$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft File: rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json) Hash identifier: aIcvV01FdmDqvQCrMwzCW+1xf7aoC/qTiK6rLu53eFw= Subject key identifier: 0E:75:69:FC:0A:21:AF:C3:19:14:AA:CA:05:5F:11:27:AF:87:C0:71 Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft Manifest number: 87 Signing time: Fri 25 Apr 2025 05:31:22 +0000 Manifest this update: Fri 25 Apr 2025 05:31:21 +0000 Manifest next update: Fri 02 May 2025 05:31:21 +0000 Files and hashes: 1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: 7X4HIkd3/qwp0oRBUGnokvNTnHNQdDBL7VLMbHdfLN0=) 2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: PmKB7v6narbsfvRh5TaIR4bk0nlj1W0GlQb30nMXpbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Apr 25 05:31:21 2025 GMT Not After : May 2 05:31:21 2025 GMT Subject: CN=680b1e29-fad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:8a:bc:4a:3a:db:f2:53:b7:8f:13:13:ec: 6f:dc:2f:62:e1:a6:e6:4a:ce:a6:90:02:02:90:0b: 12:e1:cf:1f:50:8c:84:f3:83:21:17:81:c8:89:de: f0:5f:fa:61:04:50:d7:bc:e5:1f:50:20:47:65:64: 1b:56:40:e2:83:fb:e9:05:7f:8e:92:76:9f:17:82: 46:0c:af:11:63:26:13:34:a6:87:90:e1:5d:00:ae: 00:08:82:d0:d1:c4:36:69:17:a5:ef:3d:d9:8e:87: b5:61:ee:8e:ba:1c:f0:e8:08:6b:9a:df:b7:ab:8e: a4:ff:f7:a7:b7:6c:67:18:ba:28:ca:04:8d:f6:e7: 58:16:d2:0b:ef:58:3e:6e:34:9c:56:ff:ea:5b:18: e1:8c:f1:80:da:d4:07:b5:d1:0c:63:73:7e:fc:14: 31:cf:ac:a9:9f:a8:23:45:42:88:49:00:47:67:5a: e1:7a:ec:14:72:a9:dd:ef:a8:35:69:45:aa:cf:92: 3e:69:7d:0d:f8:b2:6f:62:94:8a:a8:0e:c5:53:76: dc:6d:99:8c:5f:40:d9:5a:cd:6d:52:5b:39:07:78: 51:25:90:cd:ce:26:18:df:b7:93:80:e5:9d:29:74: bb:82:e0:db:fa:e9:57:31:58:70:09:1c:0a:62:ab: a4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:75:69:FC:0A:21:AF:C3:19:14:AA:CA:05:5F:11:27:AF:87:C0:71 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:bd:13:f0:ab:a4:62:9f:d3:b9:26:0d:98:c9:55:a0:9f:c9: c8:58:4f:b6:d4:f4:77:e8:30:00:7f:5f:b1:19:21:3d:92:57: c0:8a:b2:c8:f4:9a:31:3b:6d:de:2d:8a:1e:53:59:de:70:c0: 5e:b1:43:cf:4c:a1:80:35:84:48:86:8c:38:ef:2f:7a:28:12: 9f:52:04:e8:39:3b:a5:f2:fc:8d:0b:b3:2c:80:a5:88:3d:f3: f5:96:43:64:63:e6:10:32:50:c2:10:3e:dc:8b:1b:fb:eb:e9: 4c:c5:45:b6:cd:72:c8:c7:d5:01:12:29:4f:a9:2c:58:d8:0d: 68:17:05:96:fa:21:88:20:82:2d:7e:6b:d2:b3:02:dc:f6:46: 1e:b6:bf:98:2f:15:73:d9:72:2c:d5:f3:0f:98:b8:be:e8:55: 0c:16:83:e5:bd:e6:ad:d0:bd:9a:f5:bb:02:71:70:3c:5c:ce: 81:10:20:79:3a:a8:70:30:6b:7b:71:44:d5:09:ae:8f:0f:ee: e4:98:c5:cf:eb:5b:14:85:99:01:97:cd:15:8a:60:5a:c6:60: 7d:c5:da:54:76:19:a7:dd:86:d2:de:65:61:9c:ab:08:5d:7e: a0:f6:46:95:c2:28:f4:43:3f:14:fa:17:af:e5:89:a2:63:10: 01:e6:1b:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNDI1MDUzMTIxWhcNMjUwNTAyMDUzMTIxWjAYMRYwFAYD VQQDEw02ODBiMWUyOS1mYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU6KvEo62/JTt48TE+xv3C9i4abmSs6mkAICkAsS4c8fUIyE84MhF4HIid7w X/phBFDXvOUfUCBHZWQbVkDig/vpBX+OknafF4JGDK8RYyYTNKaHkOFdAK4ACILQ 0cQ2aRel7z3Zjoe1Ye6Ouhzw6Ahrmt+3q46k//ent2xnGLooygSN9udYFtIL71g+ bjScVv/qWxjhjPGA2tQHtdEMY3N+/BQxz6ypn6gjRUKISQBHZ1rheuwUcqnd76g1 aUWqz5I+aX0N+LJvYpSKqA7FU3bcbZmMX0DZWs1tUls5B3hRJZDNziYY37eTgOWd KXS7guDb+ulXMVhwCRwKYqukpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA51afwK Ia/DGRSqygVfESevh8BxMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTY5QS84QjBFNzM4MDU4OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZ UUxDT3BzaU5rSkRvdHNVZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGvRPwq6Rin9O5Jg2YyVWgn8nIWE+21PR36DAAf1+xGSE9klfAirLI 9JoxO23eLYoeU1necMBesUPPTKGANYRIhow47y96KBKfUgToOTul8vyNC7MsgKWI PfP1lkNkY+YQMlDCED7cixv76+lMxUW2zXLIx9UBEilPqSxY2A1oFwWW+iGIIIIt fmvSswLc9kYetr+YLxVz2XIs1fMPmLi+6FUMFoPlveat0L2a9bsCcXA8XM6BECB5 OqhwMGt7cUTVCa6PD+7kmMXP61sUhZkBl80VimBaxmB9xdpUdhmn3YbS3mVhnKsI XX6g9kaVwij0Qz8U+hev5YmiYxAB5hsv -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:33 2025 by rpki-client