$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: R4zPDWEM8QSSKz+dWl+mjwJu07lQgS+rFS6yOL0aLBc= Subject key identifier: 10:4E:30:39:46:5F:CF:D3:6B:F0:79:0C:A6:6E:B6:4D:FB:8B:7F:09 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0C6D Signing time: Fri 04 Apr 2025 18:22:57 +0000 Manifest this update: Fri 04 Apr 2025 18:22:57 +0000 Manifest next update: Fri 11 Apr 2025 18:22:56 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: lyPMpRnG+CdqX42l3rXxb0NTgs3ttvYd2FdUfejyYf8=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB Validity Not Before: Apr 4 18:22:57 2025 GMT Not After : Apr 11 18:22:56 2025 GMT Subject: CN=67f02381-8689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ea:63:56:90:d9:15:60:9d:e7:81:0c:93:87: 2a:8f:92:b2:12:8e:97:21:ee:4c:2b:07:d1:53:9f: ae:0f:12:f3:fd:9f:d5:d9:14:61:8c:f5:9c:74:9f: 58:10:48:ab:4a:ef:83:61:bb:85:58:79:f5:9f:e0: 14:25:64:71:57:65:03:12:50:e8:42:61:5f:60:11: 17:45:54:03:93:86:32:d1:18:5c:4e:af:f5:0a:3f: 3a:c0:3b:70:da:dc:a7:3d:d5:3a:71:77:af:b7:4d: 3f:8a:62:02:84:82:4a:bc:9d:ee:f3:15:f3:6f:23: 77:34:77:79:eb:3b:11:fe:36:9e:03:2c:65:e1:c2: c5:be:5a:02:3d:d1:5e:d7:e3:2b:a3:78:c1:38:3a: e1:c2:be:59:03:fb:60:2a:25:22:6c:5b:f3:ab:1f: 3d:30:9a:5a:2f:b1:36:36:cb:c5:0d:42:e8:43:10: 6f:0a:ed:66:34:50:1b:16:73:a6:f9:e8:c7:89:a0: 96:a4:45:84:94:5c:44:5f:6d:43:3e:da:d0:a1:06: 0c:49:fc:c2:fc:1f:a2:e8:aa:7e:a9:11:89:14:df: b5:77:42:b6:e8:71:7e:83:83:86:8b:f4:6c:9d:eb: f8:91:ab:f4:e9:8b:52:89:cd:95:cb:5c:64:96:11: d3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4E:30:39:46:5F:CF:D3:6B:F0:79:0C:A6:6E:B6:4D:FB:8B:7F:09 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:78:3e:7d:73:fd:7a:e8:c9:94:89:18:4f:cd:44:4e:56:ff: a0:cc:79:02:9f:7c:b8:3a:1c:7f:78:8a:75:2a:7a:38:86:ef: c6:8a:11:5f:e6:03:7b:6b:7f:f3:1e:8c:f2:b5:5c:d4:80:e0: 48:c9:91:8e:9c:7d:2a:5a:40:cd:8b:79:d5:a8:e0:9d:73:c0: 82:6b:1a:48:83:a3:14:e7:d3:d2:8c:78:58:00:b4:71:6a:a1: 64:b8:d9:ac:78:a5:50:32:12:90:11:6e:85:5d:6d:32:e8:5a: 6f:9a:a0:29:8c:7b:84:bf:58:bc:1c:96:ac:f2:2c:92:ba:31: 8b:8d:9a:b2:c0:17:a9:a0:49:65:ca:4c:ea:4c:ea:98:be:0e: b7:56:5b:81:be:26:87:c9:5f:d4:d9:92:25:b4:d9:77:68:b4: 1f:c8:0d:38:19:13:9c:85:be:94:c3:a4:7c:94:0c:c8:9e:a3: 42:5d:d9:fe:ab:5e:b8:70:f4:be:50:ee:38:78:9e:0a:03:75: ab:d6:5b:1a:de:e5:94:13:03:3e:4a:99:a7:7c:de:8c:c7:b4: 25:11:6e:40:ea:01:a8:2b:ec:4f:53:da:1b:cb:fb:25:fb:19: c6:8b:89:39:cb:10:ea:49:9f:bd:e4:48:70:9b:6d:78:19:77: 18:09:fc:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUwNDA0MTgyMjU3WhcNMjUwNDExMTgyMjU2WjAYMRYwFAYD VQQDEw02N2YwMjM4MS04Njg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwepjVpDZFWCd54EMk4cqj5KyEo6XIe5MKwfRU5+uDxLz/Z/V2RRhjPWcdJ9Y EEirSu+DYbuFWHn1n+AUJWRxV2UDElDoQmFfYBEXRVQDk4Yy0RhcTq/1Cj86wDtw 2tynPdU6cXevt00/imIChIJKvJ3u8xXzbyN3NHd56zsR/jaeAyxl4cLFvloCPdFe 1+Mro3jBODrhwr5ZA/tgKiUibFvzqx89MJpaL7E2NsvFDULoQxBvCu1mNFAbFnOm +ejHiaCWpEWElFxEX21DPtrQoQYMSfzC/B+i6Kp+qRGJFN+1d0K26HF+g4OGi/Rs nev4kav06YtSic2Vy1xklhHTnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBOMDlG X8/Ta/B5DKZutk37i38JMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWeD59c/166MmUiRhPzUROVv+gzHkCn3y4Ohx/eIp1Kno4hu/GihFf 5gN7a3/zHozytVzUgOBIyZGOnH0qWkDNi3nVqOCdc8CCaxpIg6MU59PSjHhYALRx aqFkuNmseKVQMhKQEW6FXW0y6FpvmqApjHuEv1i8HJas8iySujGLjZqywBepoEll ykzqTOqYvg63VluBviaHyV/U2ZIltNl3aLQfyA04GROchb6Uw6R8lAzInqNCXdn+ q164cPS+UO44eJ4KA3Wr1lsa3uWUEwM+SpmnfN6Mx7QlEW5A6gGoK+xPU9oby/sl +xnGi4k5yxDqSZ+95Ehwm214GXcYCfzZ -----END CERTIFICATE-----Generated at Sat Apr 5 23:18:40 2025 by rpki-client