$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: UvhXJbhKg7orz+t9tmHj0KLSp/d7Q8tr6e7MG29/PMc= Subject key identifier: C1:7F:5B:23:75:A9:67:90:FE:AB:11:79:B3:29:31:69:55:36:F9:B1 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: 63 Signing time: Thu 13 Mar 2025 05:05:18 +0000 Manifest this update: Thu 13 Mar 2025 05:05:17 +0000 Manifest next update: Thu 20 Mar 2025 05:05:17 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: uLuhAB8rz4wm74LWDvkkpKdQr69A7P2TEwM+1y8kSNA=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: n3pzdI1R6OnpGAR7FmeF9nZ8iLEx5lsOyhq7ASsGK90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0 Validity Not Before: Mar 13 05:05:17 2025 GMT Not After : Mar 20 05:05:17 2025 GMT Subject: CN=67d2678e-2a05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:55:ba:4a:46:1a:ba:bc:a7:c0:fc:a6:1c: 33:d3:fe:9f:9c:1b:06:f2:37:f4:5a:4f:c0:2a:94: 2e:29:b7:40:46:f2:de:7c:64:1e:ae:54:bc:42:ba: 3e:b7:79:17:78:bb:a4:cf:55:96:48:8c:13:35:f4: 07:5e:8d:ba:ad:f2:4e:3b:be:9c:46:a9:0a:02:b7: 16:8e:b5:0c:a1:d4:94:50:b1:50:a5:6f:b6:7b:8d: 9d:3b:42:8b:58:da:e4:79:cf:1c:16:bb:22:59:0f: 70:3d:04:05:a0:a6:fb:31:69:dd:7b:85:58:04:99: 05:ab:51:0b:ad:c8:1c:7a:e8:84:97:fe:e6:7a:ff: 87:e3:e1:6b:da:a1:da:c4:0e:4d:e1:67:65:a0:93: e8:61:d9:9d:45:36:81:76:cc:30:50:8f:5f:68:b9: 84:7f:08:25:23:b6:d6:3e:6f:90:b9:af:58:b4:5e: 6f:94:8f:be:32:cb:bc:10:7e:2c:5d:14:27:7f:33: 2b:9f:1a:7e:9e:91:e9:4e:93:c9:45:ca:fb:3c:8e: 8f:1f:15:e8:ba:75:b5:e2:54:10:2d:c0:6e:41:0c: 43:a9:75:ca:19:40:4a:9c:8d:cf:56:e5:f4:cc:5d: ed:df:90:6d:68:f7:1d:8a:63:15:aa:78:20:81:d0: 0c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7F:5B:23:75:A9:67:90:FE:AB:11:79:B3:29:31:69:55:36:F9:B1 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:08:4e:44:c3:16:8c:21:a1:05:fd:48:f5:3c:2e:ee:c6:5f: 37:2a:47:2d:e7:03:66:25:f6:e0:c7:c8:e1:54:f8:6f:e3:9f: 86:1b:fa:33:24:03:0b:fe:1f:e3:c3:91:67:e1:fb:c6:34:46: 56:ea:4f:56:3a:11:cd:f7:24:7a:3f:89:03:cf:58:3d:82:20: 26:01:59:4c:82:d4:a9:b3:18:0f:38:87:d4:79:6f:7d:ba:e0: 55:c3:4e:5f:0c:61:3d:35:b0:83:d6:07:9d:e1:09:da:26:e8: 73:4f:02:69:26:a4:b9:bc:18:db:98:00:f0:c3:74:af:8f:16: f7:8a:61:4c:c0:dd:c7:13:ca:06:50:03:d5:60:e5:f7:85:26: ee:36:0c:76:77:8f:ce:2c:7d:64:47:a1:12:e3:ed:fe:89:1d: cc:84:60:a1:d3:66:06:e5:4c:1c:0b:37:b8:d3:a8:5a:8c:39: 08:d1:33:bc:0a:02:88:6b:aa:f4:32:f1:7e:47:ef:4f:38:4a: 43:06:a3:86:56:e9:bd:37:8f:c4:ae:27:3b:a7:9d:40:a8:01: 87:99:b7:ce:c3:bb:66:3a:f9:dc:e7:e2:81:bc:77:de:44:35: 0d:02:8a:c1:3f:2b:66:12:88:d1:28:d2:00:a2:3c:e7:e3:ca: 44:4b:c5:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MERFMDExMC8GA1UEBRMoOEVBNUI5NTYzMjI3QzJFNThENDM4QkMxN0JBODIyNTA3 NTQyNDQzQjAeFw0yNTAzMTMwNTA1MTdaFw0yNTAzMjAwNTA1MTdaMBgxFjAUBgNV BAMTDTY3ZDI2NzhlLTJhMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDALlW6SkYaurynwPymHDPT/p+cGwbyN/RaT8AqlC4pt0BG8t58ZB6uVLxCuj63 eRd4u6TPVZZIjBM19Adejbqt8k47vpxGqQoCtxaOtQyh1JRQsVClb7Z7jZ07QotY 2uR5zxwWuyJZD3A9BAWgpvsxad17hVgEmQWrUQutyBx66ISX/uZ6/4fj4WvaodrE Dk3hZ2Wgk+hh2Z1FNoF2zDBQj19ouYR/CCUjttY+b5C5r1i0Xm+Uj74yy7wQfixd FCd/MyufGn6ekelOk8lFyvs8jo8fFei6dbXiVBAtwG5BDEOpdcoZQEqcjc9W5fTM Xe3fkG1o9x2KYxWqeCCB0AxrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwX9bI3Wp Z5D+qxF5sykxaVU2+bEwHwYDVR0jBBgwFoAUjqW5VjInwuWNQ4vBe6giUHVCRDsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwREUwLzcwNDBBOEU4NkE4 NTExRUZCMTU2ODE0N0M0RjlBRTAyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JE cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvanFXNVZqSW53dVdOUTR2QmU2Z2lVSFZDUkRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw REUwLzcwNDBBOEU4NkE4NTExRUZCMTU2ODE0N0M0RjlBRTAyL2pxVzVWaklud3VX TlE0dkJlNmdpVUhWQ1JEcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJoITkTDFowhoQX9SPU8Lu7GXzcqRy3nA2Yl9uDHyOFU+G/jn4Yb+jMk Awv+H+PDkWfh+8Y0RlbqT1Y6Ec33JHo/iQPPWD2CICYBWUyC1KmzGA84h9R5b326 4FXDTl8MYT01sIPWB53hCdom6HNPAmkmpLm8GNuYAPDDdK+PFveKYUzA3ccTygZQ A9Vg5feFJu42DHZ3j84sfWRHoRLj7f6JHcyEYKHTZgblTBwLN7jTqFqMOQjRM7wK AohrqvQy8X5H7084SkMGo4ZW6b03j8SuJzunnUCoAYeZt87Du2Y6+dzn4oG8d95E NQ0CisE/K2YSiNEo0gCiPOfjykRLxZ0= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:49 2025 by rpki-client