$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: SXAg3iIGdltuqODePv0USrKwwSZBQjQ1TM/bwsErdL0= Subject key identifier: BA:03:0B:D9:48:68:45:72:EB:C7:08:15:05:96:90:CF:F5:F1:1F:5A Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 08EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 08B7 Signing time: Wed 12 Mar 2025 20:19:20 +0000 Manifest this update: Wed 12 Mar 2025 20:19:20 +0000 Manifest next update: Wed 19 Mar 2025 20:19:20 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: v2JpYK3Adk9ZhCJQUUriHtLGymgp1dZ7eEXubMC00yc=) 2: 46948AC87B8511EDB9E3E055C4F9AE02.roa (hash: ZxtXXsjPmgBn3QuaEolbOSfh14MSz6fJKNljAALoKTY=) 3: DFA52AEE43FF11EFA86B9536C4F9AE02.roa (hash: qr0rnsAJCUBdZiHQo9gHezZTtCenaNEBGyRSfJQO9hk=) 4: 88252000B55C11ECA9565039C4F9AE02.roa (hash: ROM2aBA2uOLvGraWZ2OMfhtRxZ5DusfnSKSNI9N61E8=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: J9pnyjCXshJdQFSggqWmHXW0nySYEfDGHTCaX/EZOYk=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: Ejx3yVkwMIGPx4PH4VpagQp/pASvV9ahz0Vqhx7EKZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E Validity Not Before: Mar 12 20:19:20 2025 GMT Not After : Mar 19 20:19:20 2025 GMT Subject: CN=67d1ec48-03c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:75:75:06:08:6e:76:ef:1b:eb:6b:c8:fa: 96:bc:6e:21:ce:1a:6d:93:fa:9e:5e:8d:20:67:76: 71:7d:ef:e5:0c:16:80:cb:e4:ad:61:4d:0c:42:84: 40:22:8a:4c:26:6c:35:eb:76:fa:f9:46:83:3f:40: 96:18:04:94:72:92:54:5d:0f:16:db:e9:22:91:95: a2:53:6c:47:ed:fc:24:40:c8:7c:77:df:ed:b2:09: 82:30:5b:17:d3:88:91:f3:07:1c:51:34:1b:4a:2d: 7e:cc:7a:74:50:6f:bc:d3:5c:4d:62:d2:76:46:3f: f1:d1:a8:35:08:3e:f9:f5:b3:31:59:e8:78:eb:55: ec:a4:1e:15:06:60:73:bb:95:ea:80:4e:a1:33:ef: 01:c0:d9:fd:84:73:89:df:21:0b:52:57:b8:5c:3f: 12:8c:76:3c:1d:5d:aa:e7:0b:08:c5:1e:99:4f:f1: 74:9e:29:1e:b4:da:f2:83:e7:2a:10:ed:9b:2c:94: 8d:7b:ac:0c:27:af:c8:4c:d1:73:a5:63:43:ab:73: 76:12:44:5d:59:fd:0a:1b:f7:df:24:53:09:4d:a3: ce:d8:46:84:dd:d5:18:93:96:cb:95:5f:b8:b4:d6: 35:91:b5:b5:c6:7c:6e:a2:fb:2c:72:2b:f2:7e:84: 81:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:03:0B:D9:48:68:45:72:EB:C7:08:15:05:96:90:CF:F5:F1:1F:5A X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:86:cd:be:b5:be:a8:93:d5:74:03:26:49:95:10:47:a7:e2: 35:ce:37:53:ff:02:42:99:96:ce:6f:3c:11:aa:c8:e1:17:e1: 99:5c:b3:f2:76:79:bf:de:6b:9e:51:1e:65:17:08:75:22:64: bc:76:ac:3e:a6:38:98:36:a1:48:c3:9f:2f:61:10:0c:32:9b: b8:05:4d:c3:7c:a5:ce:a4:4d:b0:6d:27:74:40:6c:34:f9:00: e4:df:9c:ec:ae:e1:b5:16:13:af:18:a1:8a:25:50:91:f2:83: 43:93:aa:1d:04:da:01:86:45:c7:e5:3f:9c:c9:56:48:92:9f: e3:62:ce:c8:8e:5d:3e:c9:bc:43:2b:29:13:13:56:ee:6d:0d: 8f:b2:c2:e0:90:4f:ac:f8:25:23:07:94:52:7b:e8:0a:26:85: 34:26:55:7a:f9:a6:e7:10:03:3e:45:0d:d1:64:ed:53:a8:99: 8a:b1:55:fa:1e:39:81:25:08:7e:99:17:c5:9d:d4:82:4a:4b: d2:b8:df:52:3e:db:cd:58:8c:86:55:99:fd:f1:ee:9f:57:7d: 7c:55:fd:bd:33:36:ee:e4:5a:be:39:7b:b9:97:32:0d:7f:3e: c7:d6:dd:f1:f1:6d:40:12:33:7f:be:ac:d5:39:3f:3e:68:c1: bc:5f:bf:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUwMzEyMjAxOTIwWhcNMjUwMzE5MjAxOTIwWjAYMRYwFAYD VQQDEw02N2QxZWM0OC0wM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z91dQYIbnbvG+tryPqWvG4hzhptk/qeXo0gZ3Zxfe/lDBaAy+StYU0MQoRA IopMJmw163b6+UaDP0CWGASUcpJUXQ8W2+kikZWiU2xH7fwkQMh8d9/tsgmCMFsX 04iR8wccUTQbSi1+zHp0UG+801xNYtJ2Rj/x0ag1CD759bMxWeh461XspB4VBmBz u5XqgE6hM+8BwNn9hHOJ3yELUle4XD8SjHY8HV2q5wsIxR6ZT/F0niketNryg+cq EO2bLJSNe6wMJ6/ITNFzpWNDq3N2EkRdWf0KG/ffJFMJTaPO2EaE3dUYk5bLlV+4 tNY1kbW1xnxuovsscivyfoSBfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoDC9lI aEVy68cIFQWWkM/18R9aMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKhs2+tb6ok9V0AyZJlRBHp+I1zjdT/wJCmZbObzwRqsjhF+GZXLPy dnm/3mueUR5lFwh1ImS8dqw+pjiYNqFIw58vYRAMMpu4BU3DfKXOpE2wbSd0QGw0 +QDk35zsruG1FhOvGKGKJVCR8oNDk6odBNoBhkXH5T+cyVZIkp/jYs7Ijl0+ybxD KykTE1bubQ2PssLgkE+s+CUjB5RSe+gKJoU0JlV6+abnEAM+RQ3RZO1TqJmKsVX6 HjmBJQh+mRfFndSCSkvSuN9SPtvNWIyGVZn98e6fV318Vf29Mzbu5Fq+OXu5lzIN fz7H1t3x8W1AEjN/vqzVOT8+aMG8X7/y -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:13 2025 by rpki-client