$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: QTX3QMj3Dmoq2xU+BneIsmfwPa1Hdo2Os2cr29lgAL8= Subject key identifier: E9:79:E8:25:39:19:F6:9B:47:10:E3:A6:E0:BC:CD:78:CC:20:B2:80 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 049D Signing time: Sat 05 Apr 2025 00:03:07 +0000 Manifest this update: Sat 05 Apr 2025 00:03:07 +0000 Manifest next update: Sat 12 Apr 2025 00:03:07 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: ty8zInIuvp0oviffHWNPf2RAGnDMO1HWl8axUB2pA6M=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: MOCtEXuSWTSIWA+J+aTGfRvUWTN01u8L13mcqeEHJ4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA Validity Not Before: Apr 5 00:03:07 2025 GMT Not After : Apr 12 00:03:07 2025 GMT Subject: CN=67f0733b-06c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:75:f5:8c:19:e8:49:42:0c:57:e5:60:40:f7: 78:36:b8:b9:fb:41:96:14:38:53:25:63:ad:84:ec: 63:07:5c:46:28:b3:d7:a0:58:4e:33:06:4c:66:65: a4:f5:5c:6b:d5:ff:68:c0:b3:0a:e5:a9:15:f5:2f: 7c:90:ec:4e:aa:49:44:60:af:5a:da:5a:5f:55:06: d0:b0:21:73:64:ef:3b:c7:2c:31:c2:07:ea:db:21: 94:05:be:60:c8:8e:e4:dc:67:c1:d0:a4:41:3c:89: af:f9:ec:d0:8f:de:c5:8e:20:34:98:27:22:e4:31: 81:f3:7e:3c:88:9e:2f:2a:8f:4e:87:34:46:6e:c2: b4:c1:d7:29:f5:75:35:8f:40:ec:5e:ed:3c:ab:88: bc:b8:1f:68:7f:b6:4a:90:4c:b0:d0:07:8b:77:28: a6:81:8a:09:85:59:a5:56:ae:22:38:22:6e:9a:54: d5:b1:33:8e:41:dd:0b:da:d3:c4:9d:36:30:95:97: 2e:74:c7:fe:78:ae:37:97:ec:49:59:ae:1c:45:4d: 46:86:cb:cf:9c:ff:b9:62:56:80:e2:c7:1e:97:5b: 2e:8d:84:3f:fb:c6:6f:a4:67:e3:b5:62:58:82:3f: 45:f9:75:fb:eb:2f:6e:a2:8f:98:e4:6c:0d:52:11: e9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:79:E8:25:39:19:F6:9B:47:10:E3:A6:E0:BC:CD:78:CC:20:B2:80 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6f:31:68:f7:51:65:fa:26:e6:da:69:13:28:cf:97:c2:9f: 1e:3a:08:52:7c:8f:cb:fd:cb:85:2c:a6:e4:e7:d1:9e:91:c3: ae:e6:71:14:c5:d9:dc:ff:54:d4:78:cb:46:1a:01:29:20:45: 95:87:a7:2e:21:f5:15:f4:6a:fd:1c:f2:ff:a1:d7:dd:d3:d9: 25:88:eb:a2:b6:5f:c4:67:1f:ff:ca:1a:a2:8c:c0:df:0e:ba: 2e:c7:fe:08:60:31:12:42:f4:c5:bf:1c:b2:55:0e:ba:e6:92: 34:55:ac:e3:a4:e2:89:b4:13:92:13:34:be:17:91:84:50:be: e9:89:50:0d:80:af:98:6b:21:c0:2d:b7:39:65:1e:36:ae:b3: d6:19:66:f0:19:c1:3f:4a:9a:f7:6d:79:15:ce:c5:ad:92:e2: ba:e1:c2:40:ae:50:79:81:75:9c:09:aa:3d:65:bf:08:84:50: 62:eb:ea:56:24:7f:a9:11:ef:e5:de:29:fc:eb:a0:da:83:8b: 37:f1:9b:01:0a:df:f2:24:ab:54:0f:bd:e7:b4:b7:00:34:c8: 83:8d:58:2b:51:ff:2e:68:b1:02:52:18:ec:3a:cd:be:63:4a: a6:b0:f3:3c:bb:32:c2:66:7e:39:e6:c7:52:82:69:e0:f9:03: 09:61:3b:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjUwNDA1MDAwMzA3WhcNMjUwNDEyMDAwMzA3WjAYMRYwFAYD VQQDEw02N2YwNzMzYi0wNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3X1jBnoSUIMV+VgQPd4Nri5+0GWFDhTJWOthOxjB1xGKLPXoFhOMwZMZmWk 9Vxr1f9owLMK5akV9S98kOxOqklEYK9a2lpfVQbQsCFzZO87xywxwgfq2yGUBb5g yI7k3GfB0KRBPImv+ezQj97FjiA0mCci5DGB8348iJ4vKo9OhzRGbsK0wdcp9XU1 j0DsXu08q4i8uB9of7ZKkEyw0AeLdyimgYoJhVmlVq4iOCJumlTVsTOOQd0L2tPE nTYwlZcudMf+eK43l+xJWa4cRU1GhsvPnP+5YlaA4scel1sujYQ/+8ZvpGfjtWJY gj9F+XX76y9uoo+Y5GwNUhHpEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl56CU5 GfabRxDjpuC8zXjMILKAMB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsbzFo91Fl+ibm2mkTKM+Xwp8eOghSfI/L/cuFLKbk59GekcOu5nEU xdnc/1TUeMtGGgEpIEWVh6cuIfUV9Gr9HPL/odfd09kliOuitl/EZx//yhqijMDf Droux/4IYDESQvTFvxyyVQ665pI0VazjpOKJtBOSEzS+F5GEUL7piVANgK+YayHA Lbc5ZR42rrPWGWbwGcE/Spr3bXkVzsWtkuK64cJArlB5gXWcCao9Zb8IhFBi6+pW JH+pEe/l3in866Dag4s38ZsBCt/yJKtUD73ntLcANMiDjVgrUf8uaLECUhjsOs2+ Y0qmsPM8uzLCZn455sdSgmng+QMJYTvI -----END CERTIFICATE-----Generated at Sun Apr 6 02:28:22 2025 by rpki-client