$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: DMh/XXQFm9HFbrpBNQ2l+cLsRHyvBhl9AuWFT5FTQf8= Subject key identifier: 70:AC:47:33:D3:78:97:5D:E4:E9:F3:96:A2:01:02:22:EF:3E:8B:C4 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05A0 Signing time: Wed 12 Mar 2025 22:51:55 +0000 Manifest this update: Wed 12 Mar 2025 22:51:54 +0000 Manifest next update: Wed 19 Mar 2025 22:51:54 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: YWegGNRbn3qRq0pPUsLD4lJuV2ff+oojPvtRsRiEg9k=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: ruwggHNoAUFm9Chx4UGeH2/Ms9/ktBjyMv9b4cEeu5E=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ofg177dT9U9TbFcWrgETTbW4rQYxs3ewgMOUkLe9Rug=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: zkvJXsg6ZbaTEwK193SUdCnoyTyMt79mUaZuDwnshuE=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: bEBpIBlAOueDVvlaTSK/ST40bTuOmwGNh/38eLyftkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1463 (0x5b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB Validity Not Before: Mar 12 22:51:54 2025 GMT Not After : Mar 19 22:51:54 2025 GMT Subject: CN=67d2100a-17a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:45:29:c9:f1:5d:95:cb:80:d6:33:78:18: d4:f6:80:b7:d6:54:a2:2f:98:b3:41:29:d7:f9:d2: 10:54:f2:4d:74:a6:4b:b4:3c:7c:85:12:22:02:6d: fa:47:9f:9c:a9:99:40:7e:1a:94:b7:e0:c1:24:05: c3:4a:20:ac:22:e3:bb:88:e8:d8:9d:9a:5e:37:55: 28:b5:0b:b2:8e:c8:38:a7:c7:27:d5:14:6e:d3:a9: d7:1e:a8:1c:ec:e8:ab:b6:56:d1:f7:53:8f:e4:26: 38:d6:ee:f6:b3:ff:80:14:0b:17:8a:63:70:04:42: 8d:30:f0:fc:0d:c4:be:f4:5c:d2:e3:b5:be:1f:d0: 44:13:c9:b5:2c:ff:05:9d:3b:33:5c:36:8a:ec:c5: 59:1d:63:77:a6:a2:08:34:7a:be:ee:c8:ef:ed:da: 33:1e:14:e5:ed:9c:73:0a:b6:9a:be:b3:d1:a0:e4: c7:74:2e:5a:cb:f2:22:3c:65:bf:14:28:6e:93:c9: a1:0b:d5:f8:1e:04:f1:91:8a:ba:55:43:97:9e:5d: 6b:da:10:cc:26:fe:e1:89:18:d6:7b:48:c9:b1:55: 17:1d:12:61:f3:6e:66:3c:19:3b:19:ad:f0:47:8a: ef:a3:78:5c:6a:e1:b1:dd:38:09:a7:f8:7a:0b:4e: 2c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AC:47:33:D3:78:97:5D:E4:E9:F3:96:A2:01:02:22:EF:3E:8B:C4 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0c:35:bf:3c:3f:79:30:79:10:2a:3a:ea:c5:26:cf:d4:e6: 68:9e:d3:9c:40:34:1a:bb:17:16:8b:e7:6e:b2:e5:31:52:90: 6c:24:58:c9:1d:2f:d3:c6:7c:be:93:d3:10:1c:c7:3f:e4:00: 8e:db:9f:52:e7:b2:39:69:21:78:2e:e7:a8:a7:89:3c:46:d8: 11:2a:ff:79:ec:49:01:a0:13:2c:a5:3d:4a:e7:6d:92:4d:b5: 2b:13:a8:25:46:00:73:5d:d5:3e:65:fb:3a:75:95:91:b2:a4: e9:80:2d:1a:07:08:5a:62:c0:8e:c3:e0:e2:40:75:17:ea:23: da:96:03:c0:fe:26:8a:f8:34:8f:58:16:16:dc:e1:ff:8a:b4: ad:31:0b:8d:50:78:00:03:78:32:d0:0e:0a:fb:81:06:dc:c3: 8a:98:7f:1a:a8:8a:f6:35:40:91:68:fe:50:e6:02:07:27:1d: cd:9b:a2:6a:9d:a0:a6:93:6d:0d:5f:9b:a6:a5:8c:2c:7d:ff: af:bc:d7:10:1e:73:9d:4d:24:d2:46:f9:db:70:0f:d6:36:b9: 3b:2c:90:bd:10:96:72:a8:93:f8:1e:ad:75:11:b7:1f:6a:eb: 0a:18:5c:05:30:14:38:d8:23:1d:73:b1:7b:7e:b0:c0:93:f3: ca:c9:81:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwMzEyMjI1MTU0WhcNMjUwMzE5MjI1MTU0WjAYMRYwFAYD VQQDEw02N2QyMTAwYS0xN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmVFKcnxXZXLgNYzeBjU9oC31lSiL5izQSnX+dIQVPJNdKZLtDx8hRIiAm36 R5+cqZlAfhqUt+DBJAXDSiCsIuO7iOjYnZpeN1UotQuyjsg4p8cn1RRu06nXHqgc 7OirtlbR91OP5CY41u72s/+AFAsXimNwBEKNMPD8DcS+9FzS47W+H9BEE8m1LP8F nTszXDaK7MVZHWN3pqIINHq+7sjv7dozHhTl7ZxzCraavrPRoOTHdC5ay/IiPGW/ FChuk8mhC9X4HgTxkYq6VUOXnl1r2hDMJv7hiRjWe0jJsVUXHRJh825mPBk7Ga3w R4rvo3hcauGx3TgJp/h6C04sJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCsRzPT eJdd5OnzlqIBAiLvPovEMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiDDW/PD95MHkQKjrqxSbP1OZontOcQDQauxcWi+dusuUxUpBsJFjJ HS/Txny+k9MQHMc/5ACO259S57I5aSF4Lueop4k8RtgRKv957EkBoBMspT1K522S TbUrE6glRgBzXdU+Zfs6dZWRsqTpgC0aBwhaYsCOw+DiQHUX6iPalgPA/iaK+DSP WBYW3OH/irStMQuNUHgAA3gy0A4K+4EG3MOKmH8aqIr2NUCRaP5Q5gIHJx3Nm6Jq naCmk20NX5umpYwsff+vvNcQHnOdTSTSRvnbcA/WNrk7LJC9EJZyqJP4Hq11Ebcf ausKGFwFMBQ42CMdc7F7frDAk/PKyYES -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:22 2025 by rpki-client