$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft (raw, json) Hash identifier: bjlYztqdvJSeUkvZDSQmpScbe7Vr/AEQem0xY1y1E2A= Subject key identifier: AC:89:D1:93:1C:CC:1D:CB:28:7E:4B:1A:49:33:31:C4:D7:2B:DE:E2 Authority key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 Certificate issuer: /CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Certificate serial: 02D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft Manifest number: 02D5 Signing time: Sat 29 Mar 2025 01:38:26 +0000 Manifest this update: Sat 29 Mar 2025 01:38:25 +0000 Manifest next update: Sat 05 Apr 2025 01:38:25 +0000 Files and hashes: 1: SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl (hash: uMC+awm+rYOfDYDdr86o3/mxXK1jZsvCKDe5dP5zsFo=) 2: D9EEB222DBFC11EC82E85E69C4F9AE02.roa (hash: IM38OEcY+pvCX+wnXvhRbSuzND147HKpkLnhoMrBbCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB0D0 Validity Not Before: Mar 29 01:38:25 2025 GMT Not After : Apr 5 01:38:25 2025 GMT Subject: CN=67e74f11-2c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:07:12:93:d0:82:2a:00:7a:4b:47:69:6e: b5:04:17:95:c8:41:cb:64:fc:14:7d:81:d6:5b:5d: 3a:28:6d:6a:ab:86:65:0f:51:1b:65:57:19:42:d6: c9:da:7f:77:fb:70:7a:cc:33:be:34:81:25:07:25: 7f:b3:cf:f1:66:1c:d8:f7:c7:f4:4b:8f:ed:89:17: a1:a0:b2:0d:9d:3b:b7:0d:73:ea:81:da:72:67:63: 33:a3:bd:47:d7:f9:2a:d3:a3:77:bd:b0:31:7f:12: 7b:7d:b8:42:bd:9b:39:d2:89:ba:50:0f:8e:b0:11: 6b:b4:33:52:3a:34:e2:d1:d4:ac:8b:ee:61:9d:53: 2a:d1:01:11:34:1f:5d:a5:e2:07:53:f7:6b:f4:ce: 0b:c3:99:1d:c3:bc:cb:10:30:d7:dc:5e:a9:c9:48: 8a:ae:55:70:0a:e5:d3:28:2f:aa:fb:49:53:79:e4: e5:53:c7:27:4f:65:9f:c1:ce:e0:32:44:44:2f:b7: 99:c5:eb:4e:68:68:74:f7:18:d0:ad:58:9f:4f:2c: cb:f7:a2:17:6b:0c:11:86:23:53:f2:ac:e1:35:01: 3a:e5:93:d9:b6:0b:86:40:d4:ea:41:de:d8:9b:4c: a3:18:0e:ba:b9:41:55:61:4c:87:6a:8a:b2:10:79: 4b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:D1:93:1C:CC:1D:CB:28:7E:4B:1A:49:33:31:C4:D7:2B:DE:E2 X509v3 Authority Key Identifier: keyid:4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c0:3f:d7:b2:3a:31:4f:35:10:28:b0:30:59:94:ac:a2:7e: 98:ca:9b:35:95:62:de:4c:2d:55:cf:78:95:e4:83:b6:e6:ed: 7e:04:38:5c:cb:5d:eb:c7:2d:9a:e9:81:19:89:f8:e0:84:41: 65:21:40:9c:c5:0e:0f:5c:2d:34:bd:11:fc:7b:c0:a2:b4:bf: 9a:ad:5d:b8:a4:fb:67:ca:85:c4:2b:20:ce:5e:cb:9b:df:f0: c9:62:1c:4a:27:b3:51:41:8e:12:d3:35:57:a0:47:9e:d8:13: 45:4e:73:87:4c:09:ad:9e:3c:5c:0f:ce:b4:bd:fb:bd:28:84: d2:98:e9:de:57:31:0a:e9:42:3c:82:67:c2:c6:d6:51:50:2d: 4c:40:88:53:6a:0c:df:f2:19:ea:d9:cf:34:3d:79:b3:43:03: 85:7a:45:1d:99:db:c3:59:2d:88:25:51:57:4a:91:8e:ad:87: bf:db:67:21:ed:ba:c1:4c:48:cd:89:8f:43:7f:47:73:cd:5e: 30:4e:2a:a3:16:01:10:d3:c9:bb:37:bc:8e:53:d4:fd:74:1f: 36:8b:3d:c5:94:ae:43:2a:40:21:e8:96:27:97:8d:ce:b4:cd: 17:08:3d:3c:a8:7c:b0:49:6d:57:31:ba:62:3c:63:a9:f6:47: 96:45:a9:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwRDAxMTAvBgNVBAUTKDRCM0M2OTU2QjA0NDkwMDEwMDg1OEMwREU1MEVCOUE0 NjJCMDhDQzcwHhcNMjUwMzI5MDEzODI1WhcNMjUwNDA1MDEzODI1WjAYMRYwFAYD VQQDEw02N2U3NGYxMS0yYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY8HEpPQgioAektHaW61BBeVyEHLZPwUfYHWW106KG1qq4ZlD1EbZVcZQtbJ 2n93+3B6zDO+NIElByV/s8/xZhzY98f0S4/tiRehoLINnTu3DXPqgdpyZ2Mzo71H 1/kq06N3vbAxfxJ7fbhCvZs50om6UA+OsBFrtDNSOjTi0dSsi+5hnVMq0QERNB9d peIHU/dr9M4Lw5kdw7zLEDDX3F6pyUiKrlVwCuXTKC+q+0lTeeTlU8cnT2Wfwc7g MkREL7eZxetOaGh09xjQrVifTyzL96IXawwRhiNT8qzhNQE65ZPZtguGQNTqQd7Y m0yjGA66uUFVYUyHaoqyEHlLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyJ0ZMc zB3LKH5LGkkzMcTXK97iMB8GA1UdIwQYMBaAFEs8aVawRJABAIWMDeUOuaRisIzH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjBEMC85M0ZCN0Y0RURC RjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtBRUFoWXdONVE2NXBHS3dq TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6eHBWckJFa0FFQWhZd041UTY1cEdLd2pNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjBEMC85M0ZCN0Y0RURCRjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtB RUFoWXdONVE2NXBHS3dqTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJwD/XsjoxTzUQKLAwWZSson6Yyps1lWLeTC1Vz3iV5IO25u1+BDhc y13rxy2a6YEZifjghEFlIUCcxQ4PXC00vRH8e8CitL+arV24pPtnyoXEKyDOXsub 3/DJYhxKJ7NRQY4S0zVXoEee2BNFTnOHTAmtnjxcD860vfu9KITSmOneVzEK6UI8 gmfCxtZRUC1MQIhTagzf8hnq2c80PXmzQwOFekUdmdvDWS2IJVFXSpGOrYe/22ch 7brBTEjNiY9Df0dzzV4wTiqjFgEQ08m7N7yOU9T9dB82iz3FlK5DKkAh6JYnl43O tM0XCD08qHywSW1XMbpiPGOp9keWRam7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:10 2025 by rpki-client