$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: CuDzHJT4h0Cj+ljhc1dWqZ507fDepepAs5Oj2mX5vME= Subject key identifier: EC:A8:59:72:FD:1F:86:D5:05:1B:65:DA:26:C3:00:77:D7:D0:6D:1E Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05A1 Signing time: Fri 28 Mar 2025 23:27:17 +0000 Manifest this update: Fri 28 Mar 2025 23:27:16 +0000 Manifest next update: Fri 04 Apr 2025 23:27:16 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: HxEPgVVVp2jWKVx96t0hICKYWYVbBZEomDVBhXqgjDY=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: 5vQ2oiYzVHXdBsJ9DpcL2UsxvsKvGcybvYrqXzoGtt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA Validity Not Before: Mar 28 23:27:16 2025 GMT Not After : Apr 4 23:27:16 2025 GMT Subject: CN=67e73055-dd78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:b8:df:f3:b1:81:bb:27:e3:25:c6:4e:36: 63:a6:19:e7:88:3f:66:96:4e:15:c1:eb:4e:5b:e5: 65:8a:a7:b6:23:3f:92:ea:9d:a8:87:f3:8f:ad:72: a0:e9:45:58:44:02:87:0b:1b:ec:fb:61:3b:bd:57: 2a:9f:11:11:d8:f4:90:92:88:a1:c4:92:6d:7b:b3: ee:5d:2a:bf:78:28:61:e9:f0:a8:65:9c:25:02:aa: ac:0f:83:63:c2:9a:01:f6:7e:d7:fd:63:50:17:0f: 91:a0:cf:98:6d:de:a3:0e:29:aa:41:e9:a2:33:76: e3:47:71:7b:10:48:49:ac:93:69:e2:25:0b:ad:2a: 39:4d:32:49:9a:9a:b5:32:ec:12:f6:18:77:7c:72: 51:59:57:a3:5b:f1:2a:53:d1:df:5e:c3:af:55:74: f7:c6:21:c4:cb:d0:41:48:d3:36:eb:ec:09:92:44: 00:e1:00:11:90:c0:4b:bb:7a:00:a4:a3:5a:58:0a: a8:92:d8:b9:46:d0:0c:9a:51:89:66:3f:b0:23:d2: 96:4a:5a:34:90:d7:5c:d5:03:ac:51:75:18:8e:fb: bc:59:ba:0b:f1:03:aa:0c:ff:0f:c3:17:28:9f:ce: 05:fa:d3:a0:1e:80:ad:0d:87:e5:63:1b:bb:75:2f: e1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A8:59:72:FD:1F:86:D5:05:1B:65:DA:26:C3:00:77:D7:D0:6D:1E X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:af:b7:27:1b:6a:49:ef:24:27:3b:34:86:43:84:78:f7:6c: 11:a3:2a:4d:2e:d7:bb:fc:6f:92:4d:9b:9b:07:2a:e5:2c:68: a1:03:5f:b2:8d:be:e3:d7:0a:73:d3:ef:ee:83:3c:9e:ea:60: 49:69:0a:a5:39:1d:21:5e:10:ce:6c:97:dd:d9:ba:37:cc:5d: 13:64:38:ed:b1:97:8e:54:c1:9d:14:7a:08:d2:14:13:b0:68: 2a:91:ab:c6:8f:37:98:b1:bc:b2:8f:a0:27:3c:1e:49:c6:43: 44:dd:3f:f7:03:96:7c:c3:bd:f9:25:77:87:8e:2f:cc:f9:e3: f6:fd:6a:4e:61:6b:46:01:a5:31:07:f5:ce:38:ec:ed:dc:b1: 32:25:aa:2b:de:d7:4c:93:e0:a3:4b:6c:7a:f7:4d:aa:39:e3: 72:59:02:59:65:99:b6:55:97:b5:00:20:4d:75:77:6a:05:4d: 63:1f:27:40:76:21:79:75:3a:e7:52:12:68:1c:be:72:ab:60: 0b:5f:f4:5c:64:90:f4:68:2e:9e:85:60:ad:56:d5:d2:cc:2e: 31:0d:6e:c9:03:e7:18:f0:74:06:9a:23:1e:22:26:00:4f:fb: 73:d5:b2:7f:c4:ec:73:00:8e:b2:a6:c7:e2:fe:2f:f0:82:63: 7d:18:26:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwMzI4MjMyNzE2WhcNMjUwNDA0MjMyNzE2WjAYMRYwFAYD VQQDEw02N2U3MzA1NS1kZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvve43/Oxgbsn4yXGTjZjphnniD9mlk4VwetOW+Vliqe2Iz+S6p2oh/OPrXKg 6UVYRAKHCxvs+2E7vVcqnxER2PSQkoihxJJte7PuXSq/eChh6fCoZZwlAqqsD4Nj wpoB9n7X/WNQFw+RoM+Ybd6jDimqQemiM3bjR3F7EEhJrJNp4iULrSo5TTJJmpq1 MuwS9hh3fHJRWVejW/EqU9HfXsOvVXT3xiHEy9BBSNM26+wJkkQA4QARkMBLu3oA pKNaWAqokti5RtAMmlGJZj+wI9KWSlo0kNdc1QOsUXUYjvu8WboL8QOqDP8Pwxco n84F+tOgHoCtDYflYxu7dS/hjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyoWXL9 H4bVBRtl2ibDAHfX0G0eMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbr7cnG2pJ7yQnOzSGQ4R492wRoypNLte7/G+STZubByrlLGihA1+y jb7j1wpz0+/ugzye6mBJaQqlOR0hXhDObJfd2bo3zF0TZDjtsZeOVMGdFHoI0hQT sGgqkavGjzeYsbyyj6AnPB5JxkNE3T/3A5Z8w735JXeHji/M+eP2/WpOYWtGAaUx B/XOOOzt3LEyJaor3tdMk+CjS2x6902qOeNyWQJZZZm2VZe1ACBNdXdqBU1jHydA diF5dTrnUhJoHL5yq2ALX/RcZJD0aC6ehWCtVtXSzC4xDW7JA+cY8HQGmiMeIiYA T/tz1bJ/xOxzAI6ypsfi/i/wgmN9GCYC -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:47 2025 by rpki-client