$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: ejQiOBgKeRb5ay3pRLO0MmfHrWRnRG245vN7zLYzibQ= Subject key identifier: 55:6F:0E:9D:41:95:9A:E9:55:23:9B:6C:91:45:19:25:5B:87:20:E2 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0381 Signing time: Thu 13 Mar 2025 00:26:58 +0000 Manifest this update: Thu 13 Mar 2025 00:26:58 +0000 Manifest next update: Thu 20 Mar 2025 00:26:58 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: HoUsL7OmA1u3XiIMEBT93M+SLafGakMvfynSA/pJqqg=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636 Validity Not Before: Mar 13 00:26:58 2025 GMT Not After : Mar 20 00:26:58 2025 GMT Subject: CN=67d22652-d661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:38:5f:5e:e6:9f:82:a7:4a:c6:43:8f:d5:00: 2f:f6:38:91:35:9b:ee:5a:55:96:8b:a6:ed:dc:47: 7a:8f:8d:04:74:5b:e0:fe:5c:80:ea:47:46:1b:5a: 57:d7:f2:b0:5b:06:59:8f:c3:90:b3:0f:43:7c:eb: 0c:c2:e6:a1:73:5e:47:c8:75:cd:9b:12:e4:90:c1: fa:fc:ac:4a:ce:19:dc:05:91:d8:32:6b:5e:59:28: fc:7d:ff:b9:b4:aa:25:09:d5:d8:17:64:3d:76:8a: f5:98:e0:a1:89:75:a3:41:82:1b:05:72:68:ec:7b: b4:aa:e9:8b:13:0d:7d:ac:de:4d:95:8c:52:0d:27: b7:33:f4:b4:d0:eb:b8:31:38:42:62:d0:76:05:c6: 73:2f:24:31:fb:cd:ee:ce:f1:23:16:ad:64:39:35: 25:c9:5d:75:cd:aa:85:5c:08:56:1d:03:23:77:bb: 48:77:9c:14:63:b8:c3:d8:2b:f8:44:3c:4b:f4:2a: a3:6d:eb:9e:4b:05:6d:b8:92:47:1a:d0:ff:c6:65: fa:61:27:67:72:13:f4:ec:77:2e:70:c5:cf:b1:22: 77:d0:8b:33:87:ed:ee:a1:b0:de:af:26:e6:b9:86: a7:57:38:88:e0:57:ad:4c:c4:4c:b2:93:2b:3a:32: ed:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6F:0E:9D:41:95:9A:E9:55:23:9B:6C:91:45:19:25:5B:87:20:E2 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:4c:f1:5e:36:78:6b:de:22:a9:06:74:30:79:7d:57:af:62: 45:96:d9:88:ce:19:2a:d3:f3:3e:d1:c8:b6:3f:ad:7e:dc:43: 0d:c8:64:f6:6c:5e:69:a6:9e:80:25:5b:fa:48:dc:d6:2f:dc: 3c:39:f9:c0:6b:1f:83:e9:e3:e4:04:cc:88:6d:19:d4:e4:30: 49:19:1c:8d:c1:0e:2a:58:b9:76:f2:69:72:cf:c4:f6:94:21: 44:1d:4a:d8:be:a2:69:76:1e:70:38:c3:ef:22:13:ac:ec:2f: 5c:40:fe:be:60:fa:60:d6:6a:5e:d6:1e:00:e0:57:07:6f:03: 74:16:b4:93:42:bb:dd:d6:a8:2d:eb:c9:f6:27:b0:81:2a:da: d9:4a:8f:f5:e2:6b:16:e5:8e:fc:ab:77:e6:39:41:4e:e2:f1: 07:ad:2b:cb:c1:75:a9:2f:cf:26:70:30:43:b5:cd:31:f0:d3: de:44:3f:0f:f6:d4:14:a4:21:f0:70:1e:a3:a9:63:a8:27:a8: e2:82:50:b1:57:44:95:7b:38:de:61:96:60:1c:fd:96:f0:e4: 13:3d:14:07:fa:76:1d:35:2c:c4:ed:4a:24:30:83:30:ee:02: d0:3f:fb:d5:44:24:48:dd:0b:0f:1d:9c:ec:7d:9d:50:a4:b1: 7f:56:b2:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwMzEzMDAyNjU4WhcNMjUwMzIwMDAyNjU4WjAYMRYwFAYD VQQDEw02N2QyMjY1Mi1kNjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zhfXuafgqdKxkOP1QAv9jiRNZvuWlWWi6bt3Ed6j40EdFvg/lyA6kdGG1pX 1/KwWwZZj8OQsw9DfOsMwuahc15HyHXNmxLkkMH6/KxKzhncBZHYMmteWSj8ff+5 tKolCdXYF2Q9dor1mOChiXWjQYIbBXJo7Hu0qumLEw19rN5NlYxSDSe3M/S00Ou4 MThCYtB2BcZzLyQx+83uzvEjFq1kOTUlyV11zaqFXAhWHQMjd7tId5wUY7jD2Cv4 RDxL9CqjbeueSwVtuJJHGtD/xmX6YSdnchP07HcucMXPsSJ30Iszh+3uobDerybm uYanVziI4FetTMRMspMrOjLtHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVvDp1B lZrpVSObbJFFGSVbhyDiMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFTPFeNnhr3iKpBnQweX1Xr2JFltmIzhkq0/M+0ci2P61+3EMNyGT2 bF5ppp6AJVv6SNzWL9w8OfnAax+D6ePkBMyIbRnU5DBJGRyNwQ4qWLl28mlyz8T2 lCFEHUrYvqJpdh5wOMPvIhOs7C9cQP6+YPpg1mpe1h4A4FcHbwN0FrSTQrvd1qgt 68n2J7CBKtrZSo/14msW5Y78q3fmOUFO4vEHrSvLwXWpL88mcDBDtc0x8NPeRD8P 9tQUpCHwcB6jqWOoJ6jiglCxV0SVezjeYZZgHP2W8OQTPRQH+nYdNSzE7UokMIMw 7gLQP/vVRCRI3QsPHZzsfZ1QpLF/VrIy -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:11 2025 by rpki-client