$ rpki-client -vvf rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft File: mFJq8YqDozT1eZgqMXm23R6X3i4.mft (raw, json) Hash identifier: pThNLvb9Kt4NQdl7MrHHe4uzDAb3N1da+90VsdHox1g= Subject key identifier: 24:E3:95:F1:9E:3A:DF:CC:DB:D6:04:DA:5C:2D:F8:31:10:AB:09:E1 Authority key identifier: 98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E Certificate issuer: /CN=A91308CE/serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Certificate serial: 3472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft Manifest number: 3472 Signing time: Sat 26 Apr 2025 14:53:47 +0000 Manifest this update: Sat 26 Apr 2025 14:53:46 +0000 Manifest next update: Sat 03 May 2025 14:53:46 +0000 Files and hashes: 1: mFJq8YqDozT1eZgqMXm23R6X3i4.crl (hash: vV2Hg6sGKM71IdM1TGNWoB0KiN2DqHag6ajb7UuxuYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91308CE, serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Validity Not Before: Apr 26 14:53:46 2025 GMT Not After : May 3 14:53:46 2025 GMT Subject: CN=680cf37a-4b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:73:4f:5f:a6:33:d8:c2:23:f5:d0:e0:df:fd: 81:ec:d2:70:6b:16:b7:7b:59:6b:dc:6f:94:08:4a: 02:8e:f5:98:11:4e:b8:24:74:85:1c:b5:1f:3c:98: cd:0c:6e:4a:b1:56:49:42:7e:b2:00:47:6e:c6:ba: f9:5f:4c:7d:af:54:ea:20:b5:a9:16:d3:41:64:3c: cc:88:24:3a:d1:44:ba:24:a7:75:d1:88:92:82:61: bf:ac:4b:84:45:e4:c3:9b:d4:f0:93:a0:e6:56:b7: 1c:0b:7b:ff:5d:d6:4d:1f:3f:4f:72:e8:94:32:c6: ce:a4:b2:23:02:35:16:5f:61:cf:b1:02:31:81:08: 7d:26:a5:a7:a9:fc:67:2f:e6:1e:fe:4c:2b:47:9c: c3:5c:48:a3:71:1d:ee:85:77:8a:e9:06:25:1d:2d: 9f:5e:61:1a:ed:48:8a:ad:32:be:4c:89:36:b0:75: 0d:18:80:21:e1:2e:d5:b8:17:4a:f5:6a:a7:dc:64: 8d:ac:e5:60:2b:24:7d:36:a7:32:bf:6a:1a:9f:dd: 54:40:94:c4:f0:3a:3e:b3:f7:9a:7c:52:5a:08:a2: 4a:98:98:96:27:31:d1:66:68:49:fb:47:0e:2a:ff: 7b:11:ca:97:84:bb:b2:6b:fb:5d:99:3b:85:ed:f8: c6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E3:95:F1:9E:3A:DF:CC:DB:D6:04:DA:5C:2D:F8:31:10:AB:09:E1 X509v3 Authority Key Identifier: keyid:98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c3:8d:73:1b:8f:cc:f8:1d:31:eb:35:44:ef:8f:5b:3c:92: 20:78:1d:ec:75:23:10:64:f7:3c:1b:10:fa:76:04:28:30:9d: d5:7b:0a:a0:8f:60:a2:2d:7d:b5:bf:aa:f5:88:db:16:74:9c: 33:52:98:30:aa:87:3d:5f:85:7e:cf:35:ae:b9:8f:0b:d8:ff: e4:1c:b4:66:5d:20:d6:99:52:e9:ca:a8:51:8d:04:37:b8:ea: 2a:b1:3f:48:d7:7e:d0:8c:36:49:e2:59:0a:5d:3a:87:9a:ea: 45:06:cf:c9:04:a6:31:88:7a:62:4b:0f:4d:82:86:24:3c:ac: e8:11:c7:07:e3:1a:3a:bc:dc:0d:a8:db:48:a2:ab:e5:8f:cf: c2:09:59:b3:a7:d7:fc:4b:88:2c:fa:ad:db:d9:4c:61:f8:55: 6a:ad:b3:94:2c:b5:23:2d:f4:50:a4:eb:81:39:de:bf:fd:ee: 97:ac:cf:62:ed:6d:2b:04:4b:07:52:ba:d4:9f:16:f1:d7:48: 5b:05:be:a5:9d:2a:2c:05:5b:8f:ac:ed:43:33:0c:01:89:a3: aa:46:f6:ac:66:e6:b4:1b:51:b9:c3:ad:c3:c2:69:59:3e:d0: 9b:4a:07:b5:87:94:8e:a5:b4:dd:ec:24:ef:c7:30:44:d9:3b: 96:a3:a4:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4Q0UxMTAvBgNVBAUTKDk4NTI2QUYxOEE4M0EzMzRGNTc5OTgyQTMxNzlCNkRE MUU5N0RFMkUwHhcNMjUwNDI2MTQ1MzQ2WhcNMjUwNTAzMTQ1MzQ2WjAYMRYwFAYD VQQDEw02ODBjZjM3YS00YjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3NPX6Yz2MIj9dDg3/2B7NJwaxa3e1lr3G+UCEoCjvWYEU64JHSFHLUfPJjN DG5KsVZJQn6yAEduxrr5X0x9r1TqILWpFtNBZDzMiCQ60US6JKd10YiSgmG/rEuE ReTDm9Twk6DmVrccC3v/XdZNHz9PcuiUMsbOpLIjAjUWX2HPsQIxgQh9JqWnqfxn L+Ye/kwrR5zDXEijcR3uhXeK6QYlHS2fXmEa7UiKrTK+TIk2sHUNGIAh4S7VuBdK 9Wqn3GSNrOVgKyR9Nqcyv2oan91UQJTE8Do+s/eafFJaCKJKmJiWJzHRZmhJ+0cO Kv97EcqXhLuya/tdmTuF7fjGvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTjlfGe Ot/M29YE2lwt+DEQqwnhMB8GA1UdIwQYMBaAFJhSavGKg6M09XmYKjF5tt0el94u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDhDRS8yNTdDRjcyNjFE OTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96VDFlWmdxTVhtMjNSNlgz aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GSnE4WXFEb3pUMWVaZ3FNWG0yM1I2WDNpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDhDRS8yNTdDRjcyNjFEOTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96 VDFlWmdxTVhtMjNSNlgzaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbw41zG4/M+B0x6zVE749bPJIgeB3sdSMQZPc8GxD6dgQoMJ3Vewqg j2CiLX21v6r1iNsWdJwzUpgwqoc9X4V+zzWuuY8L2P/kHLRmXSDWmVLpyqhRjQQ3 uOoqsT9I137QjDZJ4lkKXTqHmupFBs/JBKYxiHpiSw9NgoYkPKzoEccH4xo6vNwN qNtIoqvlj8/CCVmzp9f8S4gs+q3b2Uxh+FVqrbOULLUjLfRQpOuBOd6//e6XrM9i 7W0rBEsHUrrUnxbx10hbBb6lnSosBVuPrO1DMwwBiaOqRvasZua0G1G5w63DwmlZ PtCbSge1h5SOpbTd7CTvxzBE2TuWo6Qj -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:18 2025 by rpki-client