$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: M34nQ3PagA6G1AGKwSI/cOcizAB2X/dRbkm+lsXWL3Y= Subject key identifier: 33:12:05:47:F8:73:5E:F8:66:60:56:40:3D:1D:8B:B6:A0:73:E6:CC Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: 6F Signing time: Thu 13 Mar 2025 04:56:21 +0000 Manifest this update: Thu 13 Mar 2025 04:56:21 +0000 Manifest next update: Thu 20 Mar 2025 04:56:21 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: 8+yVzEy2lPP8PzgaRwqR+2ZehQehuEFNKdBjM0wy4ao=) 2: D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa (hash: 01FcOCzumKzY/vQ8wHIJFFKXgIpVBxtq1T3eDI1dtgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5 Validity Not Before: Mar 13 04:56:21 2025 GMT Not After : Mar 20 04:56:21 2025 GMT Subject: CN=67d26575-ff0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fa:68:59:83:06:bc:ab:ab:7b:e1:d2:ed:dd: ae:7f:72:8c:78:94:e8:45:7c:2b:2c:9f:45:b4:1e: 03:44:ad:cd:c1:b3:c2:e2:a0:42:16:f2:74:9e:8a: fd:18:0c:2a:70:77:2e:ea:42:0f:3c:64:4a:a1:e2: 39:17:87:e1:44:6c:eb:33:24:07:a1:07:5b:fa:e5: b8:9d:1e:65:8e:f8:bc:4e:24:a9:e2:5d:ec:40:0d: 62:ee:c2:7c:53:c6:cd:47:d6:ed:b2:83:1b:cd:e2: 49:21:03:7b:d4:f0:79:f9:c5:4a:ca:24:ea:ac:25: d6:ca:22:8f:3c:0e:fe:0a:3d:ea:2f:83:bc:0d:2a: 28:21:86:f7:40:19:64:26:8f:81:c4:6a:d0:83:7b: 01:33:8c:b7:0e:c2:85:51:19:99:d7:81:c9:8f:2f: ca:5d:d3:fd:e9:0b:36:0c:6e:91:77:2c:27:69:24: 74:65:4a:6a:81:eb:2b:33:52:be:f9:61:0d:b0:68: 1d:c2:74:59:87:4b:7a:58:a8:d2:a0:a1:f0:e8:9b: 6b:c7:40:b0:07:76:7b:e0:e6:53:ba:81:1e:fa:1d: ae:98:0c:25:24:55:45:60:68:74:42:4d:5d:e6:e6: f7:5f:ee:41:10:39:18:0b:dc:09:e5:ec:ae:68:5e: a2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:12:05:47:F8:73:5E:F8:66:60:56:40:3D:1D:8B:B6:A0:73:E6:CC X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:cd:61:ee:ff:ed:3c:45:55:85:c1:e0:9b:c6:f3:77:7f:15: d4:d4:48:9c:2d:b3:3c:1d:b3:9a:cb:9f:8f:ea:35:09:ba:2d: 83:95:87:2c:76:cd:3c:2a:67:a3:c0:af:13:ea:38:ef:3d:c2: f0:52:d9:a8:b8:60:d5:1a:30:c6:14:b9:ee:9e:23:1f:ea:27: 18:68:73:a1:cf:e0:69:44:d8:71:7a:0a:9d:c1:5f:a0:e4:91: f3:7e:e9:a9:3e:45:7b:ec:a3:86:f0:9b:a8:02:be:f7:49:cc: a6:76:ef:f9:af:6f:7a:ce:39:3d:48:24:e8:99:25:81:8f:e4: 3f:6f:da:80:de:f1:35:53:58:11:b9:06:c9:90:7d:b5:16:d6: 4e:47:11:26:d2:1b:de:bf:0e:86:13:ea:24:83:6c:40:5a:f6: e1:50:90:24:31:b1:bb:f8:22:80:9a:39:41:b0:25:6c:4e:34: 61:7c:3c:b6:1b:57:4b:b0:d2:89:5e:4c:4c:f7:b2:fe:be:14: d7:af:b4:6f:b1:f8:1d:78:3b:70:50:e6:f8:d3:62:81:95:b7: e1:80:6f:a5:05:59:0c:0f:64:d5:70:f4:c8:fe:f6:ef:c4:aa: 3b:97:6a:0c:21:9f:dc:58:4b:d9:4b:46:56:19:90:30:72:5c: 84:90:3f:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjlGNTExMC8GA1UEBRMoODdCMUVFM0U5RUUyQUQxQTExM0YyN0EyQTU0RTJDMEI4 RDVBRkIzNDAeFw0yNTAzMTMwNDU2MjFaFw0yNTAzMjAwNDU2MjFaMBgxFjAUBgNV BAMTDTY3ZDI2NTc1LWZmMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr+mhZgwa8q6t74dLt3a5/cox4lOhFfCssn0W0HgNErc3Bs8LioEIW8nSeiv0Y DCpwdy7qQg88ZEqh4jkXh+FEbOszJAehB1v65bidHmWO+LxOJKniXexADWLuwnxT xs1H1u2ygxvN4kkhA3vU8Hn5xUrKJOqsJdbKIo88Dv4KPeovg7wNKighhvdAGWQm j4HEatCDewEzjLcOwoVRGZnXgcmPL8pd0/3pCzYMbpF3LCdpJHRlSmqB6yszUr75 YQ2waB3CdFmHS3pYqNKgofDom2vHQLAHdnvg5lO6gR76Ha6YDCUkVUVgaHRCTV3m 5vdf7kEQORgL3Anl7K5oXqIlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMxIFR/hz XvhmYFZAPR2LtqBz5swwHwYDVR0jBBgwFoAUh7HuPp7irRoRPyeipU4sC41a+zQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGOUY1LzhCOTI2RDJBNUI5 RTExRUY4QkY5MTc1QkM0RjlBRTAyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDdIdVBwN2lyUm9SUHllaXBVNHNDNDFhLXpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG OUY1LzhCOTI2RDJBNUI5RTExRUY4QkY5MTc1QkM0RjlBRTAyL2g3SHVQcDdpclJv UlB5ZWlwVTRzQzQxYS16US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB3NYe7/7TxFVYXB4JvG83d/FdTUSJwtszwds5rLn4/qNQm6LYOVhyx2 zTwqZ6PArxPqOO89wvBS2ai4YNUaMMYUue6eIx/qJxhoc6HP4GlE2HF6Cp3BX6Dk kfN+6ak+RXvso4bwm6gCvvdJzKZ27/mvb3rOOT1IJOiZJYGP5D9v2oDe8TVTWBG5 BsmQfbUW1k5HESbSG96/DoYT6iSDbEBa9uFQkCQxsbv4IoCaOUGwJWxONGF8PLYb V0uw0oleTEz3sv6+FNevtG+x+B14O3BQ5vjTYoGVt+GAb6UFWQwPZNVw9Mj+9u/E qjuXagwhn9xYS9lLRlYZkDByXISQP3w= -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:12 2025 by rpki-client