$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft File: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft (raw, json) Hash identifier: CoEOJp4uSFoenX4gl33xGOJV4qzknzJQ0xzXYLE6CeY= Subject key identifier: E7:7F:7C:2C:DD:01:93:29:F2:4A:51:E5:F3:C7:40:DC:2F:A1:46:D5 Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft Manifest number: 0107 Signing time: Sat 05 Apr 2025 04:33:38 +0000 Manifest this update: Sat 05 Apr 2025 04:33:38 +0000 Manifest next update: Sat 12 Apr 2025 04:33:38 +0000 Files and hashes: 1: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl (hash: WLmqLzKZ5cyzq1awEQGCXImC84C4GMeTKSkX2Vm+kBo=) 2: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (hash: LRpyZatatX4jc3xI3kv4CvOw5fWMnbigjWqOElPjGoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2 Validity Not Before: Apr 5 04:33:38 2025 GMT Not After : Apr 12 04:33:38 2025 GMT Subject: CN=67f0b2a2-21f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:e4:c1:58:2a:b0:3d:0f:ab:2d:b8:c8:8d: fb:f5:8d:2a:bd:95:08:82:fe:ab:14:75:18:bf:95: 9d:56:aa:af:e2:d2:3b:92:12:91:3d:ea:0b:0a:c6: b7:0c:c6:47:b1:bd:7a:1d:cc:5f:7c:30:99:e1:ee: fe:83:59:85:e4:03:81:90:fa:0a:65:be:8f:ab:d9: 6e:43:da:c8:b0:43:99:c0:53:39:17:d1:c6:9f:62: f9:52:04:8e:54:f0:bb:1c:85:80:52:63:ce:9b:05: d2:06:90:8e:7e:21:ec:72:bc:ac:cc:43:93:ca:b6: 40:22:e7:22:a5:0b:32:d2:5f:86:89:7a:ae:dd:c3: 12:c6:cf:26:17:0b:d9:45:15:84:c0:44:82:2e:4f: 42:9e:04:1f:87:a3:8b:6b:62:7f:01:6b:80:03:0c: 96:ee:f1:de:38:6d:69:6e:ad:5a:57:42:f1:8b:8c: af:3b:b4:d8:66:5f:8c:67:31:1a:55:24:6f:26:8e: a1:64:2a:7b:02:e6:75:d7:f6:cb:74:06:60:9d:96: 22:c1:3e:76:03:04:0f:d7:7d:13:1d:9b:e1:34:08: b0:7b:fd:b3:5f:62:d9:4c:56:be:b4:03:23:52:c7: 92:ee:6d:52:5e:3e:24:b4:98:dd:a8:20:94:83:df: 5e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7F:7C:2C:DD:01:93:29:F2:4A:51:E5:F3:C7:40:DC:2F:A1:46:D5 X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:67:de:aa:16:e5:ee:e0:65:11:98:b0:a0:1e:e9:b5:f5:ce: 59:66:af:9d:13:11:d0:27:72:37:c7:fd:49:70:54:54:01:e1: ee:67:63:e2:e7:ec:06:14:2c:e1:29:51:ca:ea:c6:93:ee:da: f6:b5:79:0e:b1:17:af:c4:0c:a6:53:74:c7:10:34:c1:46:6a: ee:e3:79:01:46:95:16:db:49:d2:d8:44:49:59:51:86:9d:dd: 76:fb:7b:01:02:bf:15:10:8d:2f:db:01:a5:8a:ea:49:36:9c: 4c:69:a1:44:e7:f2:af:fb:27:2b:9e:7b:f4:39:75:70:17:1b: ac:e2:70:d0:10:e2:93:d5:0d:ec:f4:07:7b:a6:5e:17:97:4f: 0e:03:ef:e0:72:bd:ca:ac:f6:f3:b0:bc:5e:29:0a:36:51:79: 31:b9:07:4d:88:cc:ab:f7:6e:50:25:e0:80:4f:2e:a9:f3:d8: f0:45:bf:03:da:12:2c:18:63:76:29:e6:2d:d8:78:d0:03:93: 2e:27:fa:0b:3a:be:2b:69:59:0a:07:53:4a:73:0d:51:08:ae: e7:df:3e:a1:2a:d5:31:33:a1:83:70:3e:32:ed:79:f5:cf:56: c7:c9:e9:4e:ec:34:4c:5e:93:e6:ca:28:3e:76:49:00:d4:08: 92:9f:be:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1QTIxMTAvBgNVBAUTKEY1QjExNzA1NEFGNTA5QzJDMzMzNjlEQTk2MUY0NDZE RENBQjgzNDIwHhcNMjUwNDA1MDQzMzM4WhcNMjUwNDEyMDQzMzM4WjAYMRYwFAYD VQQDEw02N2YwYjJhMi0yMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj/kwVgqsD0Pqy24yI379Y0qvZUIgv6rFHUYv5WdVqqv4tI7khKRPeoLCsa3 DMZHsb16HcxffDCZ4e7+g1mF5AOBkPoKZb6Pq9luQ9rIsEOZwFM5F9HGn2L5UgSO VPC7HIWAUmPOmwXSBpCOfiHscryszEOTyrZAIucipQsy0l+GiXqu3cMSxs8mFwvZ RRWEwESCLk9CngQfh6OLa2J/AWuAAwyW7vHeOG1pbq1aV0Lxi4yvO7TYZl+MZzEa VSRvJo6hZCp7AuZ11/bLdAZgnZYiwT52AwQP130THZvhNAiwe/2zX2LZTFa+tAMj UseS7m1SXj4ktJjdqCCUg99ekQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd/fCzd AZMp8kpR5fPHQNwvoUbVMB8GA1UdIwQYMBaAFPWxFwVK9QnCwzNp2pYfRG3cq4NC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTVBMi80NjcwRUFBQzk4 RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85YkVYQlVyMUNjTERNMm5hbGg5RWJkeXJn MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTVBMi80NjcwRUFBQzk4RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85YkVYQlVyMUNj TERNMm5hbGg5RWJkeXJnMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqZ96qFuXu4GURmLCgHum19c5ZZq+dExHQJ3I3x/1JcFRUAeHuZ2Pi 5+wGFCzhKVHK6saT7tr2tXkOsRevxAymU3THEDTBRmru43kBRpUW20nS2ERJWVGG nd12+3sBAr8VEI0v2wGliupJNpxMaaFE5/Kv+ycrnnv0OXVwFxus4nDQEOKT1Q3s 9Ad7pl4Xl08OA+/gcr3KrPbzsLxeKQo2UXkxuQdNiMyr925QJeCATy6p89jwRb8D 2hIsGGN2KeYt2HjQA5MuJ/oLOr4raVkKB1NKcw1RCK7n3z6hKtUxM6GDcD4y7Xn1 z1bHyelO7DRMXpPmyig+dkkA1AiSn74C -----END CERTIFICATE-----Generated at Sat Apr 5 13:25:14 2025 by rpki-client