$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft File: v49Do1Dk9qJgvwPtS9_BqB2itaE.mft (raw, json) Hash identifier: O6dZKI6NGLILeYpfxAdk2txKD/scULDffsxDevgZstU= Subject key identifier: FE:CE:A8:E6:6B:2E:6D:12:44:85:AD:54:54:CC:DC:19:C3:3E:96:F9 Authority key identifier: BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1 Certificate issuer: /CN=A91FAB62/serialNumber=BF8F43A350E4F6A260BF03ED4BDFC1A81DA2B5A1 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft Manifest number: 0637 Signing time: Fri 28 Mar 2025 23:06:22 +0000 Manifest this update: Fri 28 Mar 2025 23:06:22 +0000 Manifest next update: Fri 04 Apr 2025 23:06:22 +0000 Files and hashes: 1: v49Do1Dk9qJgvwPtS9_BqB2itaE.crl (hash: vlCjL0KZRJgPnYj6R2aoOwvciGxCobNtqH8YkwFll+A=) 2: 606DB4B298D111EB84F5A23CC4F9AE02.roa (hash: d5GPHUQ6PbzbALE1pusneP0He2eAPmJTteAnoAOf/Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.crl rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAB62 Validity Not Before: Mar 28 23:06:22 2025 GMT Not After : Apr 4 23:06:22 2025 GMT Subject: CN=67e72b6e-b24f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a6:4a:1a:62:6e:0d:f5:a9:7d:30:79:ac:e9: b8:3e:71:d2:9d:89:47:8f:12:37:c4:f3:c8:5c:f7: a4:09:4d:3c:c4:88:b4:fc:12:7d:58:69:a1:80:68: aa:af:22:95:64:3f:1d:57:13:8e:81:07:9e:3b:d0: 35:58:f2:90:3e:63:54:ea:6c:a6:10:1a:52:f3:90: dc:93:d6:cf:bf:21:4c:5b:c7:34:5e:bd:81:43:20: 59:58:30:d8:f9:44:da:f7:e8:10:67:44:c1:6a:dc: 79:a0:52:ed:7c:b9:16:99:93:65:fd:c5:26:be:d2: 81:ea:ce:4b:15:9c:10:00:c9:f8:bb:4d:d0:5e:1a: f1:c2:1c:b2:2e:40:a1:70:6b:4e:ec:f1:a3:0a:e3: 38:1e:7d:cc:05:2e:b2:3a:8b:1e:2d:9a:ab:39:32: 32:49:5e:b0:5b:db:8f:f9:ba:87:d2:cd:e1:90:56: ae:a6:b4:57:90:35:d2:19:de:ae:13:5e:15:9b:cc: fe:00:ce:59:87:f8:62:f1:09:ca:f5:c2:4f:a8:16: 8e:4c:20:40:99:30:76:e1:cd:49:f2:0c:bc:00:fa: 66:f7:bb:34:e5:89:bb:60:fa:a4:53:44:af:2e:af: ea:97:ff:f4:c2:fc:9c:33:e3:0d:3b:02:53:4e:39: 5a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CE:A8:E6:6B:2E:6D:12:44:85:AD:54:54:CC:DC:19:C3:3E:96:F9 X509v3 Authority Key Identifier: keyid:BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0b:9c:5c:31:d5:37:fd:1e:0c:c2:4d:8d:81:55:74:a4:d6: a0:06:14:56:b6:e1:ae:6f:19:bf:57:d1:9c:0b:18:b7:96:4f: 1a:ed:22:f4:38:7d:ee:cf:ff:8a:f3:a0:c9:03:2f:ed:17:a3: 34:de:12:02:76:02:aa:f5:d0:3c:8f:21:2b:f9:e0:30:bf:fc: 1e:62:4b:67:0d:eb:9c:a5:56:7a:6a:dd:45:cd:10:dd:05:a9: b7:87:d0:47:23:ee:78:a3:c3:d6:02:6e:ee:c3:f8:c4:3b:9a: a4:0b:90:b3:62:e2:1c:52:67:ee:fd:7a:eb:4b:5a:06:5a:33: 61:c6:f0:5d:5b:9e:b8:08:88:2a:3b:05:ad:55:53:18:0d:39: eb:b7:34:f3:ae:3d:71:a6:00:2a:f8:bb:0e:80:39:38:27:d7: f3:c0:f0:2a:0a:ed:db:1c:5a:46:9d:1b:3d:e5:d2:97:f4:57: 0a:e5:4b:22:84:0e:98:61:b3:33:c9:cb:77:d3:3f:24:49:7d: e5:ac:1a:21:66:1d:f2:f5:87:c5:57:0c:fc:eb:b2:06:99:7c: 30:fd:6d:6a:5a:17:2d:6c:2c:5e:95:17:db:24:37:a7:b4:5b: 4d:c7:cf:8d:99:ea:0c:e1:1e:35:a2:ce:30:1d:68:32:e2:6f: 6d:91:94:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCNjIxMTAvBgNVBAUTKEJGOEY0M0EzNTBFNEY2QTI2MEJGMDNFRDRCREZDMUE4 MURBMkI1QTEwHhcNMjUwMzI4MjMwNjIyWhcNMjUwNDA0MjMwNjIyWjAYMRYwFAYD VQQDEw02N2U3MmI2ZS1iMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaZKGmJuDfWpfTB5rOm4PnHSnYlHjxI3xPPIXPekCU08xIi0/BJ9WGmhgGiq ryKVZD8dVxOOgQeeO9A1WPKQPmNU6mymEBpS85Dck9bPvyFMW8c0Xr2BQyBZWDDY +UTa9+gQZ0TBatx5oFLtfLkWmZNl/cUmvtKB6s5LFZwQAMn4u03QXhrxwhyyLkCh cGtO7PGjCuM4Hn3MBS6yOoseLZqrOTIySV6wW9uP+bqH0s3hkFauprRXkDXSGd6u E14Vm8z+AM5Zh/hi8QnK9cJPqBaOTCBAmTB24c1J8gy8APpm97s05Ym7YPqkU0Sv Lq/ql//0wvycM+MNOwJTTjlarQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7OqOZr Lm0SRIWtVFTM3BnDPpb5MB8GA1UdIwQYMBaAFL+PQ6NQ5PaiYL8D7UvfwagdorWh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUI2Mi84MkU5M0YyQzk4 Q0YxMUVCQjc1NzJBM0FDNEY5QUUwMi92NDlEbzFEazlxSmd2d1B0UzlfQnFCMml0 YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y0OURvMURrOXFKZ3Z3UHRTOV9CcUIyaXRhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUI2Mi84MkU5M0YyQzk4Q0YxMUVCQjc1NzJBM0FDNEY5QUUwMi92NDlEbzFEazlx Smd2d1B0UzlfQnFCMml0YUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzC5xcMdU3/R4Mwk2NgVV0pNagBhRWtuGubxm/V9GcCxi3lk8a7SL0 OH3uz/+K86DJAy/tF6M03hICdgKq9dA8jyEr+eAwv/weYktnDeucpVZ6at1FzRDd Bam3h9BHI+54o8PWAm7uw/jEO5qkC5CzYuIcUmfu/XrrS1oGWjNhxvBdW564CIgq OwWtVVMYDTnrtzTzrj1xpgAq+LsOgDk4J9fzwPAqCu3bHFpGnRs95dKX9FcK5Usi hA6YYbMzyct30z8kSX3lrBohZh3y9YfFVwz867IGmXww/W1qWhctbCxelRfbJDen tFtNx8+NmeoM4R41os4wHWgy4m9tkZQ5 -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:20 2025 by rpki-client