$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: N/Nup/OEsE9of4uiapX22/F5HRR6Sw5WVmpdikLiAcg= Subject key identifier: A1:00:BE:3D:18:0E:C5:F8:CC:BB:FD:CA:C2:BD:6D:EB:E1:AF:72:A3 Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 4A Signing time: Fri 25 Apr 2025 06:20:51 +0000 Manifest this update: Fri 25 Apr 2025 06:20:51 +0000 Manifest next update: Fri 02 May 2025 06:20:50 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: QUM+EBjciPc1ebL2Yae7rjxUl0ZbZ0nX6fzlQAYRihM=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: 7UFK5IvMzRZ9oqAbFOWW72hTsQEiovxWyIoXLKQd8RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Apr 25 06:20:51 2025 GMT Not After : May 2 06:20:50 2025 GMT Subject: CN=680b29c3-9046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:93:af:0d:bd:11:c6:bf:ea:4a:31:2f:61:15: 55:6d:67:30:c7:30:74:b0:3c:29:66:bf:c5:41:e2: e7:13:ea:c1:29:3e:ca:2f:c6:f3:cd:d4:c4:11:77: 4c:a1:4b:cb:56:8f:49:45:71:90:ad:06:e1:c1:25: 97:2b:5b:40:c9:ad:78:92:1d:c7:96:33:34:84:3b: 88:f9:2e:70:db:7f:d4:0c:d4:31:09:f7:7c:6f:d3: ef:4a:0f:26:58:60:db:7b:b8:64:25:fa:33:25:1b: 20:d3:68:6d:68:26:1f:98:6a:ae:94:3f:90:17:66: b3:56:d8:c0:80:2d:ac:5b:7d:e7:1a:43:22:81:e2: c1:79:14:61:27:c6:ff:3f:83:af:2c:52:41:4e:1b: d0:ee:f7:37:ee:2b:17:f7:6c:b5:94:75:8d:bc:17: ad:d2:be:60:b0:fd:3a:3c:d1:8e:4e:ee:46:00:dc: 91:89:c0:6c:c4:aa:bf:1a:31:1c:66:b1:e2:74:df: cf:57:a8:e6:93:69:2a:26:94:49:8f:91:ee:11:50: b4:ea:5d:61:64:25:fc:eb:42:4a:84:c9:f4:01:db: cf:31:3b:9d:08:f3:57:64:58:ae:36:f9:ed:5d:6d: f0:db:14:06:7f:3f:6d:43:91:54:38:45:12:3e:7b: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:00:BE:3D:18:0E:C5:F8:CC:BB:FD:CA:C2:BD:6D:EB:E1:AF:72:A3 X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a8:79:f3:f3:3b:eb:2c:b2:47:2d:d6:10:64:a6:f4:19:1d: 3c:e2:59:3e:b1:05:17:48:6a:ee:51:a4:81:51:63:7b:f8:c7: ba:78:41:8f:25:7d:6f:43:e7:4f:f0:89:6f:6d:9a:1b:d2:e0: 75:73:95:0b:9e:b3:f0:26:ae:04:c7:1c:45:7b:be:51:d0:8e: b9:1e:43:f9:d7:51:be:9c:85:bf:fd:13:18:91:d0:fd:19:c1: f8:32:33:70:32:c5:95:d0:7e:68:c5:75:c5:b9:9f:1d:a1:8c: ba:1d:d0:54:61:b3:43:1a:cd:70:cc:97:71:d6:4d:76:f0:e1: 22:61:84:34:93:80:9c:13:51:39:b3:0a:e2:d9:a4:ba:c0:5a: 56:b4:8c:7e:d0:f7:4d:c5:06:60:41:e7:05:00:fc:b2:fe:ec: e0:39:40:5c:0f:bb:f1:6c:99:b7:85:a4:73:35:3a:04:68:5f: 6e:46:f9:c8:6d:3c:e1:6c:29:9a:d5:e7:34:15:ae:fa:a3:5f: 05:42:d8:68:a3:d9:e3:c6:88:37:56:72:2c:59:df:2b:b1:9f: 85:45:f6:08:3a:b9:37:dc:b7:73:ba:35:76:d0:6d:0d:67:aa: 59:22:da:3e:67:17:c4:42:22:bf:88:bd:99:29:f6:96:88:99: fd:1d:9f:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTdDRjExMC8GA1UEBRMoRUMzRDgwN0Y3OTNDOUNGNUZDRTMzNUVFMTVFMDk4NDQ0 OUI0MzA5NjAeFw0yNTA0MjUwNjIwNTFaFw0yNTA1MDIwNjIwNTBaMBgxFjAUBgNV BAMTDTY4MGIyOWMzLTkwNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXk68NvRHGv+pKMS9hFVVtZzDHMHSwPClmv8VB4ucT6sEpPsovxvPN1MQRd0yh S8tWj0lFcZCtBuHBJZcrW0DJrXiSHceWMzSEO4j5LnDbf9QM1DEJ93xv0+9KDyZY YNt7uGQl+jMlGyDTaG1oJh+Yaq6UP5AXZrNW2MCALaxbfecaQyKB4sF5FGEnxv8/ g68sUkFOG9Du9zfuKxf3bLWUdY28F63SvmCw/To80Y5O7