$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: v/XPvj3qX1WK5s1/gLSQfivII/+Yvn6BwRriuqrBQLU= Subject key identifier: 43:BA:D2:6E:87:E2:6F:54:36:39:58:BB:DA:FF:F9:62:16:B8:9F:23 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 70 Signing time: Thu 13 Mar 2025 04:51:42 +0000 Manifest this update: Thu 13 Mar 2025 04:51:41 +0000 Manifest next update: Thu 20 Mar 2025 04:51:41 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: SOO5KJ3eFT/iJeY4csz+8Jjyvdoqy8tjw7htgbXC1AE=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: FxzQ/fIjW3ehlt8HpKRH7n5BfwlAuKegJIAFiGlOhTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57 Validity Not Before: Mar 13 04:51:41 2025 GMT Not After : Mar 20 04:51:41 2025 GMT Subject: CN=67d2645e-4822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8b:a2:61:08:c9:56:81:65:5c:69:91:65:98: f3:61:de:55:21:49:fd:ad:2e:be:04:57:85:3c:ef: 8b:fa:06:42:c4:ec:8b:b2:e3:2d:9e:f8:ac:c2:d6: 46:5e:6c:c6:90:0d:f4:66:0f:a4:b7:d5:00:3d:c3: 62:df:a1:66:7a:30:09:3a:21:cf:76:7c:77:c5:ee: f0:88:75:82:7e:56:52:f3:34:36:02:bc:40:a0:70: 63:fe:8a:08:f4:bc:c9:52:eb:e5:bb:00:53:d9:e3: a4:2a:b6:b3:48:25:5d:74:f3:8b:70:0c:9b:59:e0: ed:40:d3:87:3c:fe:81:86:80:6c:7e:02:b6:90:3e: 05:d4:6a:71:35:e7:af:13:ce:05:79:bd:61:a4:ac: a1:be:04:a3:72:b5:00:76:b7:c0:54:2e:70:2a:97: b9:4a:ef:9a:c4:5a:64:19:31:67:1f:08:81:5c:c7: 3a:7e:8a:02:d0:89:b5:26:0f:e1:19:d4:dc:44:44: 84:11:7d:92:bb:50:e0:f3:94:c3:1a:65:79:30:7c: d7:c8:bd:d9:bd:f5:d8:3e:53:7c:35:78:b2:f9:ec: 48:1a:70:d4:04:33:39:ce:3b:bb:74:55:41:20:c0: 2d:2d:be:5b:f1:96:da:04:e8:87:32:01:47:38:b0: e5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BA:D2:6E:87:E2:6F:54:36:39:58:BB:DA:FF:F9:62:16:B8:9F:23 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:9a:7c:5f:63:82:ed:22:38:7f:82:7c:38:67:bd:48:9f:21: ea:c5:92:32:19:aa:a5:dd:68:68:07:6c:5a:8c:4e:27:6c:85: f7:a0:b4:b5:0b:a3:d7:7b:13:41:ff:0b:bf:3a:1c:4b:e3:4a: 23:9e:b8:93:47:83:8f:9a:bc:19:81:f4:dd:76:e1:3f:1e:51: c6:5b:34:01:e5:3c:24:48:76:75:e9:e5:56:1c:d8:8b:b5:89: a7:67:3e:f3:55:94:39:f4:52:66:ce:19:7e:e0:e0:48:64:23: af:7d:d0:bb:ea:eb:8d:e8:c9:70:57:18:ea:1f:5d:a2:a3:10: 1d:0a:7b:df:f2:b6:d1:8b:43:2f:d1:75:5a:6c:a5:8f:b9:b2: d7:d5:e3:b4:6b:86:83:60:66:32:bb:95:e9:4d:7b:af:6c:da: c9:9a:38:3a:3b:f0:23:81:de:5b:07:f5:0a:b0:98:ae:be:e9: 64:d4:f4:37:f4:17:de:ff:07:64:7c:bc:e8:bd:2b:4f:e5:62: e0:29:c2:d1:5a:a6:9f:19:31:dc:4a:cd:ca:87:3a:66:be:c5: df:ac:6a:95:0c:37:63:a7:be:47:27:de:4f:94:b9:f0:9b:21: ed:ba:01:af:7c:c2:d9:d7:02:a1:b7:63:5f:c9:93:7e:f1:f8: 9e:91:db:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE1NzExMC8GA1UEBRMoRDlDNUQ4MkFCRDMwRkREMjBGQTlDQUYzRDFFRDg2N0RC MDc2OTU2QjAeFw0yNTAzMTMwNDUxNDFaFw0yNTAzMjAwNDUxNDFaMBgxFjAUBgNV BAMTDTY3ZDI2NDVlLTQ4MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbi6JhCMlWgWVcaZFlmPNh3lUhSf2tLr4EV4U874v6BkLE7Iuy4y2e+KzC1kZe bMaQDfRmD6S31QA9w2LfoWZ6MAk6Ic92fHfF7vCIdYJ+VlLzNDYCvECgcGP+igj0 vMlS6+W7AFPZ46QqtrNIJV1084twDJtZ4O1A04c8/oGGgGx+AraQPgXUanE1568T zgV5vWGkrKG+BKNytQB2t8BULnAql7lK75rEWmQZMWcfCIFcxzp+igLQibUmD+EZ 1NxERIQRfZK7UODzlMMaZXkwfNfIvdm99dg+U3w1eLL57EgacNQEMznOO7t0VUEg wC0tvlvxltoE6IcyAUc4sOU1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ7rSbofi b1Q2OVi72v/5Yha4nyMwHwYDVR0jBBgwFoAU2cXYKr0w/dIPqcrz0e2GfbB2lWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTU3LzZFNzQ4MzEwNTZF QzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMmNYWUtyMHdfZElQcWNyejBlMkdmYkIybFdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTU3LzZFNzQ4MzEwNTZFQzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJ UHFjcnowZTJHZmJCMmxXcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ2afF9jgu0iOH+CfDhnvUifIerFkjIZqqXdaGgHbFqMTidshfegtLUL o9d7E0H/C786HEvjSiOeuJNHg4+avBmB9N124T8eUcZbNAHlPCRIdnXp5VYc2Iu1 iadnPvNVlDn0UmbOGX7g4EhkI6990Lvq643oyXBXGOofXaKjEB0Ke9/yttGLQy/R dVpspY+5stfV47RrhoNgZjK7lelNe69s2smaODo78COB3lsH9QqwmK6+6WTU9Df0 F97/B2R8vOi9K0/lYuApwtFapp8ZMdxKzcqHOma+xd+sapUMN2Onvkcn3k+UufCb Ie26Aa98wtnXAqG3Y1/Jk37x+J6R2+0= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:50 2025 by rpki-client