$ rpki-client -vvf rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft (raw, json) Hash identifier: 3LS/9PVeEpX/t0mDrwuEXgCIAPfPX5sEKh9Jnf2XY2c= Subject key identifier: 67:DD:AF:C7:E7:C1:1A:04:3B:AD:6C:A7:C0:18:D4:27:B4:E7:8D:B9 Authority key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF Certificate issuer: /CN=A91401C4/serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Certificate serial: 34DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft Manifest number: 34A9 Signing time: Thu 24 Apr 2025 14:15:55 +0000 Manifest this update: Thu 24 Apr 2025 14:15:54 +0000 Manifest next update: Thu 01 May 2025 14:15:54 +0000 Files and hashes: 1: v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl (hash: q5dinFuDL5vXw1LvqHxQQLdugcjUvSupdJM68ErwCew=) 2: 13773D180C8111EB9BD25070C4F9AE02.roa (hash: EcHgJTBJZVSZcmyoGTsJf6lDzdXZarLLw4Yz9Tt75wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13532 (0x34dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91401C4, serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Validity Not Before: Apr 24 14:15:54 2025 GMT Not After : May 1 14:15:54 2025 GMT Subject: CN=680a479a-38b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:35:3c:ac:a1:ea:02:b7:7e:2e:1d:2c:09:6a: 0f:94:f5:3e:ff:d5:1d:32:01:9e:f8:1b:d6:9e:f9: 37:05:9b:9a:5b:7c:23:b3:d9:52:37:e4:1c:b0:78: 0b:9f:e0:48:07:e1:c9:51:c0:40:30:a7:42:27:a5: 77:52:60:64:d4:35:14:15:50:6a:2d:d4:b8:68:a3: 7f:a7:b9:ae:29:82:c6:5b:45:9d:0e:6c:26:b6:6e: e6:80:fe:3e:29:8d:1f:27:55:9f:b6:44:ef:7a:7c: 86:84:70:fe:fd:1b:6c:47:1e:08:68:8a:93:09:93: e2:e0:cc:8f:62:49:be:fc:b5:75:eb:40:b2:78:d7: bb:d6:8f:81:7c:2a:a9:e1:5d:49:ef:37:a1:e0:34: 1b:3f:a2:16:13:76:b7:a1:c3:c4:4a:4f:31:4b:76: 00:90:16:44:74:f3:23:5e:55:c3:96:2a:3f:35:81: 96:0d:4a:4f:ec:e7:48:71:70:84:02:4d:c3:fa:f1: 71:3c:1b:45:c1:71:ac:39:1f:76:8c:bb:ec:4c:18: c8:b9:5d:de:b2:4b:76:33:e3:8f:47:1b:e8:af:82: 1c:39:36:1e:bc:52:51:db:2a:f9:6c:b7:2e:82:53: 63:9a:c4:55:d1:c0:f9:46:ff:56:65:17:f6:19:13: 5e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DD:AF:C7:E7:C1:1A:04:3B:AD:6C:A7:C0:18:D4:27:B4:E7:8D:B9 X509v3 Authority Key Identifier: keyid:BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:39:2f:d9:fc:43:16:2a:18:36:ab:15:0f:88:a5:1e:bf:ec: 26:fb:67:d5:c6:59:c9:dc:f2:7c:cb:e8:14:1c:a0:29:21:9e: 96:fa:a5:de:bf:9c:92:32:84:d4:0f:0f:55:11:63:b1:a4:bb: 30:b3:52:9f:a9:51:68:2b:2c:e3:52:9b:f1:90:1f:5a:ca:8b: e4:28:76:4e:5d:9a:8b:fc:10:34:fc:0a:c5:c3:82:d8:75:18: 5d:0c:6d:ee:3e:4c:df:67:fb:0d:a2:d9:7c:9a:36:ab:e1:c0: 9e:a0:e5:7b:96:53:f6:43:c1:65:45:35:0f:02:43:c3:42:9f: d7:ab:bb:3f:7a:dc:ff:5c:c2:c2:23:cb:22:e8:84:b4:e3:7c: 3d:c0:c3:0e:c0:57:dd:97:8e:a1:d0:02:6e:fb:4d:e7:91:46: cd:a8:fa:4c:48:b4:68:0e:30:87:40:db:5e:91:87:c3:e4:a2: 36:cc:05:35:a1:96:35:11:c8:f5:8a:ea:10:6a:db:61:36:a6: c3:3d:62:8a:03:aa:63:32:07:3d:13:c9:56:0e:65:82:3c:31: 19:08:17:89:17:f1:50:2e:bf:00:6c:76:f6:b0:86:40:81:0f: 1a:9b:56:69:c7:55:3a:d9:77:0a:74:b9:d9:67:38:3d:83:74: a8:a8:59:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAxQzQxMTAvBgNVBAUTKEJGN0JDQUYxOTA5QzEwQkNGRUEwRDhFN0Q0NUQ4MjU0 RjI2OUM2QkYwHhcNMjUwNDI0MTQxNTU0WhcNMjUwNTAxMTQxNTU0WjAYMRYwFAYD VQQDEw02ODBhNDc5YS0zOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzU8rKHqArd+Lh0sCWoPlPU+/9UdMgGe+BvWnvk3BZuaW3wjs9lSN+QcsHgL n+BIB+HJUcBAMKdCJ6V3UmBk1DUUFVBqLdS4aKN/p7muKYLGW0WdDmwmtm7mgP4+ KY0fJ1WftkTvenyGhHD+/RtsRx4IaIqTCZPi4MyPYkm+/LV160CyeNe71o+BfCqp 4V1J7zeh4DQbP6IWE3a3ocPESk8xS3YAkBZEdPMjXlXDlio/NYGWDUpP7OdIcXCE Ak3D+vFxPBtFwXGsOR92jLvsTBjIuV3eskt2M+OPRxvor4IcOTYevFJR2yr5bLcu glNjmsRV0cD5Rv9WZRf2GRNeOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfdr8fn wRoEO61sp8AY1Ce05425MB8GA1UdIwQYMBaAFL97yvGQnBC8/qDY59RdglTyaca/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDFDNC8yQjJCM0M5RTFE NjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VMei1vTmpuMUYyQ1ZQSnB4 cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Yzdks4WkNjRUx6LW9Oam4xRjJDVlBKcHhyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDFDNC8yQjJCM0M5RTFENjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VM ei1vTmpuMUYyQ1ZQSnB4cjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiOS/Z/EMWKhg2qxUPiKUev+wm+2fVxlnJ3PJ8y+gUHKApIZ6W+qXe v5ySMoTUDw9VEWOxpLsws1KfqVFoKyzjUpvxkB9ayovkKHZOXZqL/BA0/ArFw4LY dRhdDG3uPkzfZ/sNotl8mjar4cCeoOV7llP2Q8FlRTUPAkPDQp/Xq7s/etz/XMLC I8si6IS043w9wMMOwFfdl46h0AJu+03nkUbNqPpMSLRoDjCHQNtekYfD5KI2zAU1 oZY1Ecj1iuoQatthNqbDPWKKA6pjMgc9E8lWDmWCPDEZCBeJF/FQLr8AbHb2sIZA gQ8am1Zpx1U62XcKdLnZZzg9g3SoqFmq -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:40 2025 by rpki-client