$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: QyaAhF8IZ65OLoegKcKn/zAgDS7i7sho42qBRjemXN4= Subject key identifier: C5:0E:72:2B:F8:7C:CA:C0:88:06:48:F1:75:DF:86:79:AD:F6:04:16 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B04 Signing time: Tue 08 Apr 2025 19:10:28 +0000 Manifest this update: Tue 08 Apr 2025 19:10:27 +0000 Manifest next update: Tue 15 Apr 2025 19:10:27 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: IaYrGrnh7L7/M/FYhw/1jcYaYSvDCuESDVo+eyq1/b8=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB Validity Not Before: Apr 8 19:10:27 2025 GMT Not After : Apr 15 19:10:27 2025 GMT Subject: CN=67f574a4-78d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:03:06:fe:c0:55:d8:d0:ea:72:56:71:d9:f2: 12:1d:7d:56:d9:c1:bd:84:ed:06:fa:7f:a0:89:2a: 8b:73:49:83:cb:e9:4f:32:f7:69:05:d6:9c:93:fa: 1e:c8:cd:d2:ad:b8:22:11:63:12:c8:65:62:bd:e3: 25:5e:b0:80:33:b9:82:d1:a5:63:37:57:18:fe:64: 68:05:3d:ae:14:81:e8:71:8f:8d:b1:c5:ed:31:bb: a8:5c:a4:c4:84:7a:1e:6b:94:9d:df:e1:68:b4:ef: e8:bf:7c:d5:43:3a:f3:35:22:62:69:02:47:5f:85: 90:ea:e5:78:ca:59:93:25:a5:b9:4c:d0:33:50:2f: 52:0b:e7:57:ad:09:b9:45:96:9b:05:36:11:0a:16: e3:bd:40:98:5f:d8:e1:5e:0e:24:5a:c2:ec:7e:13: 1d:0b:3f:25:c5:00:2a:0c:f8:51:32:ca:84:72:db: f2:ba:aa:1f:b8:a3:c4:01:1c:8c:12:6a:c6:77:22: 9c:cf:2e:ff:d3:80:b6:87:70:46:cf:6c:94:2f:73: 54:b1:af:90:c3:e5:45:ac:90:d4:95:2c:17:c8:16: db:c0:b4:ed:2e:d2:21:59:ed:b9:6d:8f:30:af:70: 47:78:a7:9d:d9:7a:76:1d:73:d4:ba:40:89:42:46: b1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0E:72:2B:F8:7C:CA:C0:88:06:48:F1:75:DF:86:79:AD:F6:04:16 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:83:4a:5a:fc:6a:93:00:0d:cd:b0:b6:79:d4:10:bf:10:0e: ba:ef:a4:9b:a8:e0:7c:12:3a:27:95:05:4c:8b:12:ba:09:44: b2:3f:97:65:9f:f0:b9:4e:f7:a0:8e:dd:fb:56:6e:fa:e9:44: 4f:9f:71:fd:e8:37:46:0e:b7:ce:70:ba:3f:32:eb:4c:54:7e: 76:58:67:ae:17:e2:a9:40:f7:e3:03:ea:97:73:33:54:18:73: b0:8f:12:15:70:7f:47:43:c5:ba:ee:3d:87:1f:be:08:6e:98: 76:91:10:30:14:bf:96:e4:2b:fc:04:dc:d4:d1:8d:53:19:04: a4:ea:2e:52:24:00:1c:57:fb:cf:aa:61:b7:ac:fc:ca:96:92: d5:3b:e7:dd:00:22:80:63:57:ef:5f:f2:36:7b:db:4e:0a:67: 25:9d:92:0d:10:1c:61:eb:e7:cf:18:51:69:e9:83:d8:81:fa: 5c:f6:9d:01:4d:f8:3a:2c:45:f8:55:b3:d9:06:65:76:48:b7: 40:0d:f7:13:a7:e0:c7:8a:10:ba:49:c8:b6:53:b0:96:7a:c2: c9:4b:7c:61:b0:3b:ef:0e:4c:67:89:e5:98:c3:be:69:fe:b2: af:1e:73:27:65:24:bf:50:a7:c1:fa:f2:ec:03:14:76:d9:c1: af:3f:5b:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwNDA4MTkxMDI3WhcNMjUwNDE1MTkxMDI3WjAYMRYwFAYD VQQDEw02N2Y1NzRhNC03OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAMG/sBV2NDqclZx2fISHX1W2cG9hO0G+n+giSqLc0mDy+lPMvdpBdack/oe yM3SrbgiEWMSyGViveMlXrCAM7mC0aVjN1cY/mRoBT2uFIHocY+NscXtMbuoXKTE hHoea5Sd3+FotO/ov3zVQzrzNSJiaQJHX4WQ6uV4ylmTJaW5TNAzUC9SC+dXrQm5 RZabBTYRChbjvUCYX9jhXg4kWsLsfhMdCz8lxQAqDPhRMsqEctvyuqofuKPEARyM EmrGdyKczy7/04C2h3BGz2yUL3NUsa+Qw+VFrJDUlSwXyBbbwLTtLtIhWe25bY8w r3BHeKed2Xp2HXPUukCJQkaxvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUOciv4 fMrAiAZI8XXfhnmt9gQWMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgg0pa/GqTAA3NsLZ51BC/EA6676SbqOB8EjonlQVMixK6CUSyP5dl n/C5Tvegjt37Vm766URPn3H96DdGDrfOcLo/MutMVH52WGeuF+KpQPfjA+qXczNU GHOwjxIVcH9HQ8W67j2HH74Ibph2kRAwFL+W5Cv8BNzU0Y1TGQSk6i5SJAAcV/vP qmG3rPzKlpLVO+fdACKAY1fvX/I2e9tOCmclnZINEBxh6+fPGFFp6YPYgfpc9p0B Tfg6LEX4VbPZBmV2SLdADfcTp+DHihC6Sci2U7CWesLJS3xhsDvvDkxnieWYw75p /rKvHnMnZSS/UKfB+vLsAxR22cGvP1vk -----END CERTIFICATE-----Generated at Thu Apr 10 19:43:11 2025 by rpki-client