$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: 5GRy+C0N+Ibnda6d/Hq+X91bLjgDOyGxZQTWVBuc6/k= Subject key identifier: D8:BC:A6:B5:1F:7A:DD:06:6A:BB:7A:66:53:82:14:F4:D4:F7:2B:65 Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 045C Signing time: Tue 08 Apr 2025 23:53:09 +0000 Manifest this update: Tue 08 Apr 2025 23:53:08 +0000 Manifest next update: Tue 15 Apr 2025 23:53:08 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: 7FlpqVz8DVB4UTwlhHszFf4e19GRjpuIb6cQfAVpxtc=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: TOciMmg+YXh13dYfOrB14chWnhLKZ+JRHOQLiS8Jf5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9 Validity Not Before: Apr 8 23:53:08 2025 GMT Not After : Apr 15 23:53:08 2025 GMT Subject: CN=67f5b6e5-d35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f3:ac:85:42:c2:42:4d:80:99:15:68:d5:2c: e6:cb:b4:9a:9d:69:4f:1e:f6:11:17:b2:ee:8d:27: 5b:f6:5a:a1:d0:9c:8d:ed:0a:59:06:d6:28:48:90: ad:f1:10:3c:48:1e:6d:2c:dd:91:56:5f:0a:c6:21: 2d:fa:93:21:45:68:1c:63:09:a6:43:a3:a8:90:e3: 25:9f:28:90:05:fe:1c:c7:04:cb:3d:77:a3:e9:c1: ea:32:53:a0:c9:97:c2:71:b8:57:6f:9c:d9:45:db: 78:8f:82:29:3b:b1:96:91:90:41:ab:ea:f1:e4:8a: d7:3a:eb:e0:8a:3b:14:74:2f:4f:5e:23:07:c8:fc: d8:42:93:b5:19:b6:a8:21:be:e4:5d:6d:4e:6a:50: 3d:0d:c2:f6:b3:d1:11:66:ea:a4:39:03:6f:33:6f: de:22:6d:65:c0:a9:5d:95:1d:a8:ac:6f:c6:ee:1a: 57:87:08:bc:d8:80:e5:9c:1b:a2:d9:97:b9:19:5d: 32:fd:36:cc:82:f5:e1:23:98:db:73:e1:5a:45:e9: 83:73:da:64:2b:f6:51:b4:51:dd:f5:3b:62:8e:57: b3:2d:70:91:ff:1c:c7:24:34:00:76:14:8a:8f:69: e0:d3:02:46:9d:f7:b9:17:b6:76:3a:1c:e9:95:81: 92:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BC:A6:B5:1F:7A:DD:06:6A:BB:7A:66:53:82:14:F4:D4:F7:2B:65 X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:d4:b1:9a:fa:f0:c3:3f:78:06:40:80:8b:d9:b7:8e:8e:33: 05:f1:87:ca:92:29:fb:63:cd:db:d5:59:51:60:d7:6a:7f:86: 20:31:42:77:62:12:ee:2b:18:0c:69:f4:5c:45:29:6c:5c:ef: 78:88:9d:7f:97:f8:dc:95:4d:7f:13:c2:ab:d0:8c:ec:30:99: be:36:14:9e:63:ed:4e:54:89:e3:08:91:62:a1:cc:fc:1c:88: c3:30:8e:60:b0:8a:93:6a:49:1d:3d:e8:15:ac:4a:55:f4:9e: 82:04:e5:ab:0f:f2:1a:a5:1d:b9:8f:ca:0f:2e:da:b3:b7:41: 2c:6b:42:a6:0e:17:56:43:5b:35:41:4e:ff:d8:d8:e6:9e:55: cc:1e:5e:2d:a2:b6:42:69:51:4d:88:98:7b:90:da:3b:ae:b2: e4:3c:d6:41:95:1a:f7:10:80:1d:3c:6f:0f:de:54:be:5e:db: c1:8e:26:71:a3:cc:3a:8c:e7:86:a7:cb:86:84:b0:46:d7:7e: ee:c6:8e:34:93:46:87:68:bd:82:c9:0b:f9:66:07:d2:40:97: f5:54:ca:36:9d:3e:4c:ee:0e:52:c6:6c:21:94:47:cb:7d:e1: 0b:cd:24:75:c8:c0:d4:1b:f9:2c:90:6f:ab:5e:c1:14:cd:dc: 72:97:6e:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjUwNDA4MjM1MzA4WhcNMjUwNDE1MjM1MzA4WjAYMRYwFAYD VQQDEw02N2Y1YjZlNS1kMzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfOshULCQk2AmRVo1Szmy7SanWlPHvYRF7LujSdb9lqh0JyN7QpZBtYoSJCt 8RA8SB5tLN2RVl8KxiEt+pMhRWgcYwmmQ6OokOMlnyiQBf4cxwTLPXej6cHqMlOg yZfCcbhXb5zZRdt4j4IpO7GWkZBBq+rx5IrXOuvgijsUdC9PXiMHyPzYQpO1Gbao Ib7kXW1OalA9DcL2s9ERZuqkOQNvM2/eIm1lwKldlR2orG/G7hpXhwi82IDlnBui 2Ze5GV0y/TbMgvXhI5jbc+FaRemDc9pkK/ZRtFHd9TtijlezLXCR/xzHJDQAdhSK j2ng0wJGnfe5F7Z2OhzplYGSzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi8prUf et0Gart6ZlOCFPTU9ytlMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU1LGa+vDDP3gGQICL2beOjjMF8YfKkin7Y83b1VlRYNdqf4YgMUJ3 YhLuKxgMafRcRSlsXO94iJ1/l/jclU1/E8Kr0IzsMJm+NhSeY+1OVInjCJFiocz8 HIjDMI5gsIqTakkdPegVrEpV9J6CBOWrD/IapR25j8oPLtqzt0Esa0KmDhdWQ1s1 QU7/2NjmnlXMHl4torZCaVFNiJh7kNo7rrLkPNZBlRr3EIAdPG8P3lS+XtvBjiZx o8w6jOeGp8uGhLBG137uxo40k0aHaL2CyQv5ZgfSQJf1VMo2nT5M7g5SxmwhlEfL feELzSR1yMDUG/kskG+rXsEUzdxyl26j -----END CERTIFICATE-----Generated at Fri Apr 11 18:20:48 2025 by rpki-client