$ rpki-client -vvf rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft File: k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft (raw, json) Hash identifier: DwAMkUeuaZeyKg5Sfh48knWqWSOjZ5ilRWHVEzh9T/E= Subject key identifier: B1:9F:0B:FC:0F:BF:7D:FC:A4:B4:42:E5:A1:6F:56:3D:FA:FB:1B:F1 Authority key identifier: 93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C Certificate issuer: /CN=A91410B7/serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Certificate serial: 076F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft Manifest number: 0769 Signing time: Thu 24 Apr 2025 21:19:30 +0000 Manifest this update: Thu 24 Apr 2025 21:19:29 +0000 Manifest next update: Thu 01 May 2025 21:19:29 +0000 Files and hashes: 1: k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl (hash: iZb9Gy79PLsEQWhk2TEqGE2oPjv9LpAJeNPoA7hFylk=) 2: B097C8B013B111EB8864681BC4F9AE02.roa (hash: wTQeNYARIZusYUWnvq2BJbFkJZok+hL8MWM5NCLPLwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1903 (0x76f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91410B7, serialNumber=9368EA494F511E20C1D5F73DD539E3D8465BDA9C Validity Not Before: Apr 24 21:19:29 2025 GMT Not After : May 1 21:19:29 2025 GMT Subject: CN=680aaae1-4686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:35:da:ee:8b:33:6d:67:2f:a0:eb:79:af:d5: f5:e8:73:4b:99:1b:16:65:81:6e:c7:69:2f:dc:04: e5:97:f4:38:0a:79:25:e1:1b:3b:92:04:83:de:e3: 2e:1f:07:b4:a0:fc:ce:b6:ec:e1:5d:ee:9b:81:d9: fd:5e:5a:d7:8b:8c:58:03:b0:a2:a5:71:19:27:ee: d0:8a:27:3b:48:74:53:65:60:1c:de:61:a2:86:24: af:af:56:b6:fe:62:cd:54:cd:53:7f:f8:98:23:b4: 24:b5:d0:94:31:a8:90:d0:86:2f:85:bc:9d:78:27: 4e:18:a3:7a:fc:fc:bd:d4:1a:8f:7a:9e:b3:b7:96: 55:c1:43:d8:11:63:fe:e1:0c:a7:fc:b6:33:80:56: 87:dc:12:90:19:b6:99:85:4a:0b:51:75:1a:71:84: fb:d3:80:54:c2:1c:e2:94:6f:a2:fd:eb:cb:47:97: a6:6f:b3:6b:d5:1e:6b:08:0a:59:e2:ae:f3:14:86: 85:00:ae:28:43:60:63:f6:e1:64:b2:9a:9b:d0:40: 6a:95:e3:8f:22:e4:11:ef:31:6e:fa:72:cd:82:78: 48:5d:16:7f:59:a0:19:19:8f:0e:8e:65:01:26:2d: 0c:35:a6:a7:56:5f:67:65:87:e5:0c:39:50:3c:46: 75:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9F:0B:FC:0F:BF:7D:FC:A4:B4:42:E5:A1:6F:56:3D:FA:FB:1B:F1 X509v3 Authority Key Identifier: keyid:93:68:EA:49:4F:51:1E:20:C1:D5:F7:3D:D5:39:E3:D8:46:5B:DA:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k2jqSU9RHiDB1fc91Tnj2EZb2pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91410B7/75ABC9FC13AE11EBBC7C6815C4F9AE02/k2jqSU9RHiDB1fc91Tnj2EZb2pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b3:f4:6e:4c:d0:ca:ff:38:4c:c5:72:ce:8b:fa:26:fb:df: 