$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: bTDcL1Q4J2oc7n/RISSNa+SDO5BHMto1zInVLBZyPqA= Subject key identifier: 72:A9:93:9B:FB:D4:87:2B:EC:5E:F7:83:05:44:AA:9A:F6:78:53:52 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 016F Signing time: Fri 25 Apr 2025 02:58:19 +0000 Manifest this update: Fri 25 Apr 2025 02:58:18 +0000 Manifest next update: Fri 02 May 2025 02:58:18 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: 9LSDiuKZ/csgV5i/ypp4xHyOCEXKGljE+RS9O85HuKA=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: kkDE8d3mWSYNpu+aK9mDwlnVUB+hzBT68zCQ1fhGRvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Apr 25 02:58:18 2025 GMT Not After : May 2 02:58:18 2025 GMT Subject: CN=680afa4a-6493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ae:f9:db:3b:e1:f2:95:dc:cf:88:ad:dd:48: 5a:05:a5:f9:22:29:f7:d7:a5:20:85:6f:0b:f9:5e: dc:0c:25:02:c4:ec:0e:c2:f2:df:12:04:25:89:94: 76:93:12:34:68:f5:27:e8:77:bb:f6:18:d5:81:2d: e8:c7:d2:b7:35:8a:99:ff:11:39:d4:cc:ac:58:8c: 67:68:38:73:e6:3b:a0:13:5e:27:bc:33:6f:5a:54: fd:d5:69:c4:20:f7:61:8f:f4:84:f1:25:ba:76:1c: 95:8b:56:ea:eb:bc:70:61:28:fe:45:c7:06:92:af: fe:ca:7a:a5:cf:6a:9a:5a:21:08:ed:70:87:5c:d7: 27:59:56:b9:7f:1a:37:6e:90:b4:38:60:b9:bf:8b: 61:60:bf:cc:e3:bb:67:4a:d6:de:82:d8:47:c2:21: 5a:6e:09:f6:82:a4:6e:b0:4f:42:8c:b8:ba:b1:9e: e0:c1:e4:d9:15:3d:59:89:76:7e:06:e8:04:e2:25: 95:90:24:1e:fd:c0:c7:39:5f:fa:f1:83:dc:46:50: 4b:c7:d3:e1:96:63:a4:6e:2b:91:da:80:70:4e:2a: 6c:2c:1a:52:c0:80:27:e6:2e:4d:3a:7f:4f:99:7c: 04:c2:f3:4a:a0:32:09:94:d6:67:0b:82:6a:b4:1d: fd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A9:93:9B:FB:D4:87:2B:EC:5E:F7:83:05:44:AA:9A:F6:78:53:52 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ea:69:2b:5a:73:88:73:61:53:d4:97:99:86:63:a6:c1:74: 92:7c:a5:09:c3:43:a0:1c:e7:a4:86:00:e8:ee:a8:7e:dd:06: b1:6e:af:4a:04:3e:9f:04:ab:60:72:2e:05:0e:32:e0:83:a9: 40:e6:1e:4d:a5:56:fc:e0:ad:c1:fe:ee:2c:e2:6c:39:46:b6: 83:11:78:66:9a:2d:cd:2f:2c:d5:b8:25:4e:33:94:15:f4:65: 13:98:d7:dd:c7:af:49:13:32:ff:99:3e:92:29:46:b8:bd:a7: 07:a7:f7:30:7b:ea:b5:65:31:9b:0e:e7:dc:c5:3b:ed:d3:ee: 81:47:7f:a9:66:f3:4e:5b:a4:4d:ae:3c:30:32:5c:c8:1c:fd: 16:a9:5a:e8:66:13:36:c0:9e:20:fa:51:0c:a3:5f:03:68:ce: ae:c5:cf:54:65:f9:a9:40:f3:dc:bf:51:bb:a0:3f:d6:e4:e7: 2b:8f:6a:3f:d7:5c:bd:ad:63:39:79:4b:a3:94:8b:f6:fb:cb: 1a:04:ff:6d:b9:2a:94:e0:59:7f:86:7b:41:0f:79:bd:b7:6d: 64:19:0f:c5:10:16:eb:15:62:c5:71:59:3c:d6:b1:0e:41:2e: 9b:d9:e0:c7:91:85:a1:e3:92:cd:ed:fe:ec:bb:ad:9a:b5:5c: 1b:b1:ac:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNDI1MDI1ODE4WhcNMjUwNTAyMDI1ODE4WjAYMRYwFAYD VQQDEw02ODBhZmE0YS02NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq752zvh8pXcz4it3UhaBaX5Iin316UghW8L+V7cDCUCxOwOwvLfEgQliZR2 kxI0aPUn6He79hjVgS3ox9K3NYqZ/xE51MysWIxnaDhz5jugE14nvDNvWlT91WnE IPdhj/SE8SW6dhyVi1bq67xwYSj+RccGkq/+ynqlz2qaWiEI7XCHXNcnWVa5fxo3 bpC0OGC5v4thYL/M47tnStbegthHwiFabgn2gqRusE9CjLi6sZ7gweTZFT1ZiXZ+ BugE4iWVkCQe/cDHOV/68YPcRlBLx9PhlmOkbiuR2oBwTipsLBpSwIAn5i5NOn9P mXwEwvNKoDIJlNZnC4JqtB399wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKpk5v7 1Icr7F73gwVEqpr2eFNSMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN6mkrWnOIc2FT1JeZhmOmwXSSfKUJw0OgHOekhgDo7qh+3Qaxbq9K BD6fBKtgci4FDjLgg6lA5h5NpVb84K3B/u4s4mw5RraDEXhmmi3NLyzVuCVOM5QV 9GUTmNfdx69JEzL/mT6SKUa4vacHp/cwe+q1ZTGbDufcxTvt0+6BR3+pZvNOW6RN rjwwMlzIHP0WqVroZhM2wJ4g+lEMo18DaM6uxc9UZfmpQPPcv1G7oD/W5Ocrj2o/ 11y9rWM5eUujlIv2+8saBP9tuSqU4Fl/hntBD3m9t21kGQ/FEBbrFWLFcVk81rEO QS6b2eDHkYWh45LN7f7su62atVwbsayp -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:13 2025 by rpki-client