$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft File: AZgxEf1vCyfiQEY7aKehmEXHuwo.mft (raw, json) Hash identifier: mqUBOeaY2jU4VA41V0c0J2Hqg8f750ss9BmRUFuwR0Y= Subject key identifier: 7B:E7:25:6A:50:DD:AA:56:88:7A:C6:EA:BE:B7:85:46:E5:B4:B7:94 Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 04F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft Manifest number: 04E9 Signing time: Thu 24 Apr 2025 23:32:21 +0000 Manifest this update: Thu 24 Apr 2025 23:32:21 +0000 Manifest next update: Thu 01 May 2025 23:32:21 +0000 Files and hashes: 1: AZgxEf1vCyfiQEY7aKehmEXHuwo.crl (hash: dzXXNE+UkEdaLxL4Y+7ScqEb4LkJQskqsHAGozaRyto=) 2: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (hash: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: Apr 24 23:32:21 2025 GMT Not After : May 1 23:32:21 2025 GMT Subject: CN=680aca05-3931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:28:29:ec:ca:9a:08:d9:8e:e4:c1:2e:21: fe:f2:31:fd:6c:93:f2:54:2c:b6:a7:12:d6:05:48: 3c:8f:29:24:c2:a4:36:eb:8e:24:68:54:77:61:17: 20:c0:51:98:7b:72:ea:7c:89:8e:f3:65:a7:e6:e6: 3c:83:f4:0f:27:2a:38:d2:35:01:dc:c1:61:8b:34: dd:be:2c:6d:73:2d:ab:66:0f:19:0b:cd:ac:7d:a4: 9a:ec:f2:22:d3:42:7d:ec:ae:49:03:8e:dc:d1:59: b1:aa:7a:ac:74:0d:3a:2f:dc:97:68:50:f9:2f:8d: 75:d4:20:89:1f:16:b3:d9:8b:12:26:14:f4:48:5e: 75:59:74:1f:70:0d:7b:78:ef:ed:8c:d1:5a:87:4d: 70:91:ab:ef:89:43:61:6b:3b:04:55:24:fb:92:bd: 61:84:58:ba:ac:10:27:06:47:46:f7:eb:e5:aa:97: f4:6a:ef:7f:3e:c5:33:bf:52:a3:e8:29:8a:c7:9f: ce:88:8e:39:d0:95:73:75:ab:3d:08:c9:d7:bb:35: 3d:3f:84:db:20:e4:15:12:c3:84:2c:93:e2:ab:0c: 74:5f:61:45:8e:a7:29:49:2f:99:a1:eb:c2:55:b5: d1:33:b0:c4:91:43:7e:6d:aa:29:b2:67:78:03:9c: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E7:25:6A:50:DD:AA:56:88:7A:C6:EA:BE:B7:85:46:E5:B4:B7:94 X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:70:00:fd:0a:29:ec:60:0a:5e:d7:6d:db:25:3c:b5:ad:86: c6:18:f4:9f:3c:8c:39:61:c7:08:15:3c:06:11:e9:8d:46:a4: 32:df:46:86:58:88:04:b7:45:1c:3a:36:23:f5:05:c2:0a:38: a3:1b:55:13:e4:1e:6e:42:cb:02:e1:ca:26:66:6f:62:01:29: 67:1a:7a:7e:0b:11:94:9b:80:1e:ba:f7:9c:12:9b:9c:e6:bc: 7b:40:2a:4b:5c:de:e5:5b:04:42:b9:a4:dd:d9:9e:54:82:dc: e0:22:1f:50:af:46:94:85:a4:72:7e:8c:8d:62:97:2b:ab:cb: 46:75:d9:c1:e5:6a:93:57:7e:3f:d0:4c:4b:34:1e:58:e9:d7: 49:b7:7d:64:42:7f:56:2c:9f:85:fd:01:45:8b:f3:71:20:d2: 36:dc:2e:e4:0b:04:db:26:9d:3e:eb:da:eb:56:bc:b2:64:00: 86:c4:c1:f9:bd:bf:9c:1a:83:41:8b:d3:3d:e6:f3:c8:ae:12: d6:9e:61:dc:0a:de:a4:73:41:eb:6d:83:4b:7b:43:87:c0:d1: 62:fc:7c:83:00:d2:98:49:1a:c1:a7:a3:bc:7f:fb:eb:45:b0: dd:4a:6f:52:84:37:5f:34:f8:1e:29:0a:b4:3a:21:df:02:fc: 46:ab:fe:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwNDI0MjMzMjIxWhcNMjUwNTAxMjMzMjIxWjAYMRYwFAYD VQQDEw02ODBhY2EwNS0zOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvAoKezKmgjZjuTBLiH+8jH9bJPyVCy2pxLWBUg8jykkwqQ2644kaFR3YRcg wFGYe3LqfImO82Wn5uY8g/QPJyo40jUB3MFhizTdvixtcy2rZg8ZC82sfaSa7PIi 00J97K5JA47c0VmxqnqsdA06L9yXaFD5L4111CCJHxaz2YsSJhT0SF51WXQfcA17 eO/tjNFah01wkavviUNhazsEVST7kr1hhFi6rBAnBkdG9+vlqpf0au9/PsUzv1Kj 6CmKx5/OiI450JVzdas9CMnXuzU9P4TbIOQVEsOELJPiqwx0X2FFjqcpSS+ZoevC VbXRM7DEkUN+baopsmd4A5yk7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvnJWpQ 3apWiHrG6r63hUbltLeUMB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTNCMC8xMzhFMTQzMDE0NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5 ZmlRRVk3YUtlaG1FWEh1d28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAocAD9CinsYApe123bJTy1rYbGGPSfPIw5YccIFTwGEemNRqQy30aG WIgEt0UcOjYj9QXCCjijG1UT5B5uQssC4comZm9iASlnGnp+CxGUm4AeuvecEpuc 5rx7QCpLXN7lWwRCuaTd2Z5UgtzgIh9Qr0aUhaRyfoyNYpcrq8tGddnB5WqTV34/ 0ExLNB5Y6ddJt31kQn9WLJ+F/QFFi/NxINI23C7kCwTbJp0+69rrVryyZACGxMH5 vb+cGoNBi9M95vPIrhLWnmHcCt6kc0HrbYNLe0OHwNFi/HyDANKYSRrBp6O8f/vr RbDdSm9ShDdfNPgeKQq0OiHfAvxGq/7u -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:00 2025 by rpki-client