$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft File: sCOWweSXbcJLufJA9c5Vbtgn-is.mft (raw, json) Hash identifier: 5IrtNlSrwGmQHI2tARkHedkAxgrkKf2phd2mAunpSdE= Subject key identifier: CA:57:89:7E:72:24:C6:D2:DA:29:06:BD:DC:87:29:40:59:3A:6F:8E Authority key identifier: B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B Certificate issuer: /CN=A91124CD/serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft Manifest number: D2 Signing time: Fri 25 Apr 2025 05:01:09 +0000 Manifest this update: Fri 25 Apr 2025 05:01:08 +0000 Manifest next update: Fri 02 May 2025 05:01:08 +0000 Files and hashes: 1: sCOWweSXbcJLufJA9c5Vbtgn-is.crl (hash: S10f/YDzbwphp91ytD4g/cb5csQz7bXCQIg+wn5zoJw=) 2: CC6220C0E02E11EEBA9D291AC4F9AE02.roa (hash: EfnXa4JTXRSQtpkoLm2l4ZqnMhuE0NVKwTVdEbOaaqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CD, serialNumber=B02396C1E4976DC24BB9F240F5CE556ED827FA2B Validity Not Before: Apr 25 05:01:08 2025 GMT Not After : May 2 05:01:08 2025 GMT Subject: CN=680b1715-720e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:93:c6:25:5d:3a:80:ed:87:98:99:97:52:73: 8d:97:33:3f:35:3a:a3:20:f9:b3:72:ff:6c:cd:d5: e9:86:89:47:ae:80:60:2b:41:e8:ef:04:0f:14:80: 39:46:dc:f9:2b:68:cb:42:d8:19:11:16:75:98:b0: cf:39:54:1e:c8:c5:cf:2f:68:0d:86:67:e4:7c:57: 35:c8:64:f2:74:8a:80:cb:20:0c:99:94:f7:b0:e1: f0:95:f5:d8:11:b9:78:43:d0:d2:f7:e7:96:d7:ef: 1b:5e:5e:0f:ae:f8:98:56:a8:ec:86:4b:d4:4d:a6: df:2c:e7:ea:be:96:b7:d0:85:27:c7:f4:02:c2:1c: 2f:fd:32:a9:72:39:2c:87:3d:2f:3e:41:35:49:7d: 0e:1f:fb:92:3c:01:2a:ca:ea:01:64:ee:d4:aa:17: 64:4d:61:5e:43:2a:0f:6d:47:d7:02:65:fe:64:19: 2e:22:e5:d3:70:82:a0:64:a3:0a:33:9e:b9:04:60: ff:e9:bf:9f:d5:bd:c9:c0:ec:6d:44:ff:10:12:e6: 1f:c5:dc:7a:5b:d6:ba:33:a3:3e:f3:81:fe:bf:51: a0:75:5a:87:53:65:c5:ab:bd:3f:91:0a:e9:26:28: eb:95:15:3c:23:56:25:c4:d4:c3:9e:d2:02:6e:e2: 87:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:57:89:7E:72:24:C6:D2:DA:29:06:BD:DC:87:29:40:59:3A:6F:8E X509v3 Authority Key Identifier: keyid:B0:23:96:C1:E4:97:6D:C2:4B:B9:F2:40:F5:CE:55:6E:D8:27:FA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCOWweSXbcJLufJA9c5Vbtgn-is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CD/B97B7638E02D11EE9A042F5CC4F9AE02/sCOWweSXbcJLufJA9c5Vbtgn-is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f0:54:d4:af:c8:c2:fe:c9:74:4b:aa:52:e4:76:f5:34:f6: 08:9b:e9:d1:b2:05:5f:67:11:97:67:b9:8d:e5:cd:7e:29:f5: c8:b9:f2:6a:e9:d4:06:6a:97:bc:78:c4:eb:76:18:27:51:2f: 02:c1:08:19:a3:b7:3e:03:f4:d2:b0:4a:02:6e:b0:c9:44:cf: 36:6b:9e:38:64:0b:a5:9a:a5:21:9f:30:70:ba:5f:a9:d1:c8: b6:96:02:0d:e8:23:bc:b7:c3:bc:dd:48:58:dc:60:41:de:9b: 15:fe:13:c2:43:ba:c2:f2:d7:70:de:af:ee:e3:dd:23:65:4d: 2a:20:64:b6:80:7c:c7:8f:98:48:70:3d:6d:65:71:53:45:7c: d5:05:48:e0:3a:61:82:79:73:b0:6b:9f:44:73:d0:58:11:c9: d3:3f:d4:c9:c1:a1:22:6f:ee:91:8d:6f:2b:7f:b0:53:79:c2: 39:46:7a:2d:64:94:5f:16:1f:25:3f:b4:ed:ff:05:19:85:fc: b0:b6:af:ae:f9:5c:b3:cc:40:fe:f8:29:f7:ee:c9:82:ae:36: 41:9c:03:14:50:f6:56:3c:18:4d:e9:90:da:cc:97:70:7f:23: 2a:6c:9d:df:78:1f:7e:26:e6:ae:69:3b:a3:b9:76:f4:8f:6c: a5:ea:f8:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0QxMTAvBgNVBAUTKEIwMjM5NkMxRTQ5NzZEQzI0QkI5RjI0MEY1Q0U1NTZF RDgyN0ZBMkIwHhcNMjUwNDI1MDUwMTA4WhcNMjUwNTAyMDUwMTA4WjAYMRYwFAYD VQQDEw02ODBiMTcxNS03MjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JPGJV06gO2HmJmXUnONlzM/NTqjIPmzcv9szdXpholHroBgK0Ho7wQPFIA5 Rtz5K2jLQtgZERZ1mLDPOVQeyMXPL2gNhmfkfFc1yGTydIqAyyAMmZT3sOHwlfXY Ebl4Q9DS9+eW1+8bXl4PrviYVqjshkvUTabfLOfqvpa30IUnx/QCwhwv/TKpcjks hz0vPkE1SX0OH/uSPAEqyuoBZO7UqhdkTWFeQyoPbUfXAmX+ZBkuIuXTcIKgZKMK M565BGD/6b+f1b3JwOxtRP8QEuYfxdx6W9a6M6M+84H+v1GgdVqHU2XFq70/kQrp JijrlRU8I1YlxNTDntICbuKH1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpXiX5y JMbS2ikGvdyHKUBZOm+OMB8GA1UdIwQYMBaAFLAjlsHkl23CS7nyQPXOVW7YJ/or MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDRC9COTdCNzYzOEUw MkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJjSkx1ZkpBOWM1VmJ0Z24t aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NDT1d3ZVNYYmNKTHVmSkE5YzVWYnRnbi1pcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDRC9COTdCNzYzOEUwMkQxMUVFOUEwNDJGNUNDNEY5QUUwMi9zQ09Xd2VTWGJj Skx1ZkpBOWM1VmJ0Z24taXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG8FTUr8jC/sl0S6pS5Hb1NPYIm+nRsgVfZxGXZ7mN5c1+KfXIufJq 6dQGape8eMTrdhgnUS8CwQgZo7c+A/TSsEoCbrDJRM82a544ZAulmqUhnzBwul+p 0ci2lgIN6CO8t8O83UhY3GBB3psV/hPCQ7rC8tdw3q/u490jZU0qIGS2gHzHj5hI cD1tZXFTRXzVBUjgOmGCeXOwa59Ec9BYEcnTP9TJwaEib+6RjW8rf7BTecI5Rnot ZJRfFh8lP7Tt/wUZhfywtq+u+VyzzED++Cn37smCrjZBnAMUUPZWPBhN6ZDazJdw fyMqbJ3feB9+JuauaTujuXb0j2yl6vj/ -----END CERTIFICATE-----Generated at Sat Apr 26 16:17:48 2025 by rpki-client