$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft File: F11CAiv1C9bCDzCxxa2MlOCFvE4.mft (raw, json) Hash identifier: oJq52N8JAfw8kvCu0J6LR2WJvL1Cx/U+4E7AKBrB/Do= Subject key identifier: C2:D4:BC:85:52:DB:24:F8:2E:8A:3E:50:8C:C0:8D:C3:E3:52:22:0E Authority key identifier: 17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E Certificate issuer: /CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft Manifest number: 63 Signing time: Thu 13 Mar 2025 05:07:57 +0000 Manifest this update: Thu 13 Mar 2025 05:07:57 +0000 Manifest next update: Thu 20 Mar 2025 05:07:57 +0000 Files and hashes: 1: F11CAiv1C9bCDzCxxa2MlOCFvE4.crl (hash: llsJns/ddciLMKxFVibrxkPTw15eZOSAOUHpaouk8dg=) 2: A18C777C6F5F11EFAF849B28C4F9AE02.roa (hash: fujb24eQPYgPwcrZc8i7YcmXNyel+exUWMY7rJXI438=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9 Validity Not Before: Mar 13 05:07:57 2025 GMT Not After : Mar 20 05:07:57 2025 GMT Subject: CN=67d2682d-2ae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:51:08:12:62:9f:62:ea:d6:ed:af:b7:36:02: f8:b7:d4:de:d3:74:0d:2f:72:54:e7:67:eb:6b:74: f8:08:ba:77:21:fd:ec:c3:eb:2a:0c:8b:2e:0c:0d: 89:b2:98:06:70:c2:ef:7b:68:ed:52:d1:f0:7d:f2: 67:6c:47:62:e8:58:c0:ab:d9:f0:48:49:97:7f:e3: 82:f7:72:5d:50:9d:63:9b:5b:40:5c:a7:3f:65:9c: 7e:e6:18:69:66:82:1b:77:20:cd:01:49:6e:a8:97: da:8d:af:ff:0c:bf:32:dc:23:37:d3:ab:97:6c:6f: 6d:22:c7:15:cf:3b:e7:47:b8:fc:fd:4b:e3:84:23: f6:5a:c3:7d:52:4b:14:04:cb:c6:3c:29:09:53:02: 43:97:89:91:95:b5:45:84:5d:70:95:01:a5:ef:d1: 1a:b9:6e:bf:a8:7b:5c:41:1c:63:f9:ed:64:59:7d: 8e:3f:4f:69:d2:ed:08:00:b3:49:6f:3a:20:37:88: 24:ba:bc:02:70:cd:d1:03:1d:25:ec:75:ee:81:5b: 2f:cf:e8:ff:4b:ac:9a:54:2f:99:0f:6e:85:f9:c0: f3:d1:4d:75:7e:c9:cc:dd:9f:cf:f2:93:e0:69:bc: a6:31:d0:ce:11:97:02:83:94:7e:1d:9f:4c:a0:49: b4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D4:BC:85:52:DB:24:F8:2E:8A:3E:50:8C:C0:8D:C3:E3:52:22:0E X509v3 Authority Key Identifier: keyid:17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:7a:a1:88:e6:9b:27:3c:3c:33:e8:2d:5b:67:89:75:37:16: a5:d5:5c:cb:c6:19:49:a8:58:73:b2:92:d1:2e:e0:dd:ce:b1: ad:15:f0:a8:f4:65:78:3e:f1:65:93:ec:7c:f8:33:ba:a2:a2: 5f:0b:16:9f:6d:8e:46:bb:9f:56:72:e2:02:c3:09:54:44:2c: d3:66:86:69:6f:a1:8d:a3:56:1d:fe:cd:fe:9e:96:6b:78:f3: b1:79:a8:ea:24:9e:cb:41:2d:eb:5b:60:70:ab:f1:54:fa:cd: b8:3c:2c:b7:eb:78:f6:40:85:a1:de:0c:b0:62:6d:2b:07:fe: 86:4e:ff:c7:c8:b0:03:31:ff:84:01:a4:cf:28:e4:b4:a7:07: ef:17:a5:81:4d:a1:50:af:e2:7b:52:3b:b0:c8:c7:18:98:2f: 48:77:cd:6a:dc:89:26:4c:79:3d:dd:02:52:de:2e:04:4b:ab: 8e:aa:30:f5:c1:45:3f:4e:42:b1:d0:b6:43:9c:91:9e:6e:2c: 30:37:a1:dc:99:5c:26:ff:06:e0:3b:5c:d2:68:4d:23:66:a7: 00:93:ea:15:a8:84:15:82:f9:7e:b0:41:39:f5:22:49:9b:8e: 71:c0:1a:c5:a3:49:65:20:4f:18:4f:43:cc:b7:7f:97:3d:41: e5:fe:97:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODlEOTExMC8GA1UEBRMoMTc1RDQyMDIyQkY1MEJENkMyMEYzMEIxQzVBRDhDOTRF MDg1QkM0RTAeFw0yNTAzMTMwNTA3NTdaFw0yNTAzMjAwNTA3NTdaMBgxFjAUBgNV BAMTDTY3ZDI2ODJkLTJhZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkUQgSYp9i6tbtr7c2Avi31N7TdA0vclTnZ+trdPgIunch/ezD6yoMiy4MDYmy mAZwwu97aO1S0fB98mdsR2LoWMCr2fBISZd/44L3cl1QnWObW0Bcpz9lnH7mGGlm ght3IM0BSW6ol9qNr/8MvzLcIzfTq5dsb20ixxXPO+dHuPz9S+OEI/Zaw31SSxQE y8Y8KQlTAkOXiZGVtUWEXXCVAaXv0Rq5br+oe1xBHGP57WRZfY4/T2nS7QgAs0lv OiA3iCS6vAJwzdEDHSXsde6BWy/P6P9LrJpUL5kPboX5wPPRTXV+yczdn8/yk+Bp vKYx0M4RlwKDlH4dn0ygSbSDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwtS8hVLb JPguij5QjMCNw+NSIg4wHwYDVR0jBBgwFoAUF11CAiv1C9bCDzCxxa2MlOCFvE4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OUQ5L0VBQkZFQkYyNkY1 QzExRUY4MzVBN0I2NkM0RjlBRTAyL0YxMUNBaXYxQzliQ0R6Q3h4YTJNbE9DRnZF NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjExQ0FpdjFDOWJDRHpDeHhhMk1sT0NGdkU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OUQ5L0VBQkZFQkYyNkY1QzExRUY4MzVBN0I2NkM0RjlBRTAyL0YxMUNBaXYxQzli Q0R6Q3h4YTJNbE9DRnZFNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI96oYjmmyc8PDPoLVtniXU3FqXVXMvGGUmoWHOyktEu4N3Osa0V8Kj0 ZXg+8WWT7Hz4M7qiol8LFp9tjka7n1Zy4gLDCVRELNNmhmlvoY2jVh3+zf6elmt4 87F5qOoknstBLetbYHCr8VT6zbg8LLfrePZAhaHeDLBibSsH/oZO/8fIsAMx/4QB pM8o5LSnB+8XpYFNoVCv4ntSO7DIxxiYL0h3zWrciSZMeT3dAlLeLgRLq46qMPXB RT9OQrHQtkOckZ5uLDA3odyZXCb/BuA7XNJoTSNmpwCT6hWohBWC+X6wQTn1Ikmb jnHAGsWjSWUgTxhPQ8y3f5c9QeX+lyU= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:46 2025 by rpki-client