$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: 3slU5JO6qblgc93gr+MwTmT3AVBLZN/um+jJ/1xhEC0= Subject key identifier: 34:B0:8E:0D:06:93:90:A9:A5:65:E7:78:BF:22:53:F4:2D:C4:D5:A8 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 105F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 1056 Signing time: Thu 24 Apr 2025 17:23:07 +0000 Manifest this update: Thu 24 Apr 2025 17:23:07 +0000 Manifest next update: Thu 01 May 2025 17:23:07 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: s1/29dWlxk4nVl3hI+NxSv5RFL9CUYGTaBhGZ2neM+Y=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4191 (0x105f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Apr 24 17:23:07 2025 GMT Not After : May 1 17:23:07 2025 GMT Subject: CN=680a737b-a28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:c5:e5:e3:d3:8f:56:dd:51:89:83:1a:4e: e6:e4:d5:85:2e:71:b5:05:6f:f4:25:be:71:06:ea: f7:2b:46:5f:42:ec:51:e4:db:c6:04:08:cf:9b:f5: 8f:68:87:3d:41:3f:2c:db:eb:d1:bd:2b:53:1e:c7: 83:93:2d:6a:c3:7f:c4:f0:10:e3:2f:b0:ea:71:89: 54:93:a5:2f:56:a6:ac:3f:5e:37:9a:c2:9a:ed:ef: 5d:50:35:b6:cb:cf:b9:86:13:23:b3:40:f4:99:0a: 8a:dc:fb:8f:7d:f1:32:e8:b2:63:4a:82:4c:6b:9e: fd:4c:49:ec:15:99:85:19:05:33:6c:bf:09:38:ec: 80:e8:53:7f:34:69:7c:d9:82:39:aa:5c:01:45:d0: 32:e0:74:ed:f4:39:94:1b:75:15:c2:23:34:5e:c7: 91:8f:f0:30:d5:43:7c:9d:e1:28:ae:aa:08:e8:d7: 9e:60:21:7b:0e:b1:e6:67:b1:4a:94:25:a6:72:05: bd:43:9b:dc:c5:6a:0f:62:16:e3:9f:01:aa:06:28: a9:25:81:b7:7d:fc:4b:da:f8:96:7c:00:fe:4a:6b: f3:ae:33:2d:ed:05:be:5d:de:f4:d8:e2:c2:45:d7: 31:cd:65:0e:06:04:3e:5f:85:24:07:5f:da:bf:80: 0c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B0:8E:0D:06:93:90:A9:A5:65:E7:78:BF:22:53:F4:2D:C4:D5:A8 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:e9:ee:1e:01:fe:67:7d:63:f0:d8:ab:3e:29:83:45:36:40: 69:41:15:ca:cc:ef:84:22:09:49:53:7d:7b:d9:81:c6:67:c4: 18:4a:70:e4:52:b9:29:78:36:ea:87:ee:e3:12:62:47:3b:a4: 3a:5d:db:2a:12:86:e1:dc:70:5b:ce:f2:e7:89:0e:a3:f0:f2: 7f:78:04:8e:1d:b2:4f:5b:85:16:64:31:01:8b:6a:30:9e:d4: 23:33:67:7e:9a:ee:3b:4d:4d:95:bb:85:41:6b:77:f4:d4:df: 4b:3f:92:98:25:ad:32:65:10:6d:0c:6c:61:a2:1a:da:f8:f0: 23:a2:f4:9e:a4:46:99:45:d7:39:2d:ef:48:3a:f2:39:3f:47: 2f:47:37:7e:31:85:84:d3:ba:b5:3c:46:8f:21:7e:a6:60:b3: a3:c8:e8:81:ca:33:24:f5:5a:c6:ff:7b:38:74:e5:ba:55:26: a3:fd:ef:5b:c4:5a:45:15:87:de:91:75:44:55:07:1f:20:5b: 11:ae:e6:59:b0:68:ad:b6:b0:a3:d8:c4:19:58:8b:c2:ad:b2: 63:05:b7:c6:03:ce:82:10:e1:ad:0a:7d:49:1f:f1:de:57:2f: 0e:6b:30:42:6a:84:2c:7a:6c:1d:f7:18:28:40:18:b3:ea:88: a4:a4:84:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNDI0MTcyMzA3WhcNMjUwNTAxMTcyMzA3WjAYMRYwFAYD VQQDEw02ODBhNzM3Yi1hMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr/F5ePTj1bdUYmDGk7m5NWFLnG1BW/0Jb5xBur3K0ZfQuxR5NvGBAjPm/WP aIc9QT8s2+vRvStTHseDky1qw3/E8BDjL7DqcYlUk6UvVqasP143msKa7e9dUDW2 y8+5hhMjs0D0mQqK3PuPffEy6LJjSoJMa579TEnsFZmFGQUzbL8JOOyA6FN/NGl8 2YI5qlwBRdAy4HTt9DmUG3UVwiM0XseRj/Aw1UN8neEorqoI6NeeYCF7DrHmZ7FK lCWmcgW9Q5vcxWoPYhbjnwGqBiipJYG3ffxL2viWfAD+SmvzrjMt7QW+Xd702OLC RdcxzWUOBgQ+X4UkB1/av4AMlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSwjg0G k5CppWXneL8iU/QtxNWoMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV6e4eAf5nfWPw2Ks+KYNFNkBpQRXKzO+EIglJU3172YHGZ8QYSnDk UrkpeDbqh+7jEmJHO6Q6XdsqEobh3HBbzvLniQ6j8PJ/eASOHbJPW4UWZDEBi2ow ntQjM2d+mu47TU2Vu4VBa3f01N9LP5KYJa0yZRBtDGxhohra+PAjovSepEaZRdc5 Le9IOvI5P0cvRzd+MYWE07q1PEaPIX6mYLOjyOiByjMk9VrG/3s4dOW6VSaj/e9b xFpFFYfekXVEVQcfIFsRruZZsGittrCj2MQZWIvCrbJjBbfGA86CEOGtCn1JH/He Vy8OazBCaoQsemwd9xgoQBiz6oikpIRc -----END CERTIFICATE-----Generated at Sat Apr 26 14:13:24 2025 by rpki-client