$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: 8cfQV9TT7vvbqRvCDWFobyJDrAJ6h497qks9lW7hNt0= Subject key identifier: 23:C4:73:13:B4:D2:70:CA:95:9F:E5:65:CF:4E:31:FD:45:08:8E:EB Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1BD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BBF Signing time: Fri 04 Apr 2025 16:16:41 +0000 Manifest this update: Fri 04 Apr 2025 16:16:40 +0000 Manifest next update: Fri 11 Apr 2025 16:16:40 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: vRCMT+9U3bkaUfyoMdytzryg7QuiHTOUoT0a3xw40cY=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7120 (0x1bd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20 Validity Not Before: Apr 4 16:16:40 2025 GMT Not After : Apr 11 16:16:40 2025 GMT Subject: CN=67f005e9-3d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:41:b3:33:9c:87:ed:a8:4a:d8:f2:03:9d: 5c:de:27:c8:0b:36:93:df:b2:4b:cb:2f:d6:37:87: 01:52:42:cc:be:4f:3d:d8:38:73:a0:4e:a8:f0:08: 00:20:cc:fc:0b:af:7e:99:20:72:e9:87:33:57:f2: bf:ca:48:f2:90:9a:15:77:0c:dc:d6:c6:4b:4e:7a: 64:e1:c2:bc:e4:b5:a0:8b:5a:59:af:23:43:dc:44: 08:16:dc:8f:50:c3:4e:de:c3:36:48:cc:e8:a3:32: 5f:18:67:0a:43:e6:c8:b6:21:fc:5a:59:c1:1f:d5: d4:ca:5f:be:6c:35:a4:4c:b7:f8:00:0c:6b:0e:76: ca:9e:83:e4:4a:6e:0f:67:e4:6f:51:e2:63:af:39: da:02:dd:99:d4:bc:57:0c:46:8d:bb:be:08:3f:ef: 36:40:d5:88:77:48:d4:a5:ef:02:e2:71:82:36:76: 21:8b:56:42:3f:6f:f4:bc:8f:6a:41:88:e2:ba:23: 9e:e5:d4:f2:65:66:70:57:9a:67:8d:78:33:c2:6f: c6:dc:a4:25:7f:83:16:fc:69:24:c3:9a:a4:74:f0: c7:1b:2b:20:50:9e:5b:36:0c:5a:c8:1f:2e:43:c5: 1e:fe:ea:18:a0:ad:34:62:67:3f:b5:1b:19:ce:73: 52:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C4:73:13:B4:D2:70:CA:95:9F:E5:65:CF:4E:31:FD:45:08:8E:EB X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:3c:6d:e1:5e:06:98:9b:f8:f0:81:82:14:d8:d9:b0:02:d9: 85:dd:bf:f1:a1:36:9e:ba:ce:c6:d7:8a:1e:6d:ac:a1:fe:0a: c4:9d:41:e4:ce:9a:a4:93:a7:42:c5:58:1e:1b:6c:3a:ad:cf: 27:a4:b6:27:dd:8c:0e:fa:6a:6a:f0:46:62:59:63:71:01:1a: e2:c1:2b:c8:d2:ab:db:d1:c3:f0:2d:b6:c9:84:71:49:d0:f8: 49:64:20:57:ca:33:3e:25:56:35:2a:b0:1f:ac:d3:27:a4:9c: d3:9b:5a:99:72:2e:d0:e5:ee:d6:9e:13:61:08:46:2a:7e:fc: f1:db:7a:ff:6a:65:52:a9:fa:1d:fd:5c:ab:ad:71:26:09:f8: cf:04:0a:81:c8:e2:c0:7f:d1:c7:95:3e:69:55:0d:9a:34:72: b9:65:df:fa:3a:76:ae:d5:40:72:42:71:d2:d3:04:9f:93:67: 84:22:3e:8e:30:e8:28:66:2b:a3:6f:31:27:89:8f:ef:7b:32: e9:0e:95:28:01:42:2e:80:dd:ad:36:4a:0a:af:89:9e:e3:2a: 34:3a:5f:fc:8f:63:bd:74:8a:b4:23:87:8e:5b:1d:7c:b9:56: af:79:5e:92:7e:13:d4:90:11:4a:28:1d:d4:b3:19:5f:94:8a: cb:0f:30:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNDA0MTYxNjQwWhcNMjUwNDExMTYxNjQwWjAYMRYwFAYD VQQDEw02N2YwMDVlOS0zZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfFBszOch+2oStjyA51c3ifICzaT37JLyy/WN4cBUkLMvk892DhzoE6o8AgA IMz8C69+mSBy6YczV/K/ykjykJoVdwzc1sZLTnpk4cK85LWgi1pZryND3EQIFtyP UMNO3sM2SMzoozJfGGcKQ+bItiH8WlnBH9XUyl++bDWkTLf4AAxrDnbKnoPkSm4P Z+RvUeJjrznaAt2Z1LxXDEaNu74IP+82QNWId0jUpe8C4nGCNnYhi1ZCP2/0vI9q QYjiuiOe5dTyZWZwV5pnjXgzwm/G3KQlf4MW/Gkkw5qkdPDHGysgUJ5bNgxayB8u Q8Ue/uoYoK00Ymc/tRsZznNSBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPEcxO0 0nDKlZ/lZc9OMf1FCI7rMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkPG3hXgaYm/jwgYIU2NmwAtmF3b/xoTaeus7G14oebayh/grEnUHk zpqkk6dCxVgeG2w6rc8npLYn3YwO+mpq8EZiWWNxARriwSvI0qvb0cPwLbbJhHFJ 0PhJZCBXyjM+JVY1KrAfrNMnpJzTm1qZci7Q5e7WnhNhCEYqfvzx23r/amVSqfod /VyrrXEmCfjPBAqByOLAf9HHlT5pVQ2aNHK5Zd/6Onau1UByQnHS0wSfk2eEIj6O MOgoZiujbzEniY/vezLpDpUoAUIugN2tNkoKr4me4yo0Ol/8j2O9dIq0I4eOWx18 uVaveV6SfhPUkBFKKB3UsxlflIrLDzAp -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:03 2025 by rpki-client