$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: lsNKJjWjUfmOZIWUuKT6Bd/JYNaiuJqz9yAsMYYuN60= Subject key identifier: 99:00:9F:49:64:0F:C6:FD:55:52:0E:51:3C:27:E2:AF:FF:7A:68:49 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05BB Signing time: Fri 04 Apr 2025 23:12:30 +0000 Manifest this update: Fri 04 Apr 2025 23:12:29 +0000 Manifest next update: Fri 11 Apr 2025 23:12:29 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: EmUENIRUXSh9LNKMnBFGgZ0dTKCLFjru1ULVpHSRs8U=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1 Validity Not Before: Apr 4 23:12:29 2025 GMT Not After : Apr 11 23:12:29 2025 GMT Subject: CN=67f0675d-8ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b1:68:a6:86:8c:7f:53:6e:5f:71:d5:4f:50: 90:b5:1d:a6:8a:1b:d0:48:63:d4:94:c3:57:4c:a0: e0:b5:c4:50:2f:90:4e:ce:ca:ff:8d:cb:6e:86:92: a8:48:2b:02:c0:bc:18:64:27:40:1e:36:73:a0:1a: de:0b:fb:48:12:58:38:fe:10:ca:d3:ea:d1:0d:75: f0:f9:9b:fa:18:0a:f9:25:c1:d7:99:1f:48:ef:35: f3:2b:52:17:d6:50:3c:03:72:df:64:00:ee:25:cf: 60:51:e2:f6:7d:d6:ab:cf:84:1f:5f:74:3f:8d:3e: 27:0a:5a:73:ec:ad:bb:6a:12:df:32:38:e2:76:a8: 81:ab:e9:d9:e2:ea:fa:db:9c:99:19:26:c9:f6:90: bb:fb:fb:e9:5d:66:15:f0:5d:34:b4:ea:eb:9f:1a: d0:21:41:a4:c4:2d:5f:bd:52:e4:71:7c:42:27:01: d4:a5:15:61:82:d8:13:17:a0:5e:91:3d:a2:bb:4e: 54:e6:0d:ad:6c:3d:b0:80:09:44:e8:bf:45:82:bd: 65:21:cf:b5:74:00:c5:68:01:a6:c1:3c:45:7b:67: 95:10:40:04:3d:81:3a:59:32:6b:31:83:59:1d:4b: 1e:e2:a8:02:3e:ca:1f:f4:16:39:d1:6e:75:f9:4e: 00:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:00:9F:49:64:0F:C6:FD:55:52:0E:51:3C:27:E2:AF:FF:7A:68:49 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:3f:d4:ef:bc:2b:05:60:f2:c6:36:49:5d:3f:97:30:d4:ce: 99:6a:b4:c5:51:49:77:14:1d:3e:83:ec:fd:b7:cd:ae:90:0c: 63:1e:03:f9:09:6f:b6:d8:ac:d1:fa:7c:80:ac:26:65:02:96: ed:e1:62:c0:90:60:80:83:e8:c0:5b:a1:9e:cc:bf:b3:2e:07: b1:4e:13:0c:73:44:43:fa:7b:ef:29:4b:3a:90:fe:68:fb:b2: 18:f2:c5:5f:87:05:2a:d9:bf:4b:ac:72:ac:a7:da:d6:19:03: 26:5f:35:07:62:48:aa:14:59:b0:47:40:6d:b3:cf:68:6b:84: 95:79:c5:b1:00:f1:cd:a1:b4:f6:32:05:6c:16:79:71:81:d3: 50:e9:12:33:ee:95:7d:3b:66:07:86:db:70:6a:4e:8b:71:ea: 08:61:6f:b8:50:fb:a7:d3:25:0b:4d:18:34:6c:37:d6:dd:fa: 36:46:b7:f6:fc:31:43:8b:51:19:a5:7b:94:a1:8d:ff:e5:66: d0:c3:2a:cc:c7:1c:24:7d:2d:c4:e5:fa:fd:3f:d4:ba:0e:49: ba:cd:a1:a3:29:4e:44:f8:ad:20:e7:92:1b:5c:b6:37:1b:22: 32:a2:0f:a8:e8:f6:8b:7d:4b:ab:23:0b:14:d9:23:16:27:76: 85:26:f8:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNDA0MjMxMjI5WhcNMjUwNDExMjMxMjI5WjAYMRYwFAYD VQQDEw02N2YwNjc1ZC04Y2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbFopoaMf1NuX3HVT1CQtR2mihvQSGPUlMNXTKDgtcRQL5BOzsr/jctuhpKo SCsCwLwYZCdAHjZzoBreC/tIElg4/hDK0+rRDXXw+Zv6GAr5JcHXmR9I7zXzK1IX 1lA8A3LfZADuJc9gUeL2fdarz4QfX3Q/jT4nClpz7K27ahLfMjjidqiBq+nZ4ur6 25yZGSbJ9pC7+/vpXWYV8F00tOrrnxrQIUGkxC1fvVLkcXxCJwHUpRVhgtgTF6Be kT2iu05U5g2tbD2wgAlE6L9Fgr1lIc+1dADFaAGmwTxFe2eVEEAEPYE6WTJrMYNZ HUse4qgCPsof9BY50W51+U4A0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkAn0lk D8b9VVIOUTwn4q//emhJMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuP9TvvCsFYPLGNkldP5cw1M6ZarTFUUl3FB0+g+z9t82ukAxjHgP5 CW+22KzR+nyArCZlApbt4WLAkGCAg+jAW6GezL+zLgexThMMc0RD+nvvKUs6kP5o +7IY8sVfhwUq2b9LrHKsp9rWGQMmXzUHYkiqFFmwR0Bts89oa4SVecWxAPHNobT2 MgVsFnlxgdNQ6RIz7pV9O2YHhttwak6LceoIYW+4UPun0yULTRg0bDfW3fo2Rrf2 /DFDi1EZpXuUoY3/5WbQwyrMxxwkfS3E5fr9P9S6Dkm6zaGjKU5E+K0g55IbXLY3 GyIyog+o6PaLfUurIwsU2SMWJ3aFJvjW -----END CERTIFICATE-----Generated at Sat Apr 5 19:18:18 2025 by rpki-client