$ rpki-client -vvf rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft File: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft (raw, json) Hash identifier: YclPeQj/ydhFAXQxaucPScZPjOHAMa2eGjxiIeqO2yQ= Subject key identifier: A5:14:21:95:56:2A:FB:07:9D:E8:C5:3F:41:46:B4:0C:7C:92:B7:0D Authority key identifier: FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 Certificate issuer: /CN=A91216AC/serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft Manifest number: 052B Signing time: Thu 24 Apr 2025 23:18:07 +0000 Manifest this update: Thu 24 Apr 2025 23:18:07 +0000 Manifest next update: Thu 01 May 2025 23:18:07 +0000 Files and hashes: 1: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl (hash: bBY1ba8jBo313EC7wox2UwUdL78+4XZ4+HKTKQfyNM4=) 2: AE1E5A1AF61C11EBAB08AF17C4F9AE02.roa (hash: L6NkrUDLV6Dmkk8kbRWqS9urNPurijV7bD/FqK/kzIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91216AC, serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Validity Not Before: Apr 24 23:18:07 2025 GMT Not After : May 1 23:18:07 2025 GMT Subject: CN=680ac6af-5115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:98:bf:b0:b4:18:03:e5:34:de:01:cc:72:9c: 8c:07:86:95:1b:bc:a3:cc:fe:84:ea:48:6d:c0:3a: 47:c5:77:31:4c:94:cb:8e:51:cd:0a:e6:e4:5e:c9: 63:93:b0:37:76:43:f9:dc:16:9d:3f:08:2f:51:2a: b2:55:58:cc:09:79:0a:87:f5:ad:d1:60:c6:0a:72: 04:3e:65:a0:95:66:4d:aa:ab:64:2b:38:e2:d7:7c: 61:dd:0f:03:7f:23:3a:d0:6d:d0:57:e8:68:68:05: ad:ee:80:dd:6c:e2:db:38:40:da:89:f3:dd:b3:df: 9e:22:54:11:40:38:22:e8:1b:9f:7d:60:3f:8a:bf: bd:b5:25:6c:0f:95:3b:da:e5:a4:ad:b2:92:43:50: 04:0e:6d:cc:cd:79:f8:00:7f:81:1a:44:7d:59:9f: da:9e:be:47:86:9a:27:08:44:2b:d2:c7:6f:85:d4: 71:57:1a:38:77:af:60:4c:1f:e5:de:00:fc:f0:c9: d6:4f:3c:18:11:d2:c8:5d:3a:1c:66:c0:ea:0a:ed: 1f:38:d9:ba:4c:81:dc:d3:68:6d:e8:97:8f:a3:35: 4b:d5:bf:1b:58:58:f8:7c:98:f2:dd:d8:a2:b8:31: 98:80:bd:f2:f8:b2:b6:66:4c:ec:9d:2b:56:3d:c2: 43:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:14:21:95:56:2A:FB:07:9D:E8:C5:3F:41:46:B4:0C:7C:92:B7:0D X509v3 Authority Key Identifier: keyid:FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d9:9a:14:43:97:e7:56:be:ff:7b:c5:ce:5e:29:51:00:66: 55:20:5c:e4:8a:bb:9e:94:35:55:d4:b9:c7:e3:55:6e:56:24: 4b:ea:31:a0:83:8a:82:e4:c9:d5:7b:33:ea:d8:c4:30:16:20: 92:3c:4a:21:d0:9c:2a:d4:3c:f3:58:d1:f2:e9:bf:e7:f7:5f: 5a:e3:5b:a7:94:31:c9:f5:d8:5c:d4:6b:49:92:1d:7f:2f:3c: 1c:90:aa:26:55:d6:fc:c3:6e:ce:5a:4d:1d:75:47:08:ca:73: e3:36:84:cb:b6:f7:68:5c:ba:1f:85:56:42:76:fc:13:f8:ed: a8:c7:13:f1:ff:d4:e9:22:f4:1c:d0:6d:3f:1e:c2:6e:57:2a: d1:d2:d4:72:fb:fa:a1:68:32:6d:fd:15:97:2c:91:e1:09:e5: 2c:5f:44:67:71:db:c8:26:ac:ff:79:e2:66:ed:7a:b8:94:0e: 80:a1:ec:a4:82:10:dc:d1:a3:87:ca:69:4c:3c:de:01:66:78: b8:ca:e2:54:31:71:ca:31:d3:cf:57:28:b9:c0:8a:82:29:3f: 2c:cc:bd:e1:ed:a0:9a:ec:ff:ff:ef:26:82:0c:6e:fe:0c:ee: cf:46:1d:bd:49:27:ad:2b:fe:1b:b8:80:56:34:fd:cb:44:5f: 31:07:92:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE2QUMxMTAvBgNVBAUTKEZFNUYxQzc1MDA0OEJCNTRFMDEzNzNBQzNFREQ0Qjc3 N0Q4ODhFNzkwHhcNMjUwNDI0MjMxODA3WhcNMjUwNTAxMjMxODA3WjAYMRYwFAYD VQQDEw02ODBhYzZhZi01MTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpi/sLQYA+U03gHMcpyMB4aVG7yjzP6E6khtwDpHxXcxTJTLjlHNCubkXslj k7A3dkP53BadPwgvUSqyVVjMCXkKh/Wt0WDGCnIEPmWglWZNqqtkKzji13xh3Q8D fyM60G3QV+hoaAWt7oDdbOLbOEDaifPds9+eIlQRQDgi6BuffWA/ir+9tSVsD5U7 2uWkrbKSQ1AEDm3MzXn4AH+BGkR9WZ/anr5HhponCEQr0sdvhdRxVxo4d69gTB/l 3gD88MnWTzwYEdLIXTocZsDqCu0fONm6TIHc02ht6JePozVL1b8bWFj4fJjy3dii uDGYgL3y+LK2ZkzsnStWPcJDSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUUIZVW KvsHnejFP0FGtAx8krcNMB8GA1UdIwQYMBaAFP5fHHUASLtU4BNzrD7dS3d9iI55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTZBQy8zOEQyMzcyMkY2 MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUxVGdFM09zUHQxTGQzMklq bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sOGNkUUJJdTFUZ0UzT3NQdDFMZDMySWpuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTZBQy8zOEQyMzcyMkY2MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUx VGdFM09zUHQxTGQzMklqbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy2ZoUQ5fnVr7/e8XOXilRAGZVIFzkiruelDVV1LnH41VuViRL6jGg g4qC5MnVezPq2MQwFiCSPEoh0Jwq1DzzWNHy6b/n919a41unlDHJ9dhc1GtJkh1/ LzwckKomVdb8w27OWk0ddUcIynPjNoTLtvdoXLofhVZCdvwT+O2oxxPx/9TpIvQc 0G0/HsJuVyrR0tRy+/qhaDJt/RWXLJHhCeUsX0RncdvIJqz/eeJm7Xq4lA6Aoeyk ghDc0aOHymlMPN4BZni4yuJUMXHKMdPPVyi5wIqCKT8szL3h7aCa7P//7yaCDG7+ DO7PRh29SSetK/4buIBWNP3LRF8xB5Kl -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:27 2025 by rpki-client