$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: ZwXDl433gnO6yviaGAFc3f03y/fX93eeH/znhEFqWgU= Subject key identifier: E1:C0:7C:8D:D0:3E:15:FE:24:DB:40:AF:7C:16:5E:D4:17:F1:A4:2F Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 01DC Signing time: Fri 11 Apr 2025 00:30:17 +0000 Manifest this update: Fri 11 Apr 2025 00:30:16 +0000 Manifest next update: Fri 18 Apr 2025 00:30:16 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: AM2UQx4f9ifdjFrdrEswSq4UVNqwjpibhS9HhKgmR+Q=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4 Validity Not Before: Apr 11 00:30:16 2025 GMT Not After : Apr 18 00:30:16 2025 GMT Subject: CN=67f86298-f9ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:eb:9b:56:ae:27:c2:ba:b1:c6:c7:ec:e1:65: e7:a2:77:d4:61:4c:5b:50:78:10:f8:e3:83:65:49: 7b:21:d6:ad:79:d0:00:01:f8:25:d9:53:24:39:98: 50:c8:b6:78:4a:fb:75:d8:31:8d:1c:d9:de:46:89: 53:e5:f4:63:4b:a4:7a:43:24:08:4e:70:6a:a5:af: fb:6a:94:64:8f:aa:44:74:6a:78:6a:46:27:e1:b6: 1d:5a:e6:d4:23:7e:e6:19:52:71:bc:c0:5b:5a:25: c4:08:e7:14:b1:60:f1:87:52:37:85:a8:23:9c:47: dc:db:10:e9:5d:be:ef:57:8a:ac:95:b3:3b:6e:0d: 46:28:f2:c8:bb:26:d3:1c:18:88:bb:13:61:c6:e1: 98:bf:d3:ee:df:20:c4:f6:18:8d:70:f2:ed:53:df: 79:95:e7:61:95:f1:fa:8b:84:46:e7:64:a3:ad:69: de:e8:a1:ef:9c:0e:84:86:09:dd:c6:9f:1d:29:7d: b3:04:14:c0:62:17:38:5b:4a:47:3d:a6:4b:ed:84: 8f:34:f1:d1:2b:39:62:25:6b:03:ec:3c:b2:02:6c: 12:28:aa:02:e2:37:79:70:de:79:f9:52:31:50:77: 9e:ff:9a:d3:dc:75:f4:d9:26:3c:a1:f6:4a:a0:7f: 37:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C0:7C:8D:D0:3E:15:FE:24:DB:40:AF:7C:16:5E:D4:17:F1:A4:2F X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:35:cd:7f:9b:30:7e:98:29:6b:bc:70:38:27:c8:95:7d:71: 9a:36:fa:46:74:2b:58:40:ab:15:fe:b6:91:8c:6e:36:6e:8b: 69:ad:cd:7d:f4:1c:21:40:bc:f9:9e:f9:8c:e9:61:01:ef:7e: 5d:46:b9:14:ce:84:79:0f:bc:ef:33:1e:eb:9d:63:e7:d8:a0: 8e:46:b3:d8:9a:11:6e:a7:b1:45:c6:75:c9:c5:56:41:5c:6c: 30:f7:95:4b:1e:c1:d0:fd:4f:ad:5b:37:5f:b9:dc:48:fa:21: ba:8b:dd:c9:4d:34:e4:39:74:81:82:d6:bd:f7:22:f6:ca:ce: fd:f5:5c:69:45:69:31:6f:28:47:87:35:6b:74:79:40:46:69: 08:c3:85:5f:d9:e9:bb:39:2a:49:31:9c:e0:93:18:6c:a0:c3: f4:45:bd:5b:78:9e:47:b6:45:97:9b:4d:a8:d4:e3:f8:0e:e2: 9d:9d:4c:32:f4:1c:36:b3:c1:db:da:ce:2b:e2:5c:0c:d3:db: 94:8b:f4:15:f0:0d:fd:de:fb:ac:4b:c8:0e:61:ee:4d:15:dd: a7:5e:b0:b5:b5:60:5c:90:0b:2b:6d:55:98:80:49:89:4d:8f: a4:b1:eb:ee:c7:04:8d:e1:bd:de:fb:89:90:cc:85:55:00:45: 6c:2e:ee:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUwNDExMDAzMDE2WhcNMjUwNDE4MDAzMDE2WjAYMRYwFAYD VQQDEw02N2Y4NjI5OC1mOWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruubVq4nwrqxxsfs4WXnonfUYUxbUHgQ+OODZUl7IdatedAAAfgl2VMkOZhQ yLZ4Svt12DGNHNneRolT5fRjS6R6QyQITnBqpa/7apRkj6pEdGp4akYn4bYdWubU I37mGVJxvMBbWiXECOcUsWDxh1I3hagjnEfc2xDpXb7vV4qslbM7bg1GKPLIuybT HBiIuxNhxuGYv9Pu3yDE9hiNcPLtU995ledhlfH6i4RG52SjrWne6KHvnA6Ehgnd xp8dKX2zBBTAYhc4W0pHPaZL7YSPNPHRKzliJWsD7DyyAmwSKKoC4jd5cN55+VIx UHee/5rT3HX02SY8ofZKoH83cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHAfI3Q PhX+JNtAr3wWXtQX8aQvMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhNc1/mzB+mClrvHA4J8iVfXGaNvpGdCtYQKsV/raRjG42botprc19 9BwhQLz5nvmM6WEB735dRrkUzoR5D7zvMx7rnWPn2KCORrPYmhFup7FFxnXJxVZB XGww95VLHsHQ/U+tWzdfudxI+iG6i93JTTTkOXSBgta99yL2ys799VxpRWkxbyhH hzVrdHlARmkIw4Vf2em7OSpJMZzgkxhsoMP0Rb1beJ5HtkWXm02o1OP4DuKdnUwy 9Bw2s8Hb2s4r4lwM09uUi/QV8A393vusS8gOYe5NFd2nXrC1tWBckAsrbVWYgEmJ TY+ksevuxwSN4b3e+4mQzIVVAEVsLu59 -----END CERTIFICATE-----Generated at Sat Apr 12 03:25:21 2025 by rpki-client