$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft File: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft (raw, json) Hash identifier: eiVGSgmXKdv9sE7ZTKXzALPfDwwz8sp8IR1J+v8fbTE= Subject key identifier: 3A:B8:CC:00:23:03:B0:9D:BA:C7:46:5B:B9:48:55:25:21:29:DA:0F Authority key identifier: ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB Certificate issuer: /CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft Manifest number: CF Signing time: Thu 13 Mar 2025 03:56:05 +0000 Manifest this update: Thu 13 Mar 2025 03:56:04 +0000 Manifest next update: Thu 20 Mar 2025 03:56:04 +0000 Files and hashes: 1: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl (hash: PcIPpfwv6cIl/IMETrvoNIvSEN6UAhOXjYD0y8fcuw4=) 2: 7E77D4BEB78211EF81A95D76C4F9AE02.roa (hash: IC6M+/u5KfLety+dxGrRg+P8xY1I5/miRXL3+Y22Y3k=) 3: AC56C61497F811EF8D52DE75C4F9AE02.roa (hash: sHFvTnu8iiOhSTaoi08VnkboBzE+UHsLHvG1Rlt2ziw=) 4: DD3BD44A97F811EFA3214A76C4F9AE02.roa (hash: qmZEP9aC14nh+m/MAqOLG4I9jGYzcZX3SHvHLwpgPis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96BC Validity Not Before: Mar 13 03:56:04 2025 GMT Not After : Mar 20 03:56:04 2025 GMT Subject: CN=67d25754-b32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:77:40:03:d4:0b:2d:84:98:b6:72:3b:f2:c5: 4c:40:76:8d:65:59:f9:76:8d:cf:eb:14:22:a2:a9: b4:df:a6:f0:b9:7f:c5:18:06:20:25:ba:9c:a1:0f: 26:1d:cb:53:30:33:d6:70:12:5f:5d:b8:94:8f:c9: 28:97:8f:90:2c:5c:cc:ae:6d:5a:46:ca:03:41:c8: c6:a3:11:2f:ca:5a:b4:b3:f4:62:c5:83:74:ca:83: 19:a2:e7:3b:36:70:e3:a7:16:17:ce:b6:36:1c:48: 52:e4:dc:c7:eb:8f:42:90:13:4e:c6:6f:f8:9f:99: a9:79:94:bb:7d:93:05:e4:0e:5c:f4:f4:65:ba:b8: a2:61:2a:b8:04:01:6a:6f:1b:d2:98:bc:58:83:09: ab:62:25:bf:38:d5:b2:7d:9d:2d:ff:e7:6a:7f:7a: c0:65:fe:0b:d3:90:f4:b6:23:84:90:6c:9b:18:3a: bc:1c:66:4c:e3:3c:93:26:1b:e8:b4:2c:dc:eb:b7: 08:3d:d0:45:38:3b:ad:ff:a3:bd:23:d0:ea:0a:75: 00:84:19:91:e2:e3:e0:90:38:34:db:6f:a7:49:5a: 01:6a:be:52:50:45:6f:d0:d2:d4:d4:7a:33:1a:b6: 1c:28:a0:be:9a:59:49:ce:49:a9:52:ec:5e:c6:81: 52:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B8:CC:00:23:03:B0:9D:BA:C7:46:5B:B9:48:55:25:21:29:DA:0F X509v3 Authority Key Identifier: keyid:ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:a7:b6:2b:b4:bd:bf:52:2f:0e:3d:25:08:fe:ed:67:f2:e6: 13:2b:9a:6e:30:2e:a6:bd:87:b8:a8:41:49:26:35:b4:60:dc: 98:e2:3a:66:5b:7c:db:c5:b1:79:8e:2b:6a:fa:db:94:cb:84: d6:c7:32:26:5f:da:77:11:ba:48:9f:a5:09:e1:0f:03:e4:20: 4c:e7:00:41:e9:9b:ba:d7:59:14:07:31:f7:d9:52:32:38:64: b6:ae:99:fb:6e:b2:18:ab:b2:2f:97:d1:2e:91:ca:6f:d0:a5: c3:40:03:b7:0e:10:d2:5a:20:84:f6:fa:5f:3f:46:2c:92:ef: f5:07:ed:f3:7b:40:71:b8:c3:07:aa:bb:4a:ce:47:af:f2:93: c9:0c:c0:c1:4a:1d:48:ca:0d:f5:36:67:a5:0b:4d:13:78:76: de:89:d5:da:0a:b4:38:d9:7c:f7:02:60:75:d1:9b:95:79:ff: ab:3f:cb:9c:7d:f1:90:f5:6b:5e:f6:35:f8:a9:26:cd:8f:12: 5f:46:d7:e8:33:55:be:29:19:18:9b:dd:40:47:22:e3:51:df: ee:90:e6:c2:9e:92:66:ce:10:41:85:2a:4e:59:d9:68:d9:a3: 2b:3a:57:45:f7:32:30:fa:68:87:f7:7a:03:2c:dc:09:77:a6: dd:72:de:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2QkMxMTAvBgNVBAUTKEVEMTFFQjRDMzQ4MDQxOTlFQTc3NTAwRUREQkJFRUUx MEI3NTQ5QUIwHhcNMjUwMzEzMDM1NjA0WhcNMjUwMzIwMDM1NjA0WjAYMRYwFAYD VQQDEw02N2QyNTc1NC1iMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3dAA9QLLYSYtnI78sVMQHaNZVn5do3P6xQioqm036bwuX/FGAYgJbqcoQ8m HctTMDPWcBJfXbiUj8kol4+QLFzMrm1aRsoDQcjGoxEvylq0s/RixYN0yoMZouc7 NnDjpxYXzrY2HEhS5NzH649CkBNOxm/4n5mpeZS7fZMF5A5c9PRluriiYSq4BAFq bxvSmLxYgwmrYiW/ONWyfZ0t/+dqf3rAZf4L05D0tiOEkGybGDq8HGZM4zyTJhvo tCzc67cIPdBFODut/6O9I9DqCnUAhBmR4uPgkDg022+nSVoBar5SUEVv0NLU1Hoz GrYcKKC+mllJzkmpUuxexoFSkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDq4zAAj A7CdusdGW7lIVSUhKdoPMB8GA1UdIwQYMBaAFO0R60w0gEGZ6ndQDt277uELdUmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZCQy82Njg3RUYyMkQx NEQxMUVFOURCNDE4MEZDNEY5QUUwMi83UkhyVERTQVFabnFkMUFPM2J2dTRRdDFT YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSSHJURFNBUVpucWQxQU8zYnZ1NFF0MVNhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZCQy82Njg3RUYyMkQxNEQxMUVFOURCNDE4MEZDNEY5QUUwMi83UkhyVERTQVFa bnFkMUFPM2J2dTRRdDFTYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQp7YrtL2/Ui8OPSUI/u1n8uYTK5puMC6mvYe4qEFJJjW0YNyY4jpm W3zbxbF5jitq+tuUy4TWxzImX9p3EbpIn6UJ4Q8D5CBM5wBB6Zu611kUBzH32VIy OGS2rpn7brIYq7Ivl9Eukcpv0KXDQAO3DhDSWiCE9vpfP0Ysku/1B+3ze0BxuMMH qrtKzkev8pPJDMDBSh1Iyg31NmelC00TeHbeidXaCrQ42Xz3AmB10ZuVef+rP8uc ffGQ9Wte9jX4qSbNjxJfRtfoM1W+KRkYm91ARyLjUd/ukObCnpJmzhBBhSpOWdlo 2aMrOldF9zIw+miH93oDLNwJd6bdct7n -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:55 2025 by rpki-client