$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.mft File: AduB721jlOZtOzIxW0eevteZyTc.mft (raw, json) Hash identifier: m3kVSAzFU/2Ir8nSY9u0eqEG/iKLW283ScPhWiMOOFs= Subject key identifier: 82:84:01:D1:D2:A3:BE:5E:09:0F:7D:D5:D9:F9:17:09:4D:A7:2A:89 Authority key identifier: 01:DB:81:EF:6D:63:94:E6:6D:3B:32:31:5B:47:9E:BE:D7:99:C9:37 Certificate issuer: /CN=A91FECDA/serialNumber=01DB81EF6D6394E66D3B32315B479EBED799C937 Certificate serial: 0F33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.mft Manifest number: 0F2A Signing time: Thu 10 Apr 2025 17:37:01 +0000 Manifest this update: Thu 10 Apr 2025 17:37:01 +0000 Manifest next update: Thu 17 Apr 2025 17:37:01 +0000 Files and hashes: 1: AduB721jlOZtOzIxW0eevteZyTc.crl (hash: mquvx/jL4KOkMB/gHK7KAzf0TIqOv0daeByIi6f989o=) 2: 85B9F090F35011EFAE695322C4F9AE02.roa (hash: lww/ZRWFPgZIaev9PDmaV5kjaByxeNEFJJYVjFLwNzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.crl rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 17:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECDA Validity Not Before: Apr 10 17:37:01 2025 GMT Not After : Apr 17 17:37:01 2025 GMT Subject: CN=67f801bd-3bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:5a:53:51:09:1c:42:fe:af:21:9e:88:f8: 23:33:dd:7e:90:27:4c:5e:43:87:8e:bd:6e:bc:48: 62:78:4a:14:4f:3f:4a:5e:8a:ec:3b:57:5f:62:00: af:16:ad:0b:6b:1e:ef:c4:43:1b:1d:c1:45:fe:66: 08:9b:e0:22:16:05:cf:f8:7b:11:e2:24:24:50:39: ed:d2:b5:ef:91:b4:f2:48:17:07:0e:66:4f:6b:30: f3:89:92:f1:bb:d0:35:b6:fb:bd:50:91:2b:c3:0b: 0b:36:02:21:c6:c4:3e:dc:b1:22:c8:bb:83:63:5a: 19:08:71:bb:af:24:63:e1:f5:3c:37:b5:14:0d:f4: 90:ec:43:54:12:fb:d4:4c:11:8c:2b:14:a1:92:f7: be:d6:74:6e:7b:54:bc:98:c9:8a:d3:de:5e:1c:89: 53:30:07:12:6f:34:29:e2:47:8a:4f:eb:80:70:2f: 02:52:52:96:59:1a:81:75:dc:df:c3:08:0c:ca:f9: cf:e3:e9:72:b7:c1:bb:30:34:a9:3d:f8:74:90:2b: a9:01:93:32:33:7e:c0:51:fa:68:d8:d9:22:c8:b6: 42:70:61:83:20:e6:0b:a2:f0:f0:02:55:db:2c:da: 08:21:d0:77:36:bb:ca:6f:75:3e:4b:a1:f5:3a:8a: e4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:84:01:D1:D2:A3:BE:5E:09:0F:7D:D5:D9:F9:17:09:4D:A7:2A:89 X509v3 Authority Key Identifier: keyid:01:DB:81:EF:6D:63:94:E6:6D:3B:32:31:5B:47:9E:BE:D7:99:C9:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AduB721jlOZtOzIxW0eevteZyTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECDA/8A88F1046F9C11E9A5074B2FC4F9AE02/AduB721jlOZtOzIxW0eevteZyTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:7b:fc:0c:ef:46:01:69:6d:4c:f1:9f:87:63:43:d1:ee:0a: 