$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: 1ixN6hFJEwH5F5TW1njHoV6mNRhdEmlwp7FGinIch0k= Subject key identifier: 3B:37:6C:DA:D4:14:1C:CE:4E:10:84:1E:E2:68:C5:BF:AC:3F:2F:06 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 09A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 0998 Signing time: Wed 02 Apr 2025 20:07:20 +0000 Manifest this update: Wed 02 Apr 2025 20:07:20 +0000 Manifest next update: Wed 09 Apr 2025 20:07:20 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: r1Zxm4Un408PERYz/xbjm/PlylgiDEoS4u3wJPEUoxM=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2464 (0x9a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2 Validity Not Before: Apr 2 20:07:20 2025 GMT Not After : Apr 9 20:07:20 2025 GMT Subject: CN=67ed98f8-0f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2f:3e:e6:df:b8:d6:0a:f6:0f:27:87:14:d2: d7:bf:9b:dd:4c:cf:47:26:07:8c:e1:67:37:ac:3b: 6e:2c:68:67:6a:eb:6f:af:e4:e3:22:ed:ea:08:c0: 4e:1f:81:f5:f8:56:a9:c5:37:ed:4c:e7:ef:fb:99: 0c:3e:b1:ea:52:36:51:55:6b:66:81:df:c7:b1:16: 06:03:96:db:c1:b8:9c:78:e5:ca:20:d9:56:cb:bd: 8a:56:13:be:e8:ba:f6:59:0e:f5:33:09:a8:e0:7d: 69:8a:31:c2:73:73:34:19:54:e7:66:47:38:42:9c: 58:c5:20:9d:02:bf:58:16:f4:29:2b:86:27:0c:48: 9e:c1:66:fc:e4:aa:d2:84:e4:46:21:fc:34:23:5f: 99:63:ed:f5:7b:d2:8c:cd:86:ca:ff:0f:f8:e1:82: dc:b9:40:18:39:61:e1:5c:b2:82:97:a4:c0:60:e7: 19:3e:60:16:54:7e:df:07:0b:db:b0:2e:58:cf:3b: 72:63:14:1f:2c:bd:ad:36:8b:a8:df:9c:9e:50:19: d6:4e:2e:52:ee:71:0c:de:09:9a:a9:37:39:c5:4b: 50:14:d2:a9:6e:9b:c8:39:01:79:98:d0:29:c6:08: e3:a3:ca:ac:9e:58:2f:02:0f:dc:36:80:fa:c3:32: 83:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:37:6C:DA:D4:14:1C:CE:4E:10:84:1E:E2:68:C5:BF:AC:3F:2F:06 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:92:f8:b0:7a:94:a9:f3:a5:e7:62:66:97:8c:9c:c1:b9:b0: 0b:87:6a:88:61:f8:a3:ab:07:f9:48:f7:60:ab:74:74:18:76: 23:45:ac:de:d3:3f:13:ec:5e:da:1c:fc:07:9d:9b:9b:97:a6: df:46:91:19:ae:e9:db:ac:7e:3d:3a:05:2e:eb:27:f1:e7:fd: 2b:9f:7d:33:f0:74:79:98:45:83:5b:14:9a:c0:1b:11:ab:52: 3e:05:ac:a0:98:47:7a:3f:7b:bb:8d:07:67:ca:bd:82:78:8f: b2:ae:47:b7:00:35:56:bd:6b:ef:28:1d:d2:4e:db:07:19:4f: 16:3f:bd:da:8b:e5:c2:1c:ef:6c:3f:59:f1:54:2a:ef:65:3b: ac:57:eb:6c:23:2b:ae:b8:2e:2b:41:a4:3b:bb:66:c5:8c:c6: 1f:cf:dd:3e:c8:f4:88:e2:7a:f4:8e:b5:c6:a4:3a:16:e6:67: c1:4a:8c:ad:49:64:da:07:c9:6b:38:9e:51:76:b7:26:10:c6: 0a:26:ea:63:b1:a5:9e:81:57:2f:52:e8:b1:d1:b8:97:af:3d: 11:3c:6a:96:d1:c3:17:8e:01:c7:d8:68:af:e2:2c:f2:6d:39: c9:61:a7:20:03:a4:2b:51:11:3f:97:f4:77:ca:cc:c3:99:38: f5:8b:60:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUwNDAyMjAwNzIwWhcNMjUwNDA5MjAwNzIwWjAYMRYwFAYD VQQDEw02N2VkOThmOC0wZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1C8+5t+41gr2DyeHFNLXv5vdTM9HJgeM4Wc3rDtuLGhnautvr+TjIu3qCMBO H4H1+FapxTftTOfv+5kMPrHqUjZRVWtmgd/HsRYGA5bbwbiceOXKINlWy72KVhO+ 6Lr2WQ71Mwmo4H1pijHCc3M0GVTnZkc4QpxYxSCdAr9YFvQpK4YnDEiewWb85KrS hORGIfw0I1+ZY+31e9KMzYbK/w/44YLcuUAYOWHhXLKCl6TAYOcZPmAWVH7fBwvb sC5YzztyYxQfLL2tNouo35yeUBnWTi5S7nEM3gmaqTc5xUtQFNKpbpvIOQF5mNAp xgjjo8qsnlgvAg/cNoD6wzKD2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs3bNrU FBzOThCEHuJoxb+sPy8GMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+kviwepSp86XnYmaXjJzBubALh2qIYfijqwf5SPdgq3R0GHYjRaze 0z8T7F7aHPwHnZubl6bfRpEZrunbrH49OgUu6yfx5/0rn30z8HR5mEWDWxSawBsR q1I+BaygmEd6P3u7jQdnyr2CeI+yrke3ADVWvWvvKB3STtsHGU8WP73ai+XCHO9s P1nxVCrvZTusV+tsIyuuuC4rQaQ7u2bFjMYfz90+yPSI4nr0jrXGpDoW5mfBSoyt SWTaB8lrOJ5RdrcmEMYKJupjsaWegVcvUuix0biXrz0RPGqW0cMXjgHH2Giv4izy bTnJYacgA6QrURE/l/R3yszDmTj1i2CK -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:49 2025 by rpki-client