$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: e1qF71MosD4xu5+guNog9ZtgNYMbdn+kbI7+1g7Ofbk= Subject key identifier: D5:9C:59:93:92:5C:CC:05:53:47:2F:E4:20:C6:46:1C:C5:E5:69:17 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 0299 Signing time: Fri 25 Apr 2025 01:17:13 +0000 Manifest this update: Fri 25 Apr 2025 01:17:12 +0000 Manifest next update: Fri 02 May 2025 01:17:12 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: 63ctJFEan5uifUkrKz1HxhXR1xP4Qv06SULXGq0G1VY=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 81tZME9FAwzO2UIk/WDugs2sSYBMwRpnwSHq/X3xc/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Apr 25 01:17:12 2025 GMT Not After : May 2 01:17:12 2025 GMT Subject: CN=680ae299-3c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8b:63:1c:5b:66:c0:68:af:54:02:66:d1:e9: e5:1a:22:dc:e8:aa:39:86:dc:08:3a:a3:05:46:40: 17:f4:95:de:b6:df:1a:a9:ee:5b:8f:0d:2a:90:59: f2:37:66:d6:9a:19:34:54:52:d6:6e:f7:c2:95:8b: a1:0a:a2:f8:0e:2f:09:7b:2e:b6:bd:2c:51:27:12: 69:21:00:99:72:86:a9:37:71:a4:99:ce:e7:89:eb: 39:2d:02:a7:b3:e2:c6:cb:51:50:8d:52:2d:1a:69: 7b:e5:4e:d2:6e:86:a8:b0:ab:81:f4:f7:c4:6f:cc: 69:93:1a:90:53:75:fc:3c:94:19:4c:db:19:18:49: b6:39:d4:83:c9:08:46:69:ca:79:65:76:b7:1a:5a: 8f:fa:20:2c:06:f0:ee:ec:ca:d1:f7:a7:d6:20:67: ea:e2:d2:4d:ea:07:fa:62:12:d0:5f:08:a7:ee:32: 0b:76:d7:06:10:e7:11:68:82:e4:97:2a:69:25:78: e4:7d:df:b3:48:a2:f1:f8:50:fd:7a:52:80:af:44: 25:32:18:8b:d9:03:bb:4d:db:b4:c9:b5:42:0d:d0: c3:4a:d7:a3:30:cf:4c:1e:34:21:23:26:5e:ac:08: e6:71:f9:a1:b7:29:52:5a:36:48:48:3c:42:94:4c: 95:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9C:59:93:92:5C:CC:05:53:47:2F:E4:20:C6:46:1C:C5:E5:69:17 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:e3:9c:51:1f:dc:57:90:a4:d3:ed:c5:91:e5:8a:84:c8:81: 65:0a:94:36:05:ed:00:a7:9a:d8:d1:94:a7:a9:b9:a2:5f:1e: 1c:23:34:2c:75:64:6e:e4:f8:17:7e:42:49:a9:7c:90:66:a9: db:b8:3f:e6:7f:d4:bf:3a:e4:be:24:cc:d2:75:24:1f:aa:3e: f8:fe:01:2d:d2:8f:94:63:ea:4b:3e:fa:6d:0a:06:bb:2c:54: 74:a5:ac:42:ba:44:2c:69:8e:af:8d:78:53:27:1d:37:6e:1c: 12:ba:74:b7:35:c7:de:c3:2a:45:3f:86:80:f7:16:8b:f7:d1: 82:0d:90:f7:07:4c:d5:2a:65:ed:77:99:8f:23:1d:63:a3:35: f5:39:a3:3f:bb:5e:41:04:11:c4:14:70:55:00:d9:f2:01:e3: 2f:43:da:c8:00:0d:ec:55:ce:e7:6e:37:76:4d:cb:93:6c:69: e2:63:7c:16:9f:38:dc:8e:3c:e9:55:42:07:d4:33:0e:bd:6a: d3:27:3a:80:ae:09:41:45:46:60:90:2e:73:99:77:e4:8b:a7: 6a:fa:d6:3d:b0:b4:0a:77:b8:c9:cd:c8:c1:b0:92:14:55:50: aa:46:0b:4f:23:5c:4c:20:d4:87:e9:d3:d3:c9:45:f1:70:a2: fe:a3:69:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwNDI1MDExNzEyWhcNMjUwNTAyMDExNzEyWjAYMRYwFAYD VQQDEw02ODBhZTI5OS0zYzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4tjHFtmwGivVAJm0enlGiLc6Ko5htwIOqMFRkAX9JXett8aqe5bjw0qkFny N2bWmhk0VFLWbvfClYuhCqL4Di8Jey62vSxRJxJpIQCZcoapN3Gkmc7nies5LQKn s+LGy1FQjVItGml75U7SboaosKuB9PfEb8xpkxqQU3X8PJQZTNsZGEm2OdSDyQhG acp5ZXa3GlqP+iAsBvDu7MrR96fWIGfq4tJN6gf6YhLQXwin7jILdtcGEOcRaILk lyppJXjkfd+zSKLx+FD9elKAr0QlMhiL2QO7Tdu0ybVCDdDDStejMM9MHjQhIyZe rAjmcfmhtylSWjZISDxClEyV9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWcWZOS XMwFU0cv5CDGRhzF5WkXMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA45xRH9xXkKTT7cWR5YqEyIFlCpQ2Be0Ap5rY0ZSnqbmiXx4cIzQs dWRu5PgXfkJJqXyQZqnbuD/mf9S/OuS+JMzSdSQfqj74/gEt0o+UY+pLPvptCga7 LFR0paxCukQsaY6vjXhTJx03bhwSunS3NcfewypFP4aA9xaL99GCDZD3B0zVKmXt d5mPIx1jozX1OaM/u15BBBHEFHBVANnyAeMvQ9rIAA3sVc7nbjd2TcuTbGniY3wW nzjcjjzpVUIH1DMOvWrTJzqArglBRUZgkC5zmXfki6dq+tY9sLQKd7jJzcjBsJIU VVCqRgtPI1xMINSH6dPTyUXxcKL+o2lh -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:44 2025 by rpki-client