55:d3:0d:47:c9:50:37:19:99:4e:28:d3:82:eb:e3:81:fa:5b: 63:e1:93:d8:e4:42:62:b9:60:d0:d1:73:7f:7d:b3:bf:f5:32: 84:a7:d2:24:ed:01:68:7c:3d:44:36:d8:65:c7:60:9e:45:e5: f9:10:4c:a0:ee:8a:10:51:74:f2:d6:a1:be:72:b5:23:fb:bb: 0f:cf:62:42:63:a0:8a:c2:a0:85:64:b3:ab:02:2f:a6:27:57: fa:5d:d7:7b:c1:33:a2:7a:f0:9f:95:16:cf:bd:3f:ab:de:c7: ed:e1:30:1f:b2:25:1e:b2:f2:3d:69:d6:89:1c:40:7e:fa:3a: d0:6e:be:bb:24:dd:5f:e4:ab:c0:a0:9c:62:0a:64:ef:b0:b5: eb:3e:1d:84:53:9f:9d:f0:2e:73:66:49:2f:de:72:af:94:5d: b1:d4:9f:7c:1f:44:62:67:66:70:4d:2f:cb:89:b3:d3:6c:10: 80:04:d6:df:65:42:5d:f3:2a:a1:cc:bb:af:24:c8:ff:79:bc: fe:d8:0e:8e:39:52:21:8d:69:cf:45:37:9b:e3:49:3c:9f:71: 67:78:f5:49:37:9a:d9:fc:5b:7b:f7:22:67:c9:84:8f:94:80: ff:5b:17:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDEwQjcxMTAvBgNVBAUTKDkzNjhFQTQ5NEY1MTFFMjBDMUQ1RjczREQ1MzlFM0Q4 NDY1QkRBOUMwHhcNMjUwNDI0MjExOTI5WhcNMjUwNTAxMjExOTI5WjAYMRYwFAYD VQQDEw02ODBhYWFlMS00Njg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDXa7oszbWcvoOt5r9X16HNLmRsWZYFux2kv3ATll/Q4Cnkl4Rs7kgSD3uMu Hwe0oPzOtuzhXe6bgdn9XlrXi4xYA7CipXEZJ+7Qiic7SHRTZWAc3mGihiSvr1a2 /mLNVM1Tf/iYI7QktdCUMaiQ0IYvhbydeCdOGKN6/Py91BqPep6zt5ZVwUPYEWP+ 4Qyn/LYzgFaH3BKQGbaZhUoLUXUacYT704BUwhzilG+i/evLR5emb7Nr1R5rCApZ 4q7zFIaFAK4oQ2Bj9uFkspqb0EBqleOPIuQR7zFu+nLNgnhIXRZ/WaAZGY8OjmUB Ji0MNaanVl9nZYflDDlQPEZ1uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGfC/wP v338pLRC5aFvVj36+xvxMB8GA1UdIwQYMBaAFJNo6klPUR4gwdX3PdU549hGW9qc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTBCNy83NUFCQzlGQzEz QUUxMUVCQkM3QzY4MTVDNEY5QUUwMi9rMmpxU1U5UkhpREIxZmM5MVRuajJFWmIy cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2syanFTVTlSSGlEQjFmYzkxVG5qMkVaYjJwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTBCNy83NUFCQzlGQzEzQUUxMUVCQkM3QzY4MTVDNEY5QUUwMi9rMmpxU1U5Ukhp REIxZmM5MVRuajJFWmIycHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBks/RuTNDK/zhMxXLOi/om+99V0w1HyVA3GZlOKNOC6+OB+ltj4ZPY 5EJiuWDQ0XN/fbO/9TKEp9Ik7QFofD1ENthlx2CeReX5EEyg7ooQUXTy1qG+crUj +7sPz2JCY6CKwqCFZLOrAi+mJ1f6Xdd7wTOievCflRbPvT+r3sft4TAfsiUesvI9 adaJHEB++jrQbr67JN1f5KvAoJxiCmTvsLXrPh2EU5+d8C5zZkkv3nKvlF2x1J98 H0RiZ2ZwTS/LibPTbBCABNbfZUJd8yqhzLuvJMj/ebz+2A6OOVIhjWnPRTeb40k8 n3FnePVJN5rZ/Ft79yJnyYSPlID/Wxfs -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:18 2025 by rpki-client