$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: JJQhpDwTt453Tz0P9Fw2AyQLo8xgMMcRFhJ0/gfbrnA= Subject key identifier: FC:DD:3E:5C:4B:32:99:03:DC:A2:1F:70:EA:E8:87:0D:84:62:13:D3 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 014B Signing time: Thu 13 Mar 2025 02:53:44 +0000 Manifest this update: Thu 13 Mar 2025 02:53:43 +0000 Manifest next update: Thu 20 Mar 2025 02:53:43 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: Pge/lC4KBFe7FAtFIGGGYA8vitjNlVmazCDUKEGEIhU=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: HMZ69Vk7ZS0Jv78BueT5h2a9dKdT1kZJMuqKYnjLHLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC Validity Not Before: Mar 13 02:53:43 2025 GMT Not After : Mar 20 02:53:43 2025 GMT Subject: CN=67d248b8-9b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2a:09:35:92:62:72:63:60:3d:7a:a0:3e:65: 8c:b1:99:07:94:f1:1a:8c:0a:38:f0:aa:28:ee:69: 67:b7:60:3a:70:b9:50:76:3d:0c:3a:ae:64:db:5c: 12:d6:d8:cf:63:85:e0:a7:24:13:d1:1c:a5:40:f7: b3:08:ee:8b:29:cb:2a:fb:dc:08:de:9b:79:78:78: b4:9f:c2:b0:1f:97:cd:d6:32:32:fb:f9:8c:32:c0: 8c:4e:08:3c:43:81:af:30:88:cb:ef:4a:4e:88:33: 5b:99:af:e4:f2:da:c9:74:9e:ea:5d:e3:df:5f:29: 26:f3:3a:76:e1:27:87:5c:0c:88:a6:fd:55:65:c0: 6d:da:c5:e0:b5:b5:ec:e8:f5:53:9f:32:14:43:7b: d3:f6:fd:61:1a:09:82:80:3d:cd:88:69:61:46:1d: 81:76:0a:36:a3:66:53:12:e0:c4:38:42:e4:e0:6d: 19:b1:70:de:38:c6:c5:d8:15:93:47:de:1b:76:4f: 24:c2:5b:d5:5f:4a:61:a6:ba:cc:2e:f3:6c:3d:95: 73:c0:89:e4:63:28:7e:48:95:c5:b5:ba:4b:c2:74: cb:9e:6d:94:69:bd:29:7e:8e:54:f5:c3:69:05:3f: 0a:e8:b4:b1:26:fa:73:89:f4:95:d5:10:aa:e4:83: b7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:DD:3E:5C:4B:32:99:03:DC:A2:1F:70:EA:E8:87:0D:84:62:13:D3 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f6:0c:0a:d0:53:ac:d0:fe:29:98:a6:76:59:7a:da:2b:55: 98:3f:33:50:52:e8:36:ad:ad:c5:30:63:72:f3:30:8a:7a:98: d9:eb:0d:d8:58:71:66:dd:09:b3:31:7f:01:42:5c:a1:93:52: fb:0c:b1:04:f7:88:5d:85:f4:6f:ab:2b:8b:7f:77:45:d6:40: 82:d2:e2:98:69:de:86:56:47:c9:37:88:9f:59:25:05:28:56: bf:ae:bd:66:06:d0:98:0b:d3:57:56:d8:e7:9d:8e:58:85:b6: 3b:bb:5a:a3:f4:df:7c:35:51:42:87:00:17:c6:82:84:86:f6: 8e:e8:07:6a:17:c3:34:f9:e2:47:a2:6c:1d:31:20:15:e5:e5: d0:16:a4:29:e2:58:c0:d0:4d:e9:2e:9c:a1:04:be:5c:2a:26: d0:78:57:62:ac:52:66:79:4a:9c:52:39:6c:4c:82:82:8b:a7: 6a:b8:23:df:ca:ac:95:bc:18:38:2c:65:9c:93:4c:21:67:53: 4f:9f:f4:49:14:b7:9c:aa:e1:34:9c:9c:be:99:37:df:ce:41: 48:6a:00:6a:25:68:f5:42:c4:40:ee:5e:7a:07:f0:c2:60:9c: 10:57:4e:fd:7e:c6:44:83:7f:70:1a:23:6e:96:f8:81:7a:a8: 5f:6e:5c:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjUwMzEzMDI1MzQzWhcNMjUwMzIwMDI1MzQzWjAYMRYwFAYD VQQDEw02N2QyNDhiOC05Yjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSoJNZJicmNgPXqgPmWMsZkHlPEajAo48Koo7mlnt2A6cLlQdj0MOq5k21wS 1tjPY4XgpyQT0RylQPezCO6LKcsq+9wI3pt5eHi0n8KwH5fN1jIy+/mMMsCMTgg8 Q4GvMIjL70pOiDNbma/k8trJdJ7qXePfXykm8zp24SeHXAyIpv1VZcBt2sXgtbXs 6PVTnzIUQ3vT9v1hGgmCgD3NiGlhRh2Bdgo2o2ZTEuDEOELk4G0ZsXDeOMbF2BWT R94bdk8kwlvVX0phprrMLvNsPZVzwInkYyh+SJXFtbpLwnTLnm2Uab0pfo5U9cNp BT8K6LSxJvpzifSV1RCq5IO3FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzdPlxL MpkD3KIfcOrohw2EYhPTMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy9gwK0FOs0P4pmKZ2WXraK1WYPzNQUug2ra3FMGNy8zCKepjZ6w3Y WHFm3QmzMX8BQlyhk1L7DLEE94hdhfRvqyuLf3dF1kCC0uKYad6GVkfJN4ifWSUF KFa/rr1mBtCYC9NXVtjnnY5YhbY7u1qj9N98NVFChwAXxoKEhvaO6AdqF8M0+eJH omwdMSAV5eXQFqQp4ljA0E3pLpyhBL5cKibQeFdirFJmeUqcUjlsTIKCi6dquCPf yqyVvBg4LGWck0whZ1NPn/RJFLecquE0nJy+mTffzkFIagBqJWj1QsRA7l56B/DC YJwQV079fsZEg39wGiNulviBeqhfblzM -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:54 2025 by rpki-client