$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: XD5PO4c1koOcQHBtY2UgvuBCV/uX+BTpTdFBc6icSts= Subject key identifier: FA:D3:54:43:9E:70:72:DA:B2:0A:56:64:57:CC:D7:D8:60:6E:0A:5A Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07B6 Signing time: Wed 12 Mar 2025 20:50:01 +0000 Manifest this update: Wed 12 Mar 2025 20:50:00 +0000 Manifest next update: Wed 19 Mar 2025 20:50:00 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: 40hDwVDygpRCy3EpyLDihyZqAiSuihkr3EW96eCr1aU=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D Validity Not Before: Mar 12 20:50:00 2025 GMT Not After : Mar 19 20:50:00 2025 GMT Subject: CN=67d1f379-ad0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:df:4d:e0:a9:a3:21:b9:18:d8:70:33:b6: b7:c2:97:f2:61:7c:80:a9:9b:bc:d1:1f:9a:53:b4: ca:7d:aa:ae:5b:38:91:9f:ea:a2:ff:5a:5f:60:c7: e9:18:e9:97:c0:3f:5f:e7:26:ff:59:1c:65:b6:5d: f6:82:18:54:2c:ef:fc:6d:5c:bd:c4:34:69:29:ab: 2c:aa:cd:78:82:4c:b7:3e:f7:e9:f8:b5:d0:95:24: 6f:6b:d8:6c:9c:d6:c1:e1:59:50:a5:71:9f:96:e9: 44:fa:0e:73:ac:c3:85:0d:89:0e:63:16:72:26:92: 46:14:7f:24:75:45:38:7b:f4:4d:05:e7:30:55:f2: 92:6a:d8:48:96:a6:e8:7f:bd:45:8c:6b:c5:0b:c0: af:bb:cb:d8:1d:e4:86:de:68:73:ed:a6:ff:81:e3: 45:60:16:32:9f:9b:62:ef:af:15:1f:74:0b:39:78: 1c:2f:8b:79:56:6d:2a:e3:3f:c6:fc:21:87:d3:73: fd:c2:24:09:e1:9a:96:1a:74:10:5f:c3:b8:19:5b: ca:d4:80:48:02:39:48:7d:0b:50:23:e3:98:15:22: b5:58:73:68:6c:8d:74:1f:a4:25:2f:9e:f7:65:8a: 39:2c:e7:6a:90:66:4c:18:c9:a2:d6:05:a1:aa:c2: de:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:54:43:9E:70:72:DA:B2:0A:56:64:57:CC:D7:D8:60:6E:0A:5A X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:16:51:9f:26:91:35:e6:dd:1f:e5:6e:5c:6b:a4:de:8a:d6: 92:e4:f8:a7:67:d4:f3:f1:20:82:85:b6:a4:7a:c6:69:52:82: 0a:bd:4d:57:ff:a2:2b:0e:ae:d8:b9:5e:cf:7b:05:fc:6e:e7: ff:2d:51:11:a6:fb:02:48:73:ed:0b:92:ce:cc:d3:b8:7c:eb: 85:2f:59:3b:73:03:7f:c1:05:e1:26:97:9c:6b:86:2e:08:54: e3:74:76:7e:63:05:09:5e:de:1d:b6:24:d3:97:27:91:8e:ff: a3:d1:e2:2b:c1:74:33:94:b4:c1:4d:12:fa:73:b7:01:56:ba: 52:8e:ef:c7:ef:53:db:22:10:b8:4e:f9:ab:2f:85:c3:a9:85: 54:74:a7:c9:e7:0a:78:f0:04:bc:0a:0d:ec:b3:cb:9b:5d:09: 91:a9:c0:e8:4a:3a:39:a2:63:68:e1:92:3d:b3:56:20:c2:37: b5:a9:03:64:05:06:29:42:04:a0:17:e3:08:57:b9:0c:af:46: 7f:fd:6c:4e:e2:d3:b6:b2:d4:06:14:1e:fd:b8:3e:a2:9c:f0: 81:69:ad:14:e5:e6:2c:41:62:34:42:ff:e5:45:1a:9f:5b:35: 67:e5:b6:a2:ee:0e:c3:53:8f:ed:45:ec:e8:e3:61:b8:fc:6f: b0:80:2c:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwMzEyMjA1MDAwWhcNMjUwMzE5MjA1MDAwWjAYMRYwFAYD VQQDEw02N2QxZjM3OS1hZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gXfTeCpoyG5GNhwM7a3wpfyYXyAqZu80R+aU7TKfaquWziRn+qi/1pfYMfp GOmXwD9f5yb/WRxltl32ghhULO/8bVy9xDRpKassqs14gky3Pvfp+LXQlSRva9hs nNbB4VlQpXGflulE+g5zrMOFDYkOYxZyJpJGFH8kdUU4e/RNBecwVfKSathIlqbo f71FjGvFC8Cvu8vYHeSG3mhz7ab/geNFYBYyn5ti768VH3QLOXgcL4t5Vm0q4z/G /CGH03P9wiQJ4ZqWGnQQX8O4GVvK1IBIAjlIfQtQI+OYFSK1WHNobI10H6QlL573 ZYo5LOdqkGZMGMmi1gWhqsLeUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrTVEOe cHLasgpWZFfM19hgbgpaMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEFlGfJpE15t0f5W5ca6TeitaS5PinZ9Tz8SCChbakesZpUoIKvU1X /6IrDq7YuV7PewX8buf/LVERpvsCSHPtC5LOzNO4fOuFL1k7cwN/wQXhJpeca4Yu CFTjdHZ+YwUJXt4dtiTTlyeRjv+j0eIrwXQzlLTBTRL6c7cBVrpSju/H71PbIhC4 TvmrL4XDqYVUdKfJ5wp48AS8Cg3ss8ubXQmRqcDoSjo5omNo4ZI9s1Ygwje1qQNk BQYpQgSgF+MIV7kMr0Z//WxO4tO2stQGFB79uD6inPCBaa0U5eYsQWI0Qv/lRRqf WzVn5bai7g7DU4/tRezo42G4/G+wgCwC -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:43 2025 by rpki-client