$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft File: bRdadMGgmL-i337kNxYF_2owQkk.mft (raw, json) Hash identifier: shjYZlmUbtWBTN3TtPzt5YolPwT2XFZT9qTaAqWrugg= Subject key identifier: 41:6C:CF:7E:71:ED:93:A9:C6:03:96:7E:F9:58:E2:48:E1:15:5C:74 Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft Manifest number: 04F8 Signing time: Wed 02 Apr 2025 23:43:29 +0000 Manifest this update: Wed 02 Apr 2025 23:43:28 +0000 Manifest next update: Wed 09 Apr 2025 23:43:28 +0000 Files and hashes: 1: bRdadMGgmL-i337kNxYF_2owQkk.crl (hash: fz2luXVi8ZzcLo3AYe3ix0cPQqGNAiMaD27wrpMGbMY=) 2: 80379A8A09EA11EC8762242CC4F9AE02.roa (hash: bLDcJFTKOtM843ZtxHRVBda6/t9v0F+nd+NQWcmzuYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0 Validity Not Before: Apr 2 23:43:28 2025 GMT Not After : Apr 9 23:43:28 2025 GMT Subject: CN=67edcba1-d127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:c0:68:7c:7d:71:0c:4a:0b:91:d0:52:04: 85:78:e5:ce:d1:e4:61:7b:64:7f:8d:e2:a1:e2:6f: 6b:9d:c0:92:56:c3:34:fd:39:5b:60:81:7c:1e:47: 05:30:87:e6:85:a2:90:21:3d:54:eb:20:b3:51:61: 12:f7:82:80:c1:d8:da:5b:18:43:b7:29:43:c2:b6: c6:55:28:61:08:20:e0:b8:d3:49:9c:56:26:d2:e3: af:f3:df:05:21:63:cb:0f:14:c4:be:24:b8:fa:0e: 23:76:b1:29:1c:06:28:3d:08:45:35:24:77:cf:4d: 6f:ac:d6:ec:f6:71:85:a3:c9:7e:2d:80:c7:91:48: 72:00:fa:77:86:7b:b8:48:cf:8d:c2:ad:e7:4b:3f: e0:fe:05:c1:7e:f8:bf:4b:9b:ab:65:f3:2c:8e:5c: ac:50:55:9e:55:8c:dc:f9:b0:cc:9d:3d:57:17:f8: d9:55:1c:6b:12:1a:19:d3:40:23:b0:07:84:82:26: 4a:14:33:3a:09:31:9c:df:d8:e5:c9:eb:d4:58:61: 9f:2a:a7:ec:c3:0e:92:d8:41:1d:9f:a9:70:a6:f0: ab:5f:91:3e:5b:3a:ed:0e:b2:a4:7e:7f:d4:e7:10: 92:62:50:81:77:c3:3e:8a:80:ec:ba:3d:83:30:82: 44:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6C:CF:7E:71:ED:93:A9:C6:03:96:7E:F9:58:E2:48:E1:15:5C:74 X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ce:31:4d:b2:6b:20:aa:a8:3f:74:04:3e:81:e1:fb:d5:e5: ea:b9:30:08:37:fc:dd:bf:42:3d:0a:2a:76:f0:64:94:d0:36: 8d:5d:e4:9e:15:d1:79:e2:38:32:95:16:bd:b0:13:bc:7b:13: 6f:fd:fe:48:f6:85:08:9b:52:be:1a:55:b0:41:7b:02:f9:7d: 59:4f:ea:37:5a:81:f4:be:1d:7c:6b:71:61:ce:14:ce:96:84: 4c:c4:45:18:17:55:fc:a2:c4:54:1c:9b:5a:af:c9:23:2f:3a: da:ea:3e:c9:50:fa:61:f1:7e:04:4d:9e:cd:22:e7:99:2f:9a: 81:15:4d:86:bd:a7:8d:f6:ed:7a:0b:12:36:ab:cb:e7:f0:80: 40:2b:8f:f0:cd:ce:ad:7d:90:47:7b:f6:8f:4a:97:30:13:80: 4c:2e:aa:ca:1e:40:97:b5:95:fb:b8:2a:9d:ea:2c:50:4b:6f: 3c:a8:d3:1c:2d:dc:b0:4e:f3:cb:8a:0b:a9:e3:7d:67:fe:b9: 33:31:20:f7:55:67:d2:4b:6b:88:20:d6:53:ee:23:1b:b4:2c: 07:56:d9:63:42:38:63:fa:f7:d4:ca:23:85:ec:66:7e:4b:fc: 3f:36:dd:54:26:10:ce:ab:0f:39:1f:31:0b:cd:c6:0e:e2:dc: 64:a0:de:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjUwNDAyMjM0MzI4WhcNMjUwNDA5MjM0MzI4WjAYMRYwFAYD VQQDEw02N2VkY2JhMS1kMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDnAaHx9cQxKC5HQUgSFeOXO0eRhe2R/jeKh4m9rncCSVsM0/TlbYIF8HkcF MIfmhaKQIT1U6yCzUWES94KAwdjaWxhDtylDwrbGVShhCCDguNNJnFYm0uOv898F IWPLDxTEviS4+g4jdrEpHAYoPQhFNSR3z01vrNbs9nGFo8l+LYDHkUhyAPp3hnu4 SM+Nwq3nSz/g/gXBfvi/S5urZfMsjlysUFWeVYzc+bDMnT1XF/jZVRxrEhoZ00Aj sAeEgiZKFDM6CTGc39jlyevUWGGfKqfsww6S2EEdn6lwpvCrX5E+WzrtDrKkfn/U 5xCSYlCBd8M+ioDsuj2DMIJEpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFsz35x 7ZOpxgOWfvlY4kjhFVx0MB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkNCMC8zNTU2MjAxQzA5MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21M LWkzMzdrTnhZRl8yb3dRa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBezjFNsmsgqqg/dAQ+geH71eXquTAIN/zdv0I9Cip28GSU0DaNXeSe FdF54jgylRa9sBO8exNv/f5I9oUIm1K+GlWwQXsC+X1ZT+o3WoH0vh18a3FhzhTO loRMxEUYF1X8osRUHJtar8kjLzra6j7JUPph8X4ETZ7NIueZL5qBFU2GvaeN9u16 CxI2q8vn8IBAK4/wzc6tfZBHe/aPSpcwE4BMLqrKHkCXtZX7uCqd6ixQS288qNMc LdywTvPLigup431n/rkzMSD3VWfSS2uIINZT7iMbtCwHVtljQjhj+vfUyiOF7GZ+ S/w/Nt1UJhDOqw85HzELzcYO4txkoN7x -----END CERTIFICATE-----Generated at Fri Apr 4 21:49:17 2025 by rpki-client