$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: M81QUDWxGzeeTJ6CyOYrZTmIbGqcf7V8eisz7Ol50nY= Subject key identifier: BE:00:EA:AD:D1:68:2C:81:E3:C4:A2:E2:99:5B:69:F9:2C:75:50:4A Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 0663 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 0655 Signing time: Wed 12 Mar 2025 22:03:56 +0000 Manifest this update: Wed 12 Mar 2025 22:03:56 +0000 Manifest next update: Wed 19 Mar 2025 22:03:56 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: XMSoKKrhNwUk+w/wx0WayGE1dzqoFESNI13r46il6K4=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6 Validity Not Before: Mar 12 22:03:56 2025 GMT Not After : Mar 19 22:03:56 2025 GMT Subject: CN=67d204cc-a15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:69:40:6d:81:71:b1:1a:33:f1:06:39:fd:3b: 79:d5:a5:3d:7a:31:13:fa:e3:66:dc:bd:a9:c7:a7: 7a:0a:e0:9a:18:77:d1:e3:b7:74:82:2a:97:52:ba: 73:9c:20:f2:0a:1e:41:cb:eb:e0:3d:d5:30:42:c0: f6:b8:ea:ca:0a:0c:fd:c7:ec:39:8a:f4:df:d7:5e: 46:e2:ce:a6:f8:72:ae:ba:da:35:e1:3d:dd:5a:9c: d8:c2:e8:83:cf:86:64:4c:60:b6:c2:7a:b9:58:bd: 34:e1:b9:6a:71:a6:dd:5a:2b:aa:5d:6f:94:19:37: ad:3c:1a:88:3c:d7:49:0a:ef:d2:47:eb:30:24:99: a2:25:dd:68:65:4e:c3:c2:fa:59:d2:f0:27:1d:5c: 44:66:a7:a8:23:91:7b:4d:5e:c6:e8:ab:6b:ad:7c: 96:f7:06:d0:8b:85:81:4a:08:66:2d:f3:2c:d6:e8: 3a:ac:e1:c5:6d:d1:bd:4d:2c:c1:d3:cb:e2:9c:cf: 34:52:99:32:50:8d:9e:e6:ee:40:47:eb:e4:e6:c3: 31:1e:b4:a8:57:80:9a:d0:53:f4:b9:36:48:3d:da: 07:ff:2a:4b:73:2a:94:a7:a7:eb:cb:aa:fc:cc:56: ab:bf:0a:ac:6b:64:3e:94:98:96:01:45:13:67:9b: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:00:EA:AD:D1:68:2C:81:E3:C4:A2:E2:99:5B:69:F9:2C:75:50:4A X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:5b:20:6d:bb:8d:ed:be:75:ab:a7:f7:0a:a3:b7:71:8b:0c: fb:82:1b:8e:1c:8c:24:fc:89:a4:7b:f8:0b:24:21:2c:aa:2e: 13:b8:ee:7f:40:08:a9:17:02:5f:c0:33:a6:17:0f:8c:ee:92: 1a:ce:82:77:87:7e:f3:89:b4:53:c7:41:94:bc:56:c5:a3:bb: 5f:88:a4:e9:b7:4c:af:07:1a:b7:3d:88:6c:be:e5:13:6f:ca: 5c:68:31:54:c3:0f:26:cd:c3:7e:01:ab:e1:82:99:66:72:bf: 27:6a:f2:87:e1:71:ec:78:f3:9f:6b:ca:4b:2e:29:b3:55:67: 3c:2e:b2:f4:76:32:29:18:a8:c8:5f:cd:06:9f:e7:34:34:40: fb:63:4b:a5:46:9e:0c:54:2e:bd:ee:4d:85:1d:35:de:a9:5e: 5a:53:d5:a7:8e:ee:d6:93:00:89:2d:90:af:55:9b:32:8e:ca: 13:74:1b:51:fe:65:57:5f:91:e0:32:4a:fd:66:3d:5b:21:d4: f2:27:db:51:b8:86:e7:5b:63:13:a6:f0:a6:39:d6:68:8c:02: 01:b0:b7:df:70:92:b2:ba:0a:18:c4:58:07:81:c1:6a:bb:45: da:63:b4:79:07:c5:03:53:cb:57:68:3c:72:4c:df:b9:1c:83: 93:0d:44:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwMzEyMjIwMzU2WhcNMjUwMzE5MjIwMzU2WjAYMRYwFAYD VQQDEw02N2QyMDRjYy1hMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGlAbYFxsRoz8QY5/Tt51aU9ejET+uNm3L2px6d6CuCaGHfR47d0giqXUrpz nCDyCh5By+vgPdUwQsD2uOrKCgz9x+w5ivTf115G4s6m+HKuuto14T3dWpzYwuiD z4ZkTGC2wnq5WL004blqcabdWiuqXW+UGTetPBqIPNdJCu/SR+swJJmiJd1oZU7D wvpZ0vAnHVxEZqeoI5F7TV7G6KtrrXyW9wbQi4WBSghmLfMs1ug6rOHFbdG9TSzB 08vinM80UpkyUI2e5u5AR+vk5sMxHrSoV4Ca0FP0uTZIPdoH/ypLcyqUp6fry6r8 zFarvwqsa2Q+lJiWAUUTZ5vN7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4A6q3R aCyB48Si4plbafksdVBKMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJWyBtu43tvnWrp/cKo7dxiwz7ghuOHIwk/Imke/gLJCEsqi4TuO5/ QAipFwJfwDOmFw+M7pIazoJ3h37zibRTx0GUvFbFo7tfiKTpt0yvBxq3PYhsvuUT b8pcaDFUww8mzcN+Aavhgplmcr8navKH4XHsePOfa8pLLimzVWc8LrL0djIpGKjI X80Gn+c0NED7Y0ulRp4MVC697k2FHTXeqV5aU9Wnju7WkwCJLZCvVZsyjsoTdBtR /mVXX5HgMkr9Zj1bIdTyJ9tRuIbnW2MTpvCmOdZojAIBsLffcJKyugoYxFgHgcFq u0XaY7R5B8UDU8tXaDxyTN+5HIOTDURm -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:04 2025 by rpki-client