44:6a:70:94:fd:fb:d9:e7:a9:47:28:9e:92:e1:38:d9:b2:a1: 47:d9:0c:3e:76:15:e3:5d:ac:61:4d:8d:0e:17:b1:f1:a1:39: 54:ef:bc:63:bf:24:13:43:d3:33:14:55:62:36:0a:4a:09:f7: 4e:1f:90:6d:dd:d2:30:8c:20:b9:38:33:e9:5a:87:ba:53:0e: b2:db:f1:75:54:9e:93:db:5e:b0:0a:5b:d2:96:59:b4:b2:b5: 4d:20:72:1a:fa:a7:ae:2c:21:52:37:70:f1:c0:03:a9:36:f4: 9f:9c:ba:b2:df:b6:8a:a9:8f:14:a8:41:d6:d3:fd:f7:e0:72: f5:ec:07:97:b2:6b:4b:eb:c5:9e:1f:45:28:4e:42:54:3d:19: 8f:49:9b:f5:15:5a:98:9e:d4:03:a9:1b:79:6f:fd:5b:f0:2b: 35:09:d5:13:6c:34:00:41:aa:b4:cd:9d:40:80:f8:c9:2e:e4: 28:4d:6e:bf:f6:aa:57:0f:d7:6d:26:7d:74:72:83:40:43:bf: 77:10:10:31:c3:8b:5e:c7:fb:f9:97:46:c9:13:e8:76:fd:57: eb:c6:3c:f2:ed:76:9b:7c:8e:bd:c6:03:ea:e2:e7:9d:25:ad: 9b:fc:26:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDREExMTAvBgNVBAUTKDAxREI4MUVGNkQ2Mzk0RTY2RDNCMzIzMTVCNDc5RUJF RDc5OUM5MzcwHhcNMjUwNDEwMTczNzAxWhcNMjUwNDE3MTczNzAxWjAYMRYwFAYD VQQDEw02N2Y4MDFiZC0zYmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJRaU1EJHEL+ryGeiPgjM91+kCdMXkOHjr1uvEhieEoUTz9KXorsO1dfYgCv Fq0Lax7vxEMbHcFF/mYIm+AiFgXP+HsR4iQkUDnt0rXvkbTySBcHDmZPazDziZLx u9A1tvu9UJErwwsLNgIhxsQ+3LEiyLuDY1oZCHG7ryRj4fU8N7UUDfSQ7ENUEvvU TBGMKxShkve+1nRue1S8mMmK095eHIlTMAcSbzQp4keKT+uAcC8CUlKWWRqBddzf wwgMyvnP4+lyt8G7MDSpPfh0kCupAZMyM37AUfpo2NkiyLZCcGGDIOYLovDwAlXb LNoIIdB3NrvKb3U+S6H1OorkwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKEAdHS o75eCQ991dn5FwlNpyqJMB8GA1UdIwQYMBaAFAHbge9tY5TmbTsyMVtHnr7Xmck3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNEQS84QTg4RjEwNDZG OUMxMUU5QTUwNzRCMkZDNEY5QUUwMi9BZHVCNzIxamxPWnRPekl4VzBlZXZ0ZVp5 VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkdUI3MjFqbE9adE96SXhXMGVldnRlWnlUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUNEQS84QTg4RjEwNDZGOUMxMUU5QTUwNzRCMkZDNEY5QUUwMi9BZHVCNzIxamxP WnRPekl4VzBlZXZ0ZVp5VGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGe/wM70YBaW1M8Z+HY0PR7gpEanCU/fvZ56lHKJ6S4TjZsqFH2Qw+ dhXjXaxhTY0OF7HxoTlU77xjvyQTQ9MzFFViNgpKCfdOH5Bt3dIwjCC5ODPpWoe6 Uw6y2/F1VJ6T216wClvSllm0srVNIHIa+qeuLCFSN3DxwAOpNvSfnLqy37aKqY8U qEHW0/334HL17AeXsmtL68WeH0UoTkJUPRmPSZv1FVqYntQDqRt5b/1b8Cs1CdUT bDQAQaq0zZ1AgPjJLuQoTW6/9qpXD9dtJn10coNAQ793EBAxw4tex/v5l0bJE+h2 /Vfrxjzy7XabfI69xgPq4uedJa2b/Cam -----END CERTIFICATE-----Generated at Sat Apr 12 01:41:07 2025 by rpki-client