$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: Ev1Xo9q9uypZHEnsLp4uv97kI9it+hIQGabLzPSPrMo= Subject key identifier: 2D:17:88:28:8D:C3:18:20:26:AD:83:EC:6E:28:DD:92:70:F4:48:DA Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BAA Signing time: Thu 24 Apr 2025 18:56:45 +0000 Manifest this update: Thu 24 Apr 2025 18:56:44 +0000 Manifest next update: Thu 01 May 2025 18:56:44 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: 352Xozq74uz/u8aH2J4dpX0W2p1U66AyiTDpoqOauko=) 2: 94A87892D3CF11EF81EA2D5EC4F9AE02.roa (hash: YFlPcMOqU4AT2knX3tItgDLUNSgHaBzXBJvuHWKEgzg=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: Jhd+zmEk5Tr6WUgFESV3Hz6/KEOnMbj2hHPJhFLnDKY=) 4: 7EA6AA5AD3CF11EF83B35E4BC4F9AE02.roa (hash: ZCU4Sl2P84BRUchJ+pTPcKQydpQbDyhJRysJwGUvBfs=) 5: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: fo6rQUcXbnI8NE4rYd/pMMgxfYxJbyDcHENy4xKaHcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Apr 24 18:56:44 2025 GMT Not After : May 1 18:56:44 2025 GMT Subject: CN=680a896c-28fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:ec:9c:93:a9:4f:f5:69:a0:8d:1e:32:ad: 11:3b:87:02:6c:11:53:73:6f:d3:ee:34:53:c7:bb: a0:6a:4b:ac:cc:06:0e:1f:6a:fa:72:1a:b2:52:a8: d2:6a:e8:e3:52:b1:54:25:2e:53:21:5f:2f:10:8d: fe:bb:a3:83:80:25:c5:b6:86:e2:fc:9f:0c:84:b1: 52:fc:26:35:c8:f0:3e:05:13:7a:16:90:55:23:52: 05:ba:89:19:62:cf:00:40:bc:70:ad:c6:f6:ce:81: d7:89:94:d1:35:e0:6c:66:54:a0:20:32:d1:c4:d7: e2:d6:e4:43:c5:c2:87:54:a0:5c:9b:86:0c:98:f0: da:dc:ea:73:27:ac:54:c1:f2:29:73:6e:97:cf:08: 30:36:d2:68:35:cc:15:bd:be:68:ff:ff:e9:eb:88: db:2b:93:09:2d:a9:21:73:76:80:01:7a:d0:10:50: 6f:ee:12:1d:aa:72:5f:a2:28:52:69:7f:19:5d:c2: 7a:9f:23:65:7b:ba:8c:11:71:6e:99:23:da:fc:95: af:bb:ff:09:b6:4e:1f:a4:cb:8d:bb:6d:8c:45:30: d0:39:b1:55:13:f8:3c:40:ad:de:f4:92:ff:5c:c4: 80:9b:9d:0b:47:03:74:cb:72:f9:a0:cc:ae:07:6b: ea:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:17:88:28:8D:C3:18:20:26:AD:83:EC:6E:28:DD:92:70:F4:48:DA X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:65:57:56:c8:61:08:50:98:df:4e:2e:bf:ef:0e:51:cc:64: 23:88:b0:fb:81:81:82:6a:90:3d:a4:54:e4:5a:7e:42:82:6e: 8a:44:f2:ce:70:d8:01:5c:ab:db:54:0e:58:b9:43:c8:b5:d9: 5c:31:ee:55:17:a0:76:99:7d:9c:e9:8a:05:e6:d1:ff:5f:64: 16:2d:71:b6:f4:e7:a2:dd:21:26:11:7a:4e:76:13:fd:15:7a: f8:06:48:10:6b:5f:27:55:07:69:94:a1:46:6e:55:37:b3:3b: fb:02:47:53:3a:be:b9:0c:87:36:65:5b:08:9f:9a:a0:64:75: 6d:09:26:67:3d:18:23:d6:f2:a8:d6:e3:50:bb:95:4e:4e:e5: 48:b5:ea:c6:7e:45:66:e1:87:b8:02:3a:a2:07:94:bd:ad:af: 05:0f:c3:21:b9:0d:d9:c2:93:01:c2:11:4d:0b:b9:e3:60:49: 1f:6b:0a:fa:c5:63:9f:04:81:3c:08:96:a5:a2:0c:ea:5d:4c: c8:b1:3f:e4:ba:6b:4a:2d:6c:b2:74:11:b5:a4:ce:12:f1:94: e4:2b:65:df:a4:fc:e4:0c:f8:0f:41:24:1a:b6:cc:5d:1f:64: 3e:ca:65:f5:c1:71:97:d1:d6:d8:e7:e9:24:f1:45:e3:26:ab: ab:66:5e:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNDI0MTg1NjQ0WhcNMjUwNTAxMTg1NjQ0WjAYMRYwFAYD VQQDEw02ODBhODk2Yy0yOGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTnsnJOpT/VpoI0eMq0RO4cCbBFTc2/T7jRTx7ugakuszAYOH2r6chqyUqjS aujjUrFUJS5TIV8vEI3+u6ODgCXFtobi/J8MhLFS/CY1yPA+BRN6FpBVI1IFuokZ Ys8AQLxwrcb2zoHXiZTRNeBsZlSgIDLRxNfi1uRDxcKHVKBcm4YMmPDa3OpzJ6xU wfIpc26XzwgwNtJoNcwVvb5o///p64jbK5MJLakhc3aAAXrQEFBv7hIdqnJfoihS aX8ZXcJ6nyNle7qMEXFumSPa/JWvu/8Jtk4fpMuNu22MRTDQObFVE/g8QK3e9JL/ XMSAm50LRwN0y3L5oMyuB2vq1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0XiCiN wxggJq2D7G4o3ZJw9EjaMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOZVdWyGEIUJjfTi6/7w5RzGQjiLD7gYGCapA9pFTkWn5Cgm6KRPLO cNgBXKvbVA5YuUPItdlcMe5VF6B2mX2c6YoF5tH/X2QWLXG29Oei3SEmEXpOdhP9 FXr4BkgQa18nVQdplKFGblU3szv7AkdTOr65DIc2ZVsIn5qgZHVtCSZnPRgj1vKo 1uNQu5VOTuVIterGfkVm4Ye4AjqiB5S9ra8FD8MhuQ3ZwpMBwhFNC7njYEkfawr6 xWOfBIE8CJalogzqXUzIsT/kumtKLWyydBG1pM4S8ZTkK2XfpPzkDPgPQSQatsxd H2Q+ymX1wXGX0dbY5+kk8UXjJqurZl4b -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:18 2025 by rpki-client