$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: bqqALEUCs4Ag1gCb9t62N7ovPRUiwTAkyx+TDyWkAJA= Subject key identifier: 77:FE:14:27:1F:F8:4F:42:41:7A:42:72:95:C3:83:E2:AB:6F:75:C8 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0E72 Signing time: Fri 04 Apr 2025 17:50:11 +0000 Manifest this update: Fri 04 Apr 2025 17:50:11 +0000 Manifest next update: Fri 11 Apr 2025 17:50:11 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: dnJLgucLsBNN1UEFJvQXUdM7AeF4BVxACIrx3Q/EA2c=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: WbUUTzfSyCpyqPb3jZBov7io1LDDEMhW0G0g1zGhi5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8 Validity Not Before: Apr 4 17:50:11 2025 GMT Not After : Apr 11 17:50:11 2025 GMT Subject: CN=67f01bd3-6a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d3:f5:db:35:94:31:2a:9a:16:f0:75:13:b1: 02:65:2a:a0:81:c8:e2:19:b7:71:71:a4:3a:d2:4c: 67:25:cf:05:98:a3:78:1d:5b:39:0c:40:13:58:bf: 76:6a:71:08:ba:2e:e0:37:21:a9:3a:5d:17:ac:0f: 09:c2:97:33:20:9d:f9:79:f4:7b:e6:9d:ce:7d:84: 3e:11:5f:b3:1a:f8:c2:11:0e:81:32:ff:cc:19:7a: 13:c1:75:b2:dd:5e:bb:c4:85:cc:b9:21:1d:ce:87: 79:be:8f:43:c2:aa:0b:46:ea:33:35:41:f5:be:e0: 72:3c:7b:ec:06:c0:11:cf:2f:15:57:ed:2f:97:8a: ea:72:33:fd:dd:e6:ba:90:e2:d8:71:80:74:4d:8c: 8c:16:0a:cb:d7:d9:53:d9:39:db:87:3c:d1:82:9f: 2a:cd:b9:61:f8:fc:5e:27:89:b9:21:53:17:0f:66: e5:bf:f9:d5:14:69:47:64:87:91:47:ac:cc:c1:65: 2f:78:0e:6c:cd:1d:e1:2f:8f:c6:be:42:0f:31:e8: 2d:e2:c2:23:cf:21:e6:1b:97:73:44:71:38:0a:3b: 7b:c2:6d:1d:ce:0c:c7:ac:ae:16:d3:8e:c7:cb:5f: 59:62:c1:38:33:4a:25:b5:0b:c8:2d:56:18:f6:da: e9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FE:14:27:1F:F8:4F:42:41:7A:42:72:95:C3:83:E2:AB:6F:75:C8 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:77:57:67:1e:56:fd:a2:ac:b2:a7:85:49:b5:8c:4d:21:5b: 40:49:6e:21:1b:d8:fc:16:14:10:5e:62:4b:e0:0c:89:f7:d1: 11:26:59:08:e5:ba:29:0e:cb:b0:8b:0d:9e:7b:51:8f:e4:c1: c3:00:10:34:5e:72:84:0b:4a:3e:15:c4:42:f7:fe:50:44:04: cf:76:e8:e9:6d:cb:bd:c8:e4:0d:91:e8:4d:bd:eb:2d:6d:7b: a7:c6:be:77:12:37:82:00:12:a7:a3:23:e0:ab:f2:a2:45:1d: 9e:e4:86:14:69:6e:b4:c8:9c:59:cf:b0:8a:cd:47:7d:c0:52: ae:e3:be:25:77:bc:d2:81:40:e3:dc:54:ec:30:76:ed:ec:5f: 02:8f:c6:cf:5f:26:62:32:f8:b3:38:07:0a:36:ba:b5:b8:0a: 20:d3:79:7f:12:51:6c:84:31:e7:6e:03:75:72:ad:da:91:de: a8:5e:f1:48:fe:7e:d4:61:1a:34:ef:b2:2c:2d:7d:2a:8d:1d: 1b:ac:d3:df:26:8f:0d:0e:34:a0:2d:82:05:7d:4a:85:07:fd: 91:6a:ef:1d:ac:61:35:62:b9:03:a5:22:41:03:19:08:65:52: 37:b6:1e:e4:01:28:0b:d4:65:86:97:6b:13:08:8f:0b:de:a7: f0:92:39:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUwNDA0MTc1MDExWhcNMjUwNDExMTc1MDExWjAYMRYwFAYD VQQDEw02N2YwMWJkMy02YTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NP12zWUMSqaFvB1E7ECZSqggcjiGbdxcaQ60kxnJc8FmKN4HVs5DEATWL92 anEIui7gNyGpOl0XrA8JwpczIJ35efR75p3OfYQ+EV+zGvjCEQ6BMv/MGXoTwXWy 3V67xIXMuSEdzod5vo9DwqoLRuozNUH1vuByPHvsBsARzy8VV+0vl4rqcjP93ea6 kOLYcYB0TYyMFgrL19lT2TnbhzzRgp8qzblh+PxeJ4m5IVMXD2blv/nVFGlHZIeR R6zMwWUveA5szR3hL4/GvkIPMegt4sIjzyHmG5dzRHE4Cjt7wm0dzgzHrK4W047H y19ZYsE4M0oltQvILVYY9trpiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHf+FCcf +E9CQXpCcpXDg+Krb3XIMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4d1dnHlb9oqyyp4VJtYxNIVtASW4hG9j8FhQQXmJL4AyJ99ERJlkI 5bopDsuwiw2ee1GP5MHDABA0XnKEC0o+FcRC9/5QRATPdujpbcu9yOQNkehNvest bXunxr53EjeCABKnoyPgq/KiRR2e5IYUaW60yJxZz7CKzUd9wFKu474ld7zSgUDj 3FTsMHbt7F8Cj8bPXyZiMvizOAcKNrq1uAog03l/ElFshDHnbgN1cq3akd6oXvFI /n7UYRo077IsLX0qjR0brNPfJo8NDjSgLYIFfUqFB/2Rau8drGE1YrkDpSJBAxkI ZVI3th7kASgL1GWGl2sTCI8L3qfwkjns -----END CERTIFICATE-----Generated at Sat Apr 5 08:02:15 2025 by rpki-client