$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: A1Ry3LgSDZAGUZs8t411fGEi7U+hEWEewZxTeMEbrXQ= Subject key identifier: A0:6F:AE:D0:C4:4D:6C:90:21:8D:D7:D1:A5:A5:09:CD:CD:4D:00:68 Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 06D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 06BF Signing time: Wed 02 Apr 2025 22:12:01 +0000 Manifest this update: Wed 02 Apr 2025 22:12:00 +0000 Manifest next update: Wed 09 Apr 2025 22:12:00 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: Jx9b3t4YUh5Q9TgmAHNIrjgqDjWUy9F7ca5y/Izat/M=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF Validity Not Before: Apr 2 22:12:00 2025 GMT Not After : Apr 9 22:12:00 2025 GMT Subject: CN=67edb631-f21e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:0b:b9:5e:5d:3e:4e:ed:83:f8:aa:b4:f6: ee:fe:a0:68:11:ca:8d:69:90:f0:f5:ea:ee:ab:e5: 04:b0:89:5f:84:3f:37:93:c3:82:dd:4b:d1:10:65: 3c:b6:d3:5c:78:7f:04:0f:31:16:e0:6a:96:6a:00: 3a:51:b6:9e:53:c0:7b:08:c0:d4:d8:30:6e:03:b2: ed:47:72:fa:cf:0e:49:bd:17:be:e9:bd:4c:c6:8a: e8:17:3d:fa:50:71:fe:97:0a:6d:5f:c3:1e:63:6c: 43:b8:76:ee:a3:5e:31:cd:e8:a8:b9:3f:3a:35:cb: 60:bb:67:49:38:dd:f8:04:78:35:63:6a:d7:f2:eb: e6:f5:2b:9f:a0:07:5c:63:71:b4:8c:a6:3d:a7:53: 4e:8f:96:01:fd:1e:ac:37:cd:ea:ae:a2:3c:d1:39: 61:86:97:72:45:d4:5a:df:17:fb:36:99:7f:4c:e4: 8c:6d:a8:82:73:6a:87:0b:66:3d:92:1a:34:d0:69: 6b:72:96:80:1a:69:88:40:7f:63:48:08:9d:93:e4: 09:ab:b4:1f:81:69:cf:b2:c6:ad:79:3c:4d:c4:99: 41:e7:dd:db:87:65:07:b1:1e:66:0a:81:18:98:08: 01:4e:d6:a1:a5:91:cf:e7:e4:91:1b:9d:36:19:99: e9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6F:AE:D0:C4:4D:6C:90:21:8D:D7:D1:A5:A5:09:CD:CD:4D:00:68 X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:96:28:0e:11:b2:af:da:a7:e1:7c:2a:5a:3a:89:1d:52:82: 3d:d3:de:f2:13:58:16:c3:31:27:a4:d0:f1:d9:67:51:e7:54: 0f:13:de:5d:35:9b:73:d6:77:36:11:5a:8e:c0:89:d6:a8:06: d5:4a:6a:b5:18:89:4a:40:4b:54:b4:67:22:1f:a9:71:80:45: fa:06:a6:1b:f6:15:28:1a:03:8e:66:45:bf:8d:09:57:20:34: 4e:4a:ac:69:94:e2:85:c7:95:3e:d8:e9:9c:c9:32:04:c2:a9: 4d:46:e7:57:23:6e:9a:31:80:aa:70:fb:fb:6f:f4:f7:e1:33: 73:7e:7e:5d:3e:19:f6:b5:34:41:7f:cc:20:7f:1a:f8:08:27: cc:25:f2:95:04:31:52:8d:53:24:dd:6c:b1:30:fc:8d:c7:21: 91:a4:d6:25:ff:2f:d5:de:67:b3:d6:06:47:29:90:df:cb:5e: cc:db:09:1a:a2:02:61:ad:e6:34:fb:8f:ed:f1:7d:0e:9c:1d: 5f:64:07:23:9d:66:86:6d:d6:4c:1a:53:57:cf:6e:ac:34:1a: cb:0d:3d:a8:1e:a7:57:90:92:84:39:05:3f:d2:48:bc:c5:73: 4b:3f:57:0c:9c:54:19:88:8e:b5:cc:da:f9:f5:e3:68:69:e9: 42:e2:c4:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUwNDAyMjIxMjAwWhcNMjUwNDA5MjIxMjAwWjAYMRYwFAYD VQQDEw02N2VkYjYzMS1mMjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfELuV5dPk7tg/iqtPbu/qBoEcqNaZDw9eruq+UEsIlfhD83k8OC3UvREGU8 ttNceH8EDzEW4GqWagA6UbaeU8B7CMDU2DBuA7LtR3L6zw5JvRe+6b1MxoroFz36 UHH+lwptX8MeY2xDuHbuo14xzeiouT86Nctgu2dJON34BHg1Y2rX8uvm9SufoAdc Y3G0jKY9p1NOj5YB/R6sN83qrqI80TlhhpdyRdRa3xf7Npl/TOSMbaiCc2qHC2Y9 kho00GlrcpaAGmmIQH9jSAidk+QJq7QfgWnPssateTxNxJlB593bh2UHsR5mCoEY mAgBTtahpZHP5+SRG502GZnp+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBvrtDE TWyQIY3X0aWlCc3NTQBoMB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiligOEbKv2qfhfCpaOokdUoI9097yE1gWwzEnpNDx2WdR51QPE95d NZtz1nc2EVqOwInWqAbVSmq1GIlKQEtUtGciH6lxgEX6BqYb9hUoGgOOZkW/jQlX IDROSqxplOKFx5U+2OmcyTIEwqlNRudXI26aMYCqcPv7b/T34TNzfn5dPhn2tTRB f8wgfxr4CCfMJfKVBDFSjVMk3WyxMPyNxyGRpNYl/y/V3mez1gZHKZDfy17M2wka ogJhreY0+4/t8X0OnB1fZAcjnWaGbdZMGlNXz26sNBrLDT2oHqdXkJKEOQU/0ki8 xXNLP1cMnFQZiI61zNr59eNoaelC4sS5 -----END CERTIFICATE-----Generated at Fri Apr 4 08:28:31 2025 by rpki-client