$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: /Di2svZQHkDQzMpsu/UTXO7UKvcJHDvwRi1Kz4GSWB8= Subject key identifier: 44:0B:36:41:4D:82:88:8D:96:A9:FD:10:81:55:44:D2:5A:0E:8D:DE Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 0702 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 06FD Signing time: Thu 24 Apr 2025 21:44:38 +0000 Manifest this update: Thu 24 Apr 2025 21:44:38 +0000 Manifest next update: Thu 01 May 2025 21:44:38 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: fT3+5tbJ13M/rjR/iojnTZnrSwEgQmQwOujdqNeszn8=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: WhAEh4S3tK527emBBM2jGEQwQFEHNqJyzLHLvoZ2c44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1794 (0x702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4, serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Apr 24 21:44:38 2025 GMT Not After : May 1 21:44:38 2025 GMT Subject: CN=680ab0c6-c99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:31:c8:fc:1f:51:40:b9:1e:cd:a1:fb:11: ac:49:a4:e2:f5:bc:03:ab:e7:c1:41:5e:15:c4:51: e8:a6:c3:a4:f8:7a:83:68:f9:1b:a9:1b:42:d7:71: 7d:82:0c:89:1a:31:e5:3a:cf:44:4a:ad:f9:1c:17: 20:a8:95:42:4f:04:82:c4:77:6f:0f:4f:33:37:cf: d6:4b:1b:6d:9c:a6:f2:53:cf:0b:27:53:6e:7e:e3: e2:a4:38:df:0d:ab:02:94:57:95:0b:6d:9c:c4:59: 42:ff:28:1f:34:8f:7b:4c:8c:83:47:bc:ed:8d:de: b9:26:67:2f:fa:7c:9b:9d:4e:d1:95:9a:02:a2:13: 40:42:e2:38:72:cc:7c:93:82:af:36:35:7e:45:64: d2:ca:6a:52:a0:45:46:2a:4b:98:6d:1a:14:61:30: c0:32:57:16:a3:58:a9:6f:20:78:49:6d:bc:6f:c8: 59:06:1a:ba:9f:48:ef:04:93:d5:72:7e:3a:51:42: 90:f8:e7:78:d3:53:37:18:3c:43:4a:84:38:c8:ef: 74:5f:d7:04:c9:8e:30:b7:53:fb:4e:c3:85:e5:c8: 70:48:77:1c:c4:11:93:74:84:8a:af:1e:ae:fb:ec: 89:3f:d6:e7:d1:c6:7c:6a:77:70:66:1e:d5:a0:7d: b6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0B:36:41:4D:82:88:8D:96:A9:FD:10:81:55:44:D2:5A:0E:8D:DE X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:50:21:52:1a:05:fd:90:10:a6:54:fe:71:6c:f9:95:57:0a: 25:e8:0b:05:c0:b2:13:44:03:03:2d:76:1b:96:28:f3:49:e5: f8:a7:d1:76:c5:da:01:7b:15:29:9b:db:5b:40:be:e7:60:04: be:46:09:3d:7b:42:02:4e:24:28:d9:e9:cc:0d:77:5a:a4:d6: 67:41:e1:86:1d:a9:ad:e4:af:ad:93:d7:cd:32:b2:56:c0:20: 7b:d2:4f:e2:a5:c6:07:8b:f4:68:13:16:38:ac:58:f3:d1:82: c6:61:15:a0:4d:88:27:25:8b:78:60:4f:d4:10:bf:74:40:91: 52:f4:37:8f:12:56:fe:20:ed:1f:da:9d:33:13:62:96:6b:07: 30:89:48:f2:c1:2e:d7:c7:d7:7c:85:64:3c:8e:7f:71:0b:e2: 82:c8:b2:09:30:32:a5:46:5f:04:23:f5:58:73:26:8c:7d:85: e0:5d:0a:00:64:40:19:0e:d6:8f:8f:ff:fa:ab:eb:1b:f7:20: 6c:e7:33:5d:3d:d1:ab:81:97:58:6f:63:a9:74:dc:3d:34:55: d3:07:4b:a9:04:bb:6f:75:6c:30:e1:2b:96:43:39:7e:54:a2: da:66:5c:cc:d0:45:09:fb:7c:fc:4b:cf:26:c7:14:25:64:1d: 93:d7:d7:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjUwNDI0MjE0NDM4WhcNMjUwNTAxMjE0NDM4WjAYMRYwFAYD VQQDEw02ODBhYjBjNi1jOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyAxyPwfUUC5Hs2h+xGsSaTi9bwDq+fBQV4VxFHopsOk+HqDaPkbqRtC13F9 ggyJGjHlOs9ESq35HBcgqJVCTwSCxHdvD08zN8/WSxttnKbyU88LJ1NufuPipDjf DasClFeVC22cxFlC/ygfNI97TIyDR7ztjd65Jmcv+nybnU7RlZoCohNAQuI4csx8 k4KvNjV+RWTSympSoEVGKkuYbRoUYTDAMlcWo1ipbyB4SW28b8hZBhq6n0jvBJPV cn46UUKQ+Od401M3GDxDSoQ4yO90X9cEyY4wt1P7TsOF5chwSHccxBGTdISKrx6u ++yJP9bn0cZ8andwZh7VoH22ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQLNkFN goiNlqn9EIFVRNJaDo3eMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeUCFSGgX9kBCmVP5xbPmVVwol6AsFwLITRAMDLXYblijzSeX4p9F2 xdoBexUpm9tbQL7nYAS+Rgk9e0ICTiQo2enMDXdapNZnQeGGHamt5K+tk9fNMrJW wCB70k/ipcYHi/RoExY4rFjz0YLGYRWgTYgnJYt4YE/UEL90QJFS9DePElb+IO0f 2p0zE2KWawcwiUjywS7Xx9d8hWQ8jn9xC+KCyLIJMDKlRl8EI/VYcyaMfYXgXQoA ZEAZDtaPj//6q+sb9yBs5zNdPdGrgZdYb2OpdNw9NFXTB0upBLtvdWww4SuWQzl+ VKLaZlzM0EUJ+3z8S88mxxQlZB2T19cg -----END CERTIFICATE-----Generated at Sat Apr 26 12:18:09 2025 by rpki-client