$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft File: Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft (raw, json) Hash identifier: kiGekxi5pO7c2HAyOww894w11Lbr097s4G2JNkxRghc= Subject key identifier: 38:A0:A7:93:67:D4:FD:41:F7:00:1F:A3:A6:DA:BC:95:1F:40:C1:69 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 09A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft Manifest number: 099D Signing time: Tue 08 Apr 2025 19:54:12 +0000 Manifest this update: Tue 08 Apr 2025 19:54:12 +0000 Manifest next update: Tue 15 Apr 2025 19:54:12 +0000 Files and hashes: 1: Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl (hash: H2KciRdkU0Yvwhwar4l0F4AIKoQuuvS9nK5Hf6onJyk=) 2: 401EA996B5B511EABB640052C4F9AE02.roa (hash: rjAdNfdV9AdfawHfPlvLtufzt08XjVklPQmY9MfBrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2468 (0x9a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D Validity Not Before: Apr 8 19:54:12 2025 GMT Not After : Apr 15 19:54:12 2025 GMT Subject: CN=67f57ee4-640d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:cd:f9:bd:51:fa:fe:b4:58:7f:b3:ed:12: 97:d5:d0:14:60:e2:c6:8e:bc:29:a5:7d:2d:2f:cc: 07:e4:f4:6c:8f:89:f5:c5:a8:7f:2c:93:66:96:8f: 86:3d:d7:f8:de:9f:dd:e6:3f:d5:47:ba:a1:de:46: d3:c5:3f:1e:46:c6:d2:bc:99:82:d5:57:6c:22:d9: 36:21:2a:14:4c:bc:f7:22:54:05:66:30:16:92:a2: 80:f5:9f:2d:d3:a9:d1:e6:4a:46:15:6b:3f:3a:fc: e1:f7:19:0e:d4:54:41:17:01:60:5d:ef:27:ca:e6: c7:60:43:3b:ed:84:3c:f5:1c:55:10:9e:92:c5:f3: 4d:b2:ba:ce:cd:5f:18:c6:be:0d:99:6a:0b:a5:d5: 03:9e:7b:5d:a1:18:b4:13:fe:03:ac:c4:f4:36:72: 22:29:ca:b4:72:19:25:2e:09:3d:1b:a4:f6:b7:ca: 49:b8:66:e9:d8:d1:e8:61:a3:f0:81:09:86:f4:9d: 20:dd:44:88:03:a6:90:8b:6c:9e:a8:b5:21:71:8c: 83:d7:25:fb:af:e9:6b:38:5a:12:25:27:ab:93:b3: 1d:e0:3b:4f:22:69:0b:fc:22:8f:72:d9:9e:75:b3: 71:74:cd:9b:8a:d2:05:7d:93:27:f9:23:ce:bd:dc: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A0:A7:93:67:D4:FD:41:F7:00:1F:A3:A6:DA:BC:95:1F:40:C1:69 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:d9:9e:b7:2d:15:2c:b4:0a:6a:48:43:c8:13:8c:8e:ce:64: 46:3f:ec:5d:59:21:85:4d:43:fa:c7:e9:89:bf:79:8b:e7:59: 9c:86:b6:d4:a9:15:c7:69:ee:68:ef:a5:20:77:33:54:44:d2: e4:05:a7:06:fa:b8:4a:2d:97:3e:de:2a:40:52:d8:27:8f:96: ff:64:5c:25:2e:51:c7:45:5b:03:a5:c4:40:9b:9e:fd:28:52: ff:51:1e:68:18:f9:c9:ad:2a:78:9e:c3:7f:4e:75:6f:a7:86: a9:b9:35:51:a9:0d:ea:f8:13:3b:b8:02:ec:d4:c2:43:3e:db: e4:3f:e9:de:18:26:4b:1a:a5:5f:95:f5:eb:97:a0:b5:06:15: 6d:98:cb:3f:42:49:76:bd:f8:d8:ab:c5:7f:fb:93:f0:14:7f: 28:97:43:3c:2b:f3:f9:6f:43:c0:01:d7:8a:9c:66:3d:9d:df: b4:bb:42:92:f3:a5:49:6d:3c:e4:43:39:4e:52:35:15:71:bc: a8:cc:b6:54:45:b2:04:31:26:f3:c5:37:b8:e4:35:f5:e7:f9: d0:bc:93:8e:41:68:b5:4e:e1:8c:0c:53:fd:de:6b:86:99:90: d4:bc:f1:78:37:97:16:a5:e5:2e:3b:95:78:46:7d:2c:04:96: 3a:12:46:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjUwNDA4MTk1NDEyWhcNMjUwNDE1MTk1NDEyWjAYMRYwFAYD VQQDEw02N2Y1N2VlNC02NDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOHN+b1R+v60WH+z7RKX1dAUYOLGjrwppX0tL8wH5PRsj4n1xah/LJNmlo+G Pdf43p/d5j/VR7qh3kbTxT8eRsbSvJmC1VdsItk2ISoUTLz3IlQFZjAWkqKA9Z8t 06nR5kpGFWs/Ovzh9xkO1FRBFwFgXe8nyubHYEM77YQ89RxVEJ6SxfNNsrrOzV8Y xr4NmWoLpdUDnntdoRi0E/4DrMT0NnIiKcq0chklLgk9G6T2t8pJuGbp2NHoYaPw gQmG9J0g3USIA6aQi2yeqLUhcYyD1yX7r+lrOFoSJSerk7Md4DtPImkL/CKPctme dbNxdM2bitIFfZMn+SPOvdyDHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDigp5Nn 1P1B9wAfo6bavJUfQMFpMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU3RC8xNzU5RTRDODgzODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBR NHJFWExUaGNLeGgzbE1lY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA2Z63LRUstApqSEPIE4yOzmRGP+xdWSGFTUP6x+mJv3mL51mchrbU qRXHae5o76UgdzNURNLkBacG+rhKLZc+3ipAUtgnj5b/ZFwlLlHHRVsDpcRAm579 KFL/UR5oGPnJrSp4nsN/TnVvp4apuTVRqQ3q+BM7uALs1MJDPtvkP+neGCZLGqVf lfXrl6C1BhVtmMs/Qkl2vfjYq8V/+5PwFH8ol0M8K/P5b0PAAdeKnGY9nd+0u0KS 86VJbTzkQzlOUjUVcbyozLZURbIEMSbzxTe45DX15/nQvJOOQWi1TuGMDFP93muG mZDUvPF4N5cWpeUuO5V4Rn0sBJY6Ekay -----END CERTIFICATE-----Generated at Thu Apr 10 23:59:28 2025 by rpki-client