$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: kBvHnBA7xdn6QrFMD75DhUOYr3oCOR24hWO6IrboAb4= Subject key identifier: 1C:2E:A7:85:36:7B:D4:91:76:4A:F8:2A:8B:0A:48:31:91:A9:02:08 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 1159 Signing time: Thu 24 Apr 2025 17:16:08 +0000 Manifest this update: Thu 24 Apr 2025 17:16:08 +0000 Manifest next update: Thu 01 May 2025 17:16:08 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: d2YR0B6tx/Hn1zb1MCJTbner08k2IcELDVeUYX+/URI=) 2: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: eq/Jdt+R7/hZ4YW911X1nuNYUDsfy1mJ/nRJ7y06DWU=) 3: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: AKBOJFiK0CGzPrk1VjRavIF25nDnN6CV5txK6KFEoQM=) 4: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: mTC+0v+tu7i1qyU8oj/k9Utbi2nUrKBfJp5EbQJr3jw=) 5: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: z4Zna+X57y726pmGPGMeS7qfbOq2Xmw5XRAkrcvpEs8=) 6: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: HiYjj0p3JXRse1uC7XLEGyug0M30GyJfvcEMlo7b1CI=) 7: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: Tc4kPNK+2PBhLQIxN1GXPm3IRuhcOCLKA9GmTtF5VIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4485 (0x1185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Apr 24 17:16:08 2025 GMT Not After : May 1 17:16:08 2025 GMT Subject: CN=680a71d8-54c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:29:5e:4e:68:c1:dc:2e:94:cc:f2:8d:c2: 6d:48:c4:81:55:84:68:aa:21:c7:15:e8:f3:3d:95: e1:9a:d9:74:ce:e5:f0:b9:2d:ca:79:5b:c6:cd:e5: fb:9f:29:9f:39:e7:80:71:a7:fd:e1:73:3f:b3:0e: e7:04:e9:61:5b:f8:58:89:75:ae:d1:08:8a:39:24: 3a:30:b5:55:5a:cd:14:80:b0:7b:a0:22:79:05:29: 10:fd:b3:65:b1:3c:d4:62:05:d3:d6:53:98:35:9d: 54:47:ec:ed:a2:87:22:a3:50:60:99:cc:45:bf:92: ee:a6:8b:ff:36:e7:2d:1b:47:f0:2d:9f:71:82:6a: 31:a5:6e:e8:6e:9e:50:bf:c6:63:8a:13:53:f5:b3: f6:2e:85:88:42:7a:e6:9c:e3:dc:11:dc:2c:97:27: ed:c0:d6:92:8c:76:a3:36:1d:f9:28:cd:34:7e:b4: f1:53:bc:86:91:bc:3e:c6:ac:59:72:8e:b6:55:d0: 97:7b:17:21:ee:83:83:8a:77:3f:38:47:b7:1b:c8: 2e:86:87:8f:43:d1:28:af:9f:67:97:58:c7:6c:aa: 2c:97:c5:8c:42:3d:e4:48:e9:e4:75:b1:11:a9:ba: 33:84:6b:30:6f:6e:61:d1:aa:de:0c:44:c0:44:57: ff:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2E:A7:85:36:7B:D4:91:76:4A:F8:2A:8B:0A:48:31:91:A9:02:08 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:09:2b:c6:c9:03:aa:9b:fc:82:ba:b7:0f:d7:c1:08:d5:06: 68:ab:23:b5:8f:65:43:eb:32:c1:91:38:36:d8:22:3f:85:00: 91:f5:c1:b6:57:d6:54:ea:88:0e:84:bd:44:00:87:99:fb:fd: bc:68:20:94:60:0a:a7:3e:9b:54:e2:04:29:57:a7:2b:1b:d6: 3b:a6:53:4e:98:f9:87:13:2a:18:92:90:4a:b5:59:c5:f8:ef: a3:08:88:a1:6f:33:f8:c1:e6:d2:ee:52:df:90:48:62:98:3f: a7:a2:ed:6e:5b:4b:16:82:17:65:14:f1:02:d2:9c:21:ed:97: 1b:66:e3:eb:94:b0:a4:af:36:ac:2e:56:82:c6:e5:b9:64:d0: 44:4b:d8:91:6a:d1:e5:42:cb:71:f2:d3:13:a5:5b:fc:aa:37: 0d:b4:15:5a:3c:d7:70:ca:e5:6a:bf:e0:9d:fb:a2:8c:3c:59: 2e:d0:57:70:b9:31:1a:81:0d:8a:df:57:8f:4c:61:d7:01:e8: bb:e4:f6:d3:87:4d:aa:f0:f5:04:25:53:55:85:67:be:48:5c: ff:5b:07:57:47:0e:24:d6:51:53:ba:87:12:83:48:78:d9:73: 47:ee:76:fb:b2:67:20:87:8e:df:3c:d0:aa:19:79:4d:de:27: bb:89:d7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUwNDI0MTcxNjA4WhcNMjUwNTAxMTcxNjA4WjAYMRYwFAYD VQQDEw02ODBhNzFkOC01NGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSQpXk5owdwulMzyjcJtSMSBVYRoqiHHFejzPZXhmtl0zuXwuS3KeVvGzeX7 nymfOeeAcaf94XM/sw7nBOlhW/hYiXWu0QiKOSQ6MLVVWs0UgLB7oCJ5BSkQ/bNl sTzUYgXT1lOYNZ1UR+ztoocio1BgmcxFv5Lupov/NuctG0fwLZ9xgmoxpW7obp5Q v8ZjihNT9bP2LoWIQnrmnOPcEdwslyftwNaSjHajNh35KM00frTxU7yGkbw+xqxZ co62VdCXexch7oODinc/OEe3G8guhoePQ9Eor59nl1jHbKosl8WMQj3kSOnkdbER qbozhGswb25h0areDETARFf/rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwup4U2 e9SRdkr4KosKSDGRqQIIMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCSvGyQOqm/yCurcP18EI1QZoqyO1j2VD6zLBkTg22CI/hQCR9cG2 V9ZU6ogOhL1EAIeZ+/28aCCUYAqnPptU4gQpV6crG9Y7plNOmPmHEyoYkpBKtVnF +O+jCIihbzP4webS7lLfkEhimD+nou1uW0sWghdlFPEC0pwh7ZcbZuPrlLCkrzas LlaCxuW5ZNBES9iRatHlQstx8tMTpVv8qjcNtBVaPNdwyuVqv+Cd+6KMPFku0Fdw uTEagQ2K31ePTGHXAei75PbTh02q8PUEJVNVhWe+SFz/WwdXRw4k1lFTuocSg0h4 2XNH7nb7smcgh47fPNCqGXlN3ie7ide7 -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:44 2025 by rpki-client