$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: m8pbelw9YEi1FWDxSuJQQDJqDSFUZG2GL4J0gI90gzw= Subject key identifier: 67:45:D1:8F:9E:55:41:49:CE:8A:AE:5A:33:09:F1:84:B5:07:84:43 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: 75 Signing time: Wed 12 Mar 2025 16:21:31 +0000 Manifest this update: Wed 12 Mar 2025 16:21:31 +0000 Manifest next update: Wed 19 Mar 2025 16:21:31 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: wrq9apwgMslAQgQWhMrzl3zLvaJY0PCd4Bq4zyLM+CE=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: Be1e/Cdz8VdYcqGFGYCyAGRq8xP47qVzQCL7lbjwbsc=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A Validity Not Before: Mar 12 16:21:31 2025 GMT Not After : Mar 19 16:21:31 2025 GMT Subject: CN=67d1b48b-6b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:16:aa:5e:42:e5:18:59:4f:fc:5b:4c:1a:6c: 22:d2:33:6e:a7:b5:ab:7c:c6:30:f3:00:fc:f3:54: a5:f0:5a:3c:42:25:2d:bf:85:56:55:4f:16:eb:b6: ad:37:87:ef:90:6d:de:20:ab:72:ce:fe:b3:33:04: 01:0f:10:6b:90:57:29:35:88:8e:04:61:33:2f:95: ca:c4:f7:2b:1b:52:5c:28:62:2a:49:48:a6:03:9a: 6b:00:b7:57:34:3f:14:78:41:83:f6:95:8b:86:62: 2a:d3:51:fb:2c:12:8d:ac:4e:5e:81:65:d3:9f:66: e1:3e:21:bf:e2:ad:07:a6:61:4b:d3:3b:f7:08:b0: 14:15:2f:09:00:fb:6b:10:1e:d5:58:df:72:d8:85: 41:d1:21:7c:75:58:ea:82:aa:ec:4e:ed:8f:5d:92: 76:9d:a7:ab:1a:53:f4:b6:14:b5:8d:28:84:b6:19: 5a:3f:d6:e1:fe:0a:0d:6b:c1:7c:ad:00:a9:2e:2c: 90:fb:ec:d8:cf:94:44:11:57:b3:d3:5e:a5:3b:d1: 43:09:66:37:75:e5:47:70:44:e6:e1:61:71:b7:d4: 79:db:64:96:2d:d6:66:4b:a6:c3:7f:8f:f0:ca:30: 7d:2a:df:b4:0f:c7:bb:78:00:5e:52:02:34:eb:8a: 88:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:45:D1:8F:9E:55:41:49:CE:8A:AE:5A:33:09:F1:84:B5:07:84:43 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8c:b8:19:1a:d3:cd:32:71:68:f7:fd:02:7d:7b:1b:67:e8: 65:81:64:99:bd:d5:df:94:04:de:03:20:7d:41:6e:ae:ce:92: 3a:40:da:fb:c1:e9:84:4d:98:f4:0e:7d:ff:5c:20:a2:79:ab: 1b:52:96:3b:d6:48:42:c9:19:c6:93:a4:51:9e:0e:84:13:ce: 47:74:38:77:99:a8:b8:d4:12:f8:21:ee:7d:06:73:2f:78:0c: c4:ac:16:5f:63:49:85:7c:71:15:c6:6e:da:84:c9:a0:7c:ed: ae:46:01:57:85:f6:e3:85:b9:56:58:da:eb:ef:99:43:40:f7: e0:b2:c7:d4:5b:5a:d0:9a:9e:66:d1:6c:0c:00:03:ba:23:6e: c4:bf:5b:99:1a:45:99:d7:32:68:1c:f5:1a:e4:a0:12:34:a7: 97:68:48:a2:9c:06:d5:d9:89:0e:68:5d:a8:d7:f2:e7:8a:8d: 31:59:59:45:b9:cd:ca:0a:bd:79:61:1b:f2:9f:e9:4e:0c:b7: fe:e3:12:8b:65:60:9e:43:3b:51:32:11:45:97:5d:cf:b9:47: 2a:d8:76:cc:9e:c5:3b:b4:a0:a9:80:f4:42:ab:74:51:a5:84: dd:3d:18:10:d3:ed:bd:91:d4:41:f1:b1:6a:b8:9b:53:4e:b8: 3d:24:32:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDYyQTExMC8GA1UEBRMoMERBRjRGMUFDNTgxOTg5MzFBRDVDMDAwN0Y1MjU1QTc5 REQwRTRDNzAeFw0yNTAzMTIxNjIxMzFaFw0yNTAzMTkxNjIxMzFaMBgxFjAUBgNV BAMTDTY3ZDFiNDhiLTZiMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTFqpeQuUYWU/8W0wabCLSM26ntat8xjDzAPzzVKXwWjxCJS2/hVZVTxbrtq03 h++Qbd4gq3LO/rMzBAEPEGuQVyk1iI4EYTMvlcrE9ysbUlwoYipJSKYDmmsAt1c0 PxR4QYP2lYuGYirTUfssEo2sTl6BZdOfZuE+Ib/irQemYUvTO/cIsBQVLwkA+2sQ HtVY33LYhUHRIXx1WOqCquxO7Y9dknadp6saU/S2FLWNKIS2GVo/1uH+Cg1rwXyt AKkuLJD77NjPlEQRV7PTXqU70UMJZjd15UdwRObhYXG31HnbZJYt1mZLpsN/j/DK MH0q37QPx7t4AF5SAjTriohdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ0XRj55V QUnOiq5aMwnxhLUHhEMwHwYDVR0jBBgwFoAUDa9PGsWBmJMa1cAAf1JVp53Q5Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NjJBLzRFQkE4NDZFNTg1 NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRGE5UEdzV0JtSk1hMWNBQWYxSlZwNTNRNU1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 NjJBLzRFQkE4NDZFNTg1NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpN YTFjQUFmMUpWcDUzUTVNYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFCMuBka080ycWj3/QJ9extn6GWBZJm91d+UBN4DIH1Bbq7OkjpA2vvB 6YRNmPQOff9cIKJ5qxtSljvWSELJGcaTpFGeDoQTzkd0OHeZqLjUEvgh7n0Gcy94 DMSsFl9jSYV8cRXGbtqEyaB87a5GAVeF9uOFuVZY2uvvmUNA9+Cyx9RbWtCanmbR bAwAA7ojbsS/W5kaRZnXMmgc9RrkoBI0p5doSKKcBtXZiQ5oXajX8ueKjTFZWUW5 zcoKvXlhG/Kf6U4Mt/7jEotlYJ5DO1EyEUWXXc+5RyrYdsyexTu0oKmA9EKrdFGl hN09GBDT7b2R1EHxsWq4m1NOuD0kMkM= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:04 2025 by rpki-client