$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft File: rbkheCH_vuCW4c7EcJijFFokbqA.mft (raw, json) Hash identifier: ZUZfPobK8qmzh5PKAOEB2l+Q0BladIKVHqJ3dnY0rlI= Subject key identifier: B0:87:32:B5:6E:E8:13:62:03:0E:DC:8F:4E:DB:8E:A0:A7:E5:83:37 Authority key identifier: AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 Certificate issuer: /CN=A91F6E63/serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft Manifest number: 0541 Signing time: Wed 12 Mar 2025 23:05:17 +0000 Manifest this update: Wed 12 Mar 2025 23:05:17 +0000 Manifest next update: Wed 19 Mar 2025 23:05:17 +0000 Files and hashes: 1: rbkheCH_vuCW4c7EcJijFFokbqA.crl (hash: Ql2IrJK1rfKupCEvF9mx7VvCpOUxKrJ6j+6EqjBTOsI=) 2: 0C0402DEE5CD11EBADAD0E66C4F9AE02.roa (hash: C+71hKrmRR9fYlphYRnTOW1PJp3T8YQjGXM58/kjFCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E63 Validity Not Before: Mar 12 23:05:17 2025 GMT Not After : Mar 19 23:05:17 2025 GMT Subject: CN=67d2132d-24a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:24:3e:e5:12:b3:6b:73:f3:ba:81:98:bf:ae: 04:00:5e:37:da:f9:3d:92:f7:8c:7a:7b:81:b5:cb: 05:38:d6:ed:06:c3:91:c6:4d:57:7f:52:84:e5:17: b3:6f:15:a4:d3:cf:44:61:b3:4c:f6:74:88:96:da: d8:58:c4:b2:70:f3:fe:f3:1d:85:8d:c4:68:ab:6a: c0:b5:03:29:11:ad:f4:66:81:48:43:bd:55:9e:7e: 33:af:fa:4c:ce:2a:ff:d4:eb:11:15:eb:d2:f0:9c: a0:db:bd:92:f0:e5:71:3b:6e:36:f5:e2:a0:67:5b: ac:db:7a:1a:f6:f0:49:86:44:0c:14:39:60:3d:22: e1:11:46:47:83:6d:b0:76:3b:ff:92:1b:5f:8d:c5: ac:23:c9:c4:2a:cc:7e:41:39:5a:53:44:bb:23:6f: a8:5a:fb:94:74:ab:16:1d:7d:e2:d1:54:e8:19:cd: 13:8c:1c:53:d9:c0:c1:4f:30:8d:ef:5a:58:48:61: fa:e5:c1:00:f9:0e:36:99:5c:ca:3b:aa:09:4e:fe: c2:34:63:b1:16:95:8f:07:aa:9b:74:d2:4c:cf:cc: bc:c7:e5:ac:c7:b1:c4:5e:26:69:fb:57:be:0d:61: 39:11:90:6b:88:b7:d9:e5:ca:42:2d:96:9b:79:23: 08:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:87:32:B5:6E:E8:13:62:03:0E:DC:8F:4E:DB:8E:A0:A7:E5:83:37 X509v3 Authority Key Identifier: keyid:AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c1:cb:81:b9:82:3f:21:95:cd:6d:55:91:be:b6:b8:86:15: db:14:5a:ae:0a:8c:07:a6:38:db:7b:de:14:c3:49:bc:c5:c1: ae:55:58:b0:2b:40:74:71:1a:50:5a:3a:e4:5b:02:77:8b:54: 24:ce:64:8f:9d:e9:a2:17:2b:61:9a:57:c8:ca:3d:0a:14:17: e9:b4:f3:28:10:83:48:ee:67:83:c3:6a:7f:17:74:29:de:75: f4:86:16:75:6b:7e:48:ea:a7:3b:e6:75:2f:19:eb:92:fa:20: 76:ee:e5:6a:c5:91:04:77:2c:93:aa:a4:bf:06:49:9f:8f:64: ad:05:f4:3d:93:50:7e:a0:f0:e7:7a:b1:cf:26:04:8f:d1:d7: cd:b6:24:42:90:e4:c2:55:df:4c:0f:ff:e7:22:d6:0f:d2:84: 50:46:58:79:2c:1d:94:55:9b:59:92:3b:25:ee:19:21:9f:07: 9a:11:7b:12:96:ba:33:17:73:75:68:33:83:97:57:66:f8:2b: 02:ba:65:07:ac:c4:fd:cf:7b:ce:c8:a5:3d:71:fc:8b:b3:f9: ca:f3:3d:2d:21:c8:25:28:2b:ac:77:52:d1:1b:49:a2:df:8c: c4:24:8e:0b:e7:50:69:55:0f:3b:49:d8:46:c1:0d:66:67:a3: c0:5d:ea:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFNjMxMTAvBgNVBAUTKEFEQjkyMTc4MjFGRkJFRTA5NkUxQ0VDNDcwOThBMzE0 NUEyNDZFQTAwHhcNMjUwMzEyMjMwNTE3WhcNMjUwMzE5MjMwNTE3WjAYMRYwFAYD VQQDEw02N2QyMTMyZC0yNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCQ+5RKza3PzuoGYv64EAF432vk9kveMenuBtcsFONbtBsORxk1Xf1KE5Rez bxWk089EYbNM9nSIltrYWMSycPP+8x2FjcRoq2rAtQMpEa30ZoFIQ71Vnn4zr/pM zir/1OsRFevS8Jyg272S8OVxO2429eKgZ1us23oa9vBJhkQMFDlgPSLhEUZHg22w djv/khtfjcWsI8nEKsx+QTlaU0S7I2+oWvuUdKsWHX3i0VToGc0TjBxT2cDBTzCN 71pYSGH65cEA+Q42mVzKO6oJTv7CNGOxFpWPB6qbdNJMz8y8x+Wsx7HEXiZp+1e+ DWE5EZBriLfZ5cpCLZabeSMIkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCHMrVu 6BNiAw7cj07bjqCn5YM3MB8GA1UdIwQYMBaAFK25IXgh/77gluHOxHCYoxRaJG6g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU2My9ENjlDRDkyOEU0 QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1Q1c0YzdFY0ppakZGb2ti cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jia2hlQ0hfdnVDVzRjN0VjSmlqRkZva2JxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU2My9ENjlDRDkyOEU0QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1 Q1c0YzdFY0ppakZGb2ticUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6wcuBuYI/IZXNbVWRvra4hhXbFFquCowHpjjbe94Uw0m8xcGuVViw K0B0cRpQWjrkWwJ3i1QkzmSPnemiFythmlfIyj0KFBfptPMoEINI7meDw2p/F3Qp 3nX0hhZ1a35I6qc75nUvGeuS+iB27uVqxZEEdyyTqqS/Bkmfj2StBfQ9k1B+oPDn erHPJgSP0dfNtiRCkOTCVd9MD//nItYP0oRQRlh5LB2UVZtZkjsl7hkhnweaEXsS lrozF3N1aDODl1dm+CsCumUHrMT9z3vOyKU9cfyLs/nK8z0tIcglKCusd1LRG0mi 34zEJI4L51BpVQ87SdhGwQ1mZ6PAXerN -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:18 2025 by rpki-client