$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: j/n8Cllo4iOEPKYED22afaVoLZgJHnr992/KQj1tXUs= Subject key identifier: 70:54:16:FA:F3:E9:2A:EC:FE:F8:D5:87:46:90:D9:A3:25:E3:B2:B5 Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0B57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0B50 Signing time: Wed 12 Mar 2025 15:10:47 +0000 Manifest this update: Wed 12 Mar 2025 15:10:47 +0000 Manifest next update: Wed 19 Mar 2025 15:10:47 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: 62cS9poXChinTAm8Dhi1d2mZV8ajxqB66L+FHlRI2kM=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: /8fEEtPdMyUdjQ1z+LPnGcbnmSc1TogzrljlPk/+Zoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB Validity Not Before: Mar 12 15:10:47 2025 GMT Not After : Mar 19 15:10:47 2025 GMT Subject: CN=67d1a3f7-31ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:86:db:37:d4:07:5d:d1:65:b0:05:b4:de: f3:58:a4:2f:97:12:07:54:e1:67:e4:0d:f0:35:13: 66:16:a2:45:4c:da:f7:50:f6:d3:20:ef:3e:52:9d: 22:a7:bd:44:b3:40:0e:3d:3b:81:5d:8f:d1:fa:45: 86:c0:fa:c8:86:e8:14:c3:46:57:6b:23:6d:b4:7d: 1a:d1:5c:48:2b:bd:67:b6:4d:1e:fc:d3:04:95:c4: 05:74:a2:f7:f1:3a:d0:b9:3c:bb:d8:43:bd:fd:1c: 93:8b:a5:37:e8:84:b7:e7:9a:1c:ad:be:25:d3:d3: f2:73:d4:28:26:10:6d:6b:56:ca:74:2d:3c:4d:82: 2f:51:6e:d3:71:71:21:27:76:8c:e6:1c:2f:06:24: 66:f7:f4:40:8a:33:4d:7f:71:5b:94:b2:9e:4b:75: 51:f3:21:86:b3:8d:56:0c:88:36:2c:05:44:15:80: 1c:41:66:7c:26:b4:da:3e:5e:f0:71:72:f2:22:25: 0b:9c:a4:dc:2a:f2:78:d8:b9:ca:e8:45:7a:ce:37: 60:09:78:e3:a5:b6:37:36:ed:12:91:4e:e3:ee:cb: 14:db:a7:77:87:10:d6:56:b8:54:4b:30:35:ed:7b: 27:85:20:e3:a3:51:45:04:9c:a1:71:14:f9:bb:16: ca:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:54:16:FA:F3:E9:2A:EC:FE:F8:D5:87:46:90:D9:A3:25:E3:B2:B5 X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:77:c9:61:82:51:54:b7:af:88:57:09:b3:06:69:4a:ad:d6: c5:48:00:aa:ec:41:75:82:83:4d:43:eb:e5:0c:2b:11:8a:3e: 58:90:d2:7c:cb:72:37:ec:38:01:e0:47:59:c7:c8:f2:6f:81: 44:26:9a:ad:5c:b4:76:0a:a9:18:0f:50:a9:f0:21:b0:a0:49: 27:77:bb:95:9d:dc:e5:78:e0:b9:11:f3:ec:eb:74:86:32:36: 96:e3:87:ee:3a:1e:8e:7a:0e:f2:bc:2b:82:32:b3:ff:18:c5: 33:24:a7:4e:56:43:b4:47:0c:ab:4e:30:d1:ce:b9:93:87:a2: f3:a2:12:85:74:70:da:e6:93:84:7a:63:ed:7a:65:fa:af:5d: 89:ff:aa:34:4d:1b:06:9c:e8:49:94:88:f4:e7:6c:8b:bd:7a: 89:28:76:e5:63:6d:3a:49:99:c0:1d:ad:77:31:1b:b5:93:03: 8c:fc:64:1d:bf:c7:e4:bb:c5:6a:91:a2:2b:71:e4:12:1c:fd: 14:56:c4:3b:a9:e2:02:1b:dc:8f:99:f4:07:35:28:80:d5:e7: 58:10:a7:50:d1:72:16:e1:cf:ba:db:99:2a:b5:d9:c1:19:68: 6a:7e:af:95:f4:39:9e:75:51:69:cd:df:ae:28:a6:53:69:1c: f5:f8:b6:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUwMzEyMTUxMDQ3WhcNMjUwMzE5MTUxMDQ3WjAYMRYwFAYD VQQDEw02N2QxYTNmNy0zMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqaG2zfUB13RZbAFtN7zWKQvlxIHVOFn5A3wNRNmFqJFTNr3UPbTIO8+Up0i p71Es0AOPTuBXY/R+kWGwPrIhugUw0ZXayNttH0a0VxIK71ntk0e/NMElcQFdKL3 8TrQuTy72EO9/RyTi6U36IS355ocrb4l09Pyc9QoJhBta1bKdC08TYIvUW7TcXEh J3aM5hwvBiRm9/RAijNNf3FblLKeS3VR8yGGs41WDIg2LAVEFYAcQWZ8JrTaPl7w cXLyIiULnKTcKvJ42LnK6EV6zjdgCXjjpbY3Nu0SkU7j7ssU26d3hxDWVrhUSzA1 7XsnhSDjo1FFBJyhcRT5uxbKowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBUFvrz 6Srs/vjVh0aQ2aMl47K1MB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPd8lhglFUt6+IVwmzBmlKrdbFSACq7EF1goNNQ+vlDCsRij5YkNJ8 y3I37DgB4EdZx8jyb4FEJpqtXLR2CqkYD1Cp8CGwoEknd7uVndzleOC5EfPs63SG MjaW44fuOh6Oeg7yvCuCMrP/GMUzJKdOVkO0RwyrTjDRzrmTh6LzohKFdHDa5pOE emPtemX6r12J/6o0TRsGnOhJlIj052yLvXqJKHblY206SZnAHa13MRu1kwOM/GQd v8fku8VqkaIrceQSHP0UVsQ7qeICG9yPmfQHNSiA1edYEKdQ0XIW4c+625kqtdnB GWhqfq+V9DmedVFpzd+uKKZTaRz1+LY4 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:51 2025 by rpki-client