$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft File: aj72cYLbsPbM88pBN4wBGYBq6b0.mft (raw, json) Hash identifier: zrZFQr+FDEz095wS2h/fFlja6Ck3ThOZZhpOLD9u3V8= Subject key identifier: 0D:DD:58:B4:8B:62:32:BB:A5:73:AE:FD:0D:63:67:2A:4C:8F:47:67 Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD Certificate issuer: /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft Manifest number: 1E Signing time: Sat 05 Apr 2025 07:09:09 +0000 Manifest this update: Sat 05 Apr 2025 07:09:09 +0000 Manifest next update: Sat 12 Apr 2025 07:09:09 +0000 Files and hashes: 1: aj72cYLbsPbM88pBN4wBGYBq6b0.crl (hash: YluhiYROW9A4KUf0Ie8Df//0WHlsjyZzZZybveCrs+c=) 2: FDE6938CE90C11EFB9D98326C4F9AE02.roa (hash: EQY90pkMKZS20T7XhciTL191HbTMnbpWtQHaja8QyGI=) 3: F449A3FCE9C811EF9972A934C4F9AE02.roa (hash: 7MwfNHRXASMEn22ZfT4zj9oG/ZQKY9GDP1pjifjdSXI=) 4: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (hash: XHfUu+5yh0x5y1fbUjOYEtUpMyJC2J2Z1oZf8nnZcak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A2E Validity Not Before: Apr 5 07:09:09 2025 GMT Not After : Apr 12 07:09:09 2025 GMT Subject: CN=67f0d715-0719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:76:8e:cd:f6:53:3b:ba:f9:5a:7f:35:34:92: ca:a3:30:87:88:53:b6:54:71:7d:1e:cd:6f:16:20: 49:9d:8c:4f:20:ba:0c:ac:fd:46:99:69:77:56:2e: c6:06:df:86:c9:b4:3e:07:04:b1:06:e9:b8:a5:51: ed:69:00:63:cc:57:d1:dd:78:1c:20:cf:45:a6:a8: f8:12:96:bf:df:b3:fa:b9:6a:da:e7:0b:f9:54:e2: 17:73:6d:8b:7f:c6:4f:9c:66:42:60:d5:e2:bb:6f: 0a:12:ab:4f:8c:75:4b:8e:ca:ec:88:d5:f6:96:d7: a4:6a:fd:69:05:0c:ba:55:b3:34:7c:2c:b4:49:e4: c1:8a:93:0e:1b:e1:4b:b3:04:36:e7:75:aa:7b:cc: 4e:22:c1:24:72:46:6a:4c:0d:e6:2f:d3:70:ad:f6: e9:1f:10:7f:a5:20:1a:cb:04:1d:19:74:b8:b0:53: e6:29:0e:cc:45:05:84:cf:5f:a8:ac:66:30:d7:fa: fc:63:45:59:d2:83:2d:06:4e:5f:a4:be:80:c1:2e: 19:70:b1:df:9c:5b:75:00:d2:e5:54:cf:fe:3c:52: 83:5d:f4:b1:bf:dd:59:83:d5:40:82:26:39:f9:3a: 51:3a:b1:86:c9:db:eb:ae:a3:75:fb:e2:52:d1:6c: c7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DD:58:B4:8B:62:32:BB:A5:73:AE:FD:0D:63:67:2A:4C:8F:47:67 X509v3 Authority Key Identifier: keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ac:2a:fe:fa:b5:0f:36:00:4b:a7:81:b3:84:7b:f0:02:7b: 3a:94:ff:70:b0:9c:0b:70:a2:d4:67:aa:9c:6b:78:d0:e8:69: 51:ee:59:42:86:5d:ee:e5:af:18:47:ef:b7:47:66:64:2c:1c: d7:ef:84:15:0a:5e:55:d6:a2:a6:2c:0f:80:cd:7f:d0:54:0c: f3:95:c9:eb:01:8b:eb:1e:7d:42:eb:ca:3c:4b:1a:df:d8:aa: c9:f1:7f:cb:4a:28:35:dd:74:13:0e:b5:2f:3c:bf:0f:44:e0: 4f:5e:a7:4d:6c:90:90:91:48:e4:36:50:9a:b6:94:2a:b0:71: 72:ec:1c:87:9d:86:cf:30:b5:8e:6d:80:04:66:61:60:cd:80: 16:7a:3d:9d:f2:5a:2c:08:41:b7:45:2b:e7:c1:53:4f:ba:07: df:f6:1a:b1:ae:1d:89:e2:f9:5e:98:fb:8b:b7:f4:17:16:3e: 81:84:1c:71:ae:40:15:f8:23:76:ad:ef:7d:30:86:0e:3a:20: 39:1a:0b:29:b4:fd:45:cc:1c:a9:49:72:6d:e7:8d:c1:55:88: 6c:ba:3b:99:aa:4e:a0:0c:e5:a0:cb:fd:31:3c:8c:a4:6a:e1: 31:86:ce:a8:b8:18:70:9e:ef:d2:0d:9a:42:f7:aa:cb:96:9e: be:35:fe:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEEyRTExMC8GA1UEBRMoNkEzRUY2NzE4MkRCQjBGNkNDRjNDQTQxMzc4QzAxMTk4 MDZBRTlCRDAeFw0yNTA0MDUwNzA5MDlaFw0yNTA0MTIwNzA5MDlaMBgxFjAUBgNV BAMTDTY3ZjBkNzE1LTA3MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCndo7N9lM7uvlafzU0ksqjMIeIU7ZUcX0ezW8WIEmdjE8gugys/UaZaXdWLsYG 34bJtD4HBLEG6bilUe1pAGPMV9HdeBwgz0WmqPgSlr/fs/q5atrnC/lU4hdzbYt/ xk+cZkJg1eK7bwoSq0+MdUuOyuyI1faW16Rq/WkFDLpVszR8LLRJ5MGKkw4b4Uuz BDbndap7zE4iwSRyRmpMDeYv03Ct9ukfEH+lIBrLBB0ZdLiwU+YpDsxFBYTPX6is ZjDX+vxjRVnSgy0GTl+kvoDBLhlwsd+cW3UA0uVUz/48UoNd9LG/3VmD1UCCJjn5 OlE6sYbJ2+uuo3X74lLRbMdvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDd1YtIti Mrulc679DWNnKkyPR2cwHwYDVR0jBBgwFoAUaj72cYLbsPbM88pBN4wBGYBq6b0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwQTJFL0M4MzZDN0IyRTkw QjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWo3MmNZTGJzUGJNODhwQk40d0JHWUJxNmIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw QTJFL0M4MzZDN0IyRTkwQjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1Bi TTg4cEJONHdCR1lCcTZiMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+sKv76tQ82AEungbOEe/ACezqU/3CwnAtwotRnqpxreNDoaVHuWUKG Xe7lrxhH77dHZmQsHNfvhBUKXlXWoqYsD4DNf9BUDPOVyesBi+sefULryjxLGt/Y qsnxf8tKKDXddBMOtS88vw9E4E9ep01skJCRSOQ2UJq2lCqwcXLsHIedhs8wtY5t gARmYWDNgBZ6PZ3yWiwIQbdFK+fBU0+6B9/2GrGuHYni+V6Y+4u39BcWPoGEHHGu QBX4I3at730whg46IDkaCym0/UXMHKlJcm3njcFViGy6O5mqTqAM5aDL/TE8jKRq 4TGGzqi4GHCe79INmkL3qsuWnr41/mQ= -----END CERTIFICATE-----Generated at Sat Apr 5 10:13:25 2025 by rpki-client