$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: wBasMgd4xwsBU7RwV7oOa8mRx92HkiirFw2Y6cGLvVo= Subject key identifier: 73:75:05:4A:42:3D:5E:E8:94:7B:25:94:42:DB:04:49:D2:0F:43:17 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 05C3 Signing time: Wed 12 Mar 2025 22:42:24 +0000 Manifest this update: Wed 12 Mar 2025 22:42:23 +0000 Manifest next update: Wed 19 Mar 2025 22:42:23 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: bDZhQAXoO5MGlcm1rvrvIWRwVAbrq6ChG2EBej2zCpk=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C Validity Not Before: Mar 12 22:42:23 2025 GMT Not After : Mar 19 22:42:23 2025 GMT Subject: CN=67d20dcf-bcdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4e:29:a8:e3:f8:03:0f:73:6e:f1:b9:27:9d: 1b:cf:2d:67:4d:ce:82:75:8a:32:ab:a6:57:2c:30: 9b:a4:a4:91:ed:60:25:25:00:97:ad:e3:49:8f:46: 4c:f0:19:df:e7:71:d7:59:d1:b7:5a:57:b7:fa:55: 9d:98:1d:fc:f2:e6:98:15:e5:29:44:fe:4a:bd:0b: b7:2c:29:df:cc:c7:d2:09:d2:43:bd:53:02:d4:e3: d4:f8:bc:e5:72:ad:0e:66:c1:03:bb:d1:8e:d3:4d: 7c:f2:89:15:fe:ba:18:45:20:30:29:fc:9f:1a:e0: d4:c3:b6:c4:ad:ce:92:e9:0b:3c:95:54:08:67:75: 0f:25:fd:31:a4:e3:4c:ce:89:c1:d2:79:0a:7b:91: 3e:fc:04:75:f6:4a:80:73:59:86:bc:dc:67:7a:c3: 4f:29:68:70:3c:42:3d:7a:f7:d4:ac:5d:55:71:bd: 3c:f8:2e:1d:7e:f6:c0:36:c4:81:d3:21:0a:45:17: e0:58:b0:a4:cb:22:5a:a3:46:af:4a:f6:e2:5e:6a: ec:9f:b4:99:b4:92:72:8f:d0:66:9d:a9:90:cd:7a: cd:1a:28:92:c3:bd:95:e5:c1:10:62:0f:51:1b:10: bb:1c:d5:d5:34:d6:8d:85:8f:ca:02:03:d8:6a:5b: 67:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:75:05:4A:42:3D:5E:E8:94:7B:25:94:42:DB:04:49:D2:0F:43:17 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:25:8e:e3:d5:d8:b0:85:cc:01:5d:a1:0a:ac:ff:fd:89:57: 78:b6:e2:29:aa:7d:30:c6:a4:4c:01:4b:85:90:d7:32:ab:a4: 58:c5:18:54:46:d0:3e:95:ea:8c:e9:1d:b8:35:d9:01:c5:8c: a4:2b:b5:1c:94:d1:ef:88:bb:b8:b4:56:2b:ec:a7:b3:9e:ea: a8:33:b8:d8:c8:c5:ec:29:c0:4f:3e:0b:b7:e2:19:06:44:87: 71:56:fa:d3:dd:f4:23:01:b2:69:ca:31:9c:65:20:5c:be:ce: 76:f8:f4:ad:06:db:d0:a0:b4:94:44:00:a4:f5:5b:48:91:f0: f2:5f:ed:25:f8:5e:b7:12:fc:25:ea:88:18:01:84:d5:6e:a7: 41:96:d3:68:9f:17:50:ff:61:50:5d:4e:ad:92:09:4f:c3:e1: 35:02:26:8c:f1:c0:bd:25:7a:31:bb:a0:ea:ed:2c:cc:08:84: 9a:cc:3d:af:c2:54:97:f3:94:c1:87:fd:fa:93:55:1a:11:47: 82:ff:e0:71:a1:7f:9e:27:bb:1a:96:de:d8:82:ff:04:22:c2: 72:29:e9:d5:57:10:94:35:88:76:e9:50:29:8f:16:71:c0:78: 6a:0f:44:ca:48:03:fc:8e:69:e3:6f:95:b4:ef:ce:c5:d4:f3: 1c:9a:d7:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwMzEyMjI0MjIzWhcNMjUwMzE5MjI0MjIzWjAYMRYwFAYD VQQDEw02N2QyMGRjZi1iY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7k4pqOP4Aw9zbvG5J50bzy1nTc6CdYoyq6ZXLDCbpKSR7WAlJQCXreNJj0ZM 8Bnf53HXWdG3Wle3+lWdmB388uaYFeUpRP5KvQu3LCnfzMfSCdJDvVMC1OPU+Lzl cq0OZsEDu9GO00188okV/roYRSAwKfyfGuDUw7bErc6S6Qs8lVQIZ3UPJf0xpONM zonB0nkKe5E+/AR19kqAc1mGvNxnesNPKWhwPEI9evfUrF1Vcb08+C4dfvbANsSB 0yEKRRfgWLCkyyJao0avSvbiXmrsn7SZtJJyj9BmnamQzXrNGiiSw72V5cEQYg9R GxC7HNXVNNaNhY/KAgPYaltnqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHN1BUpC PV7olHsllELbBEnSD0MXMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATJY7j1diwhcwBXaEKrP/9iVd4tuIpqn0wxqRMAUuFkNcyq6RYxRhU RtA+leqM6R24NdkBxYykK7UclNHviLu4tFYr7KeznuqoM7jYyMXsKcBPPgu34hkG RIdxVvrT3fQjAbJpyjGcZSBcvs52+PStBtvQoLSURACk9VtIkfDyX+0l+F63Evwl 6ogYAYTVbqdBltNonxdQ/2FQXU6tkglPw+E1AiaM8cC9JXoxu6Dq7SzMCISazD2v wlSX85TBh/36k1UaEUeC/+BxoX+eJ7salt7Ygv8EIsJyKenVVxCUNYh26VApjxZx wHhqD0TKSAP8jmnjb5W0787F1PMcmtex -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client