$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft File: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json) Hash identifier: /5kJ4yM9TKGeHmAyPJRlB7spjetYmdE9zRpRdDcQ7WU= Subject key identifier: 89:07:8F:61:89:83:67:67:80:C8:B8:97:F6:EA:C9:B9:AA:CF:43:A1 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 1876 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft Manifest number: 1870 Signing time: Fri 04 Apr 2025 15:52:19 +0000 Manifest this update: Fri 04 Apr 2025 15:52:18 +0000 Manifest next update: Fri 11 Apr 2025 15:52:18 +0000 Files and hashes: 1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: EvS4Sd33VL7XNcFPmf1mJk9FOr5nS+twjO375QIrZXM=) 2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: WuIJH5EmbtRmJmFCN//mGN8XhCDwfYBWN+2IltuHvZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6262 (0x1876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691 Validity Not Before: Apr 4 15:52:18 2025 GMT Not After : Apr 11 15:52:18 2025 GMT Subject: CN=67f00032-11ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f4:63:ba:33:a1:ac:68:96:b9:93:e1:71:f1: fe:9d:33:6b:31:f2:c6:1f:df:60:07:e3:50:3e:34: 51:91:55:17:d9:3f:48:29:d1:b1:29:80:57:09:bf: 62:d0:64:f2:0c:db:90:0b:ae:92:9b:d2:eb:96:0a: 5b:fe:e1:d1:0a:cc:de:27:fe:d4:ca:f8:a4:03:60: e2:1b:14:9f:d3:7d:91:16:1a:ce:44:2f:78:1c:df: 78:0a:4f:57:68:4c:12:de:43:ee:95:7e:3d:d8:94: 0b:74:3e:c1:2c:7c:e8:93:0b:72:fa:62:6d:10:80: 8d:62:8a:ca:9e:f2:0a:2e:cf:66:48:d8:de:ff:8f: 08:fc:ec:b6:d2:ab:c1:ce:f4:21:4f:e2:de:df:30: 7a:cc:e9:c6:fa:37:05:02:dc:6c:cf:0b:7e:d4:1b: 7f:ea:85:3b:62:ec:d6:74:99:44:ee:1e:2a:da:5e: 72:ea:03:0c:5c:1e:2a:6d:b4:1d:8b:94:75:a5:91: e1:ba:fa:60:15:a3:8e:0e:cf:d6:9a:fc:48:89:a2: d3:6d:ad:67:e4:d5:78:41:93:ec:3c:b6:cb:41:22: e5:eb:22:01:59:e3:f0:c4:2f:39:64:46:fc:de:82: 61:e9:db:09:ab:fb:b2:fb:9a:d4:c1:aa:39:5b:66: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:07:8F:61:89:83:67:67:80:C8:B8:97:F6:EA:C9:B9:AA:CF:43:A1 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:2f:5d:90:fd:cd:9d:75:61:15:e6:8c:53:f0:f2:a8:10:6b: de:0a:f8:31:2d:fb:da:f6:f5:ed:b0:87:92:77:f0:38:c4:14: 11:34:8c:b6:da:a5:ab:0a:96:6c:94:9e:45:2e:d0:c4:d8:64: 15:09:fd:db:d7:50:25:d8:9c:47:ad:5e:ea:20:ae:36:52:af: 67:58:4a:c2:0f:cf:2c:d3:01:d1:29:84:27:87:a0:d6:94:92: 51:b7:35:00:a1:f1:dd:52:d2:9c:43:27:c3:e2:26:b0:5b:23: 61:82:80:3a:d9:a8:86:c7:57:c0:5b:af:eb:75:5e:9b:18:2d: b1:c1:87:8f:76:ee:23:a4:1f:dc:0d:19:47:1d:e9:79:66:3c: b6:9d:15:77:33:f8:aa:8f:b0:ff:b0:e9:8f:2e:9f:40:31:1e: 9f:65:8a:63:3c:4f:5f:81:31:cc:68:ae:f3:e1:ad:d0:9f:c3: f3:14:27:1d:20:4f:8c:fb:2e:69:c1:f2:c5:b9:fc:32:14:a8: 5d:62:eb:c5:3b:f2:e0:31:a2:ac:07:48:c8:89:b9:ce:b4:e0: 88:be:1e:9d:a7:04:db:2d:18:bb:61:fe:43:5b:48:d6:f0:e6: 1b:50:bc:1f:a4:40:5c:48:c6:78:49:6b:5e:78:51:e7:2d:58: 37:9f:fd:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjUwNDA0MTU1MjE4WhcNMjUwNDExMTU1MjE4WjAYMRYwFAYD VQQDEw02N2YwMDAzMi0xMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fRjujOhrGiWuZPhcfH+nTNrMfLGH99gB+NQPjRRkVUX2T9IKdGxKYBXCb9i 0GTyDNuQC66Sm9Lrlgpb/uHRCszeJ/7UyvikA2DiGxSf032RFhrORC94HN94Ck9X aEwS3kPulX492JQLdD7BLHzokwty+mJtEICNYorKnvIKLs9mSNje/48I/Oy20qvB zvQhT+Le3zB6zOnG+jcFAtxszwt+1Bt/6oU7YuzWdJlE7h4q2l5y6gMMXB4qbbQd i5R1pZHhuvpgFaOODs/WmvxIiaLTba1n5NV4QZPsPLbLQSLl6yIBWePwxC85ZEb8 3oJh6dsJq/uy+5rUwao5W2YibwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkHj2GJ g2dngMi4l/bqybmqz0OhMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81MEM2OTI5MjlEMjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhs Z3ZGYTNlN254b0poSEsybEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQL12Q/c2ddWEV5oxT8PKoEGveCvgxLfva9vXtsIeSd/A4xBQRNIy2 2qWrCpZslJ5FLtDE2GQVCf3b11Al2JxHrV7qIK42Uq9nWErCD88s0wHRKYQnh6DW lJJRtzUAofHdUtKcQyfD4iawWyNhgoA62aiGx1fAW6/rdV6bGC2xwYePdu4jpB/c DRlHHel5Zjy2nRV3M/iqj7D/sOmPLp9AMR6fZYpjPE9fgTHMaK7z4a3Qn8PzFCcd IE+M+y5pwfLFufwyFKhdYuvFO/LgMaKsB0jIibnOtOCIvh6dpwTbLRi7Yf5DW0jW 8OYbULwfpEBcSMZ4SWteeFHnLVg3n/1S -----END CERTIFICATE-----Generated at Sat Apr 5 00:00:32 2025 by rpki-client