$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: mHKRbOXyUykPsX0uv/TbjOtu78/ZamzQ3PVp8mQZroo= Subject key identifier: 9F:A1:4D:3C:74:14:8C:14:07:C3:90:0C:95:5B:DB:2E:FF:E8:DD:E9 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: E1 Signing time: Thu 13 Mar 2025 03:40:58 +0000 Manifest this update: Thu 13 Mar 2025 03:40:58 +0000 Manifest next update: Thu 20 Mar 2025 03:40:58 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: QWx7FuCly6u45RE6V/0QmuKNZXMuZbgcmff9CXGz5wk=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: 8zPxRe7MaH+hS0FNXaje7YOQ+Hnyx7RIa4mbg2ZFLUE=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: Oms7A+5CbFEtaIgmT8kB8Ycz88DQ95dp9Wjdw3xeV+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1 Validity Not Before: Mar 13 03:40:58 2025 GMT Not After : Mar 20 03:40:58 2025 GMT Subject: CN=67d253ca-9b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:21:66:d4:ec:f7:a9:ef:06:49:ec:08:a2: 19:87:d9:75:e4:23:e2:8c:4e:b8:0a:87:48:52:85: 36:32:a5:d9:7a:00:e6:08:89:d7:51:6b:86:a8:24: 6e:7d:a9:40:2f:a0:4a:71:5c:31:b9:da:28:fd:3a: 3e:13:ab:e4:05:34:d1:2a:fc:e9:8d:16:07:0d:cf: 2f:d9:13:cf:2b:dd:ec:5d:f3:87:3b:43:f3:a8:d8: 76:9d:02:7c:6d:03:dd:d7:cb:89:fb:fa:3d:96:dd: 91:63:43:75:c3:d2:b3:a5:24:f5:42:1a:1a:83:02: 01:b0:a0:9f:48:d3:cd:83:7b:99:0d:3a:7d:fd:2f: 08:69:d7:1c:b6:1e:fb:05:0d:98:4e:a3:3f:26:28: c3:c9:2e:1b:0d:ee:be:b7:8d:86:e4:79:ed:50:28: 70:3c:6c:00:4d:9a:0b:d8:a0:3c:37:af:90:07:4b: bb:57:96:02:67:ae:74:05:0a:af:4a:43:9b:8a:f7: 68:ed:73:2e:5c:20:b4:12:a6:ba:d7:72:e5:06:36: d8:dd:df:75:4d:01:c4:76:57:9c:db:3d:c8:69:9f: 26:63:0b:b6:a3:e2:f7:aa:40:c8:e9:67:3c:b0:3b: 8f:e7:5c:a3:2f:89:b8:d4:9f:6c:dc:ae:48:0e:fb: 80:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A1:4D:3C:74:14:8C:14:07:C3:90:0C:95:5B:DB:2E:FF:E8:DD:E9 X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:85:34:21:f3:91:f6:bf:ee:ac:08:05:e0:40:b4:18:6d:6c: da:0f:a8:b0:54:47:c9:c4:55:65:5c:c6:a0:f4:6a:9e:ac:02: 6c:8b:3c:72:f0:91:83:65:7f:d0:ae:c0:fd:99:cf:ec:49:1f: d0:75:f4:cd:9c:6c:00:f1:3f:ba:1b:fe:5e:83:ef:2c:5e:a4: a1:8e:e8:64:68:b6:bd:77:89:ef:4e:4f:ad:ef:11:9c:b0:cc: f9:73:08:89:5d:20:4f:45:f0:7d:ce:bc:c7:fe:50:a5:b5:f6: 30:48:1d:7f:1c:c3:eb:50:66:84:e9:dd:06:f3:14:99:4e:aa: 91:38:96:cb:21:7f:03:16:18:0d:75:2c:8a:dd:d4:1a:1f:c5: 58:53:e4:d2:4f:da:6e:5c:b5:fa:c5:57:66:5e:db:19:33:19: 0b:94:10:36:ce:3e:08:30:a1:02:fb:87:99:96:c9:f3:a1:7c: 5d:68:3c:3a:9e:de:8b:49:69:81:57:41:b5:bd:a7:75:47:e1: 29:ba:b5:cd:8a:70:2f:c9:76:72:cc:96:a6:7e:4b:0f:47:5d: ac:33:f2:ba:31:a8:61:87:65:96:69:49:aa:76:58:82:db:6a: 4b:2d:22:33:f6:b7:6c:78:b0:40:17:5c:f7:97:9f:22:49:98: 33:cd:77:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUwMzEzMDM0MDU4WhcNMjUwMzIwMDM0MDU4WjAYMRYwFAYD VQQDEw02N2QyNTNjYS05YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv8hZtTs96nvBknsCKIZh9l15CPijE64CodIUoU2MqXZegDmCInXUWuGqCRu falAL6BKcVwxudoo/To+E6vkBTTRKvzpjRYHDc8v2RPPK93sXfOHO0PzqNh2nQJ8 bQPd18uJ+/o9lt2RY0N1w9KzpST1QhoagwIBsKCfSNPNg3uZDTp9/S8Iadccth77 BQ2YTqM/JijDyS4bDe6+t42G5HntUChwPGwATZoL2KA8N6+QB0u7V5YCZ650BQqv SkObivdo7XMuXCC0Eqa613LlBjbY3d91TQHEdlec2z3IaZ8mYwu2o+L3qkDI6Wc8 sDuP51yjL4m41J9s3K5IDvuAsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+hTTx0 FIwUB8OQDJVb2y7/6N3pMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFhTQh85H2v+6sCAXgQLQYbWzaD6iwVEfJxFVlXMag9GqerAJsizxy 8JGDZX/QrsD9mc/sSR/QdfTNnGwA8T+6G/5eg+8sXqShjuhkaLa9d4nvTk+t7xGc sMz5cwiJXSBPRfB9zrzH/lCltfYwSB1/HMPrUGaE6d0G8xSZTqqROJbLIX8DFhgN dSyK3dQaH8VYU+TST9puXLX6xVdmXtsZMxkLlBA2zj4IMKEC+4eZlsnzoXxdaDw6 nt6LSWmBV0G1vad1R+EpurXNinAvyXZyzJamfksPR12sM/K6Mahhh2WWaUmqdliC 22pLLSIz9rdseLBAF1z3l58iSZgzzXe1 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:59 2025 by rpki-client