KCKDOVjFQXL8nrocf6wMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGs7C/NMSxkDleHnDSq4aE/WPYX6jTcxS9Z8MwWq41Qv7gqZw+MQ9x C6T49J5IpENVbB08J6i82d06zvcxWslQc5ATV/q0TreEx/UT1lPrUzsQApHeL84z BvM1zy0vCWOKNJ6/LyqHpL/btwuFFTVg7e5vYwIbn2wC9dAcU49yjADp8ugdseT3 S1O63iBXWO5zwpRLekOD6KlBWMplQ8gtlsU1ldxEGZoPKn9JF0+tylol2xu/kLLr 8JEeTyiKbj1oe4LmG4cG5REk0+n5u0vxLbBONvRYcQGxH/y5rFvtC0rE12vsxobi 1vkKvoMBiVS06w0jNjPNNAn4EFnqh0a4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:51 2025 by rpki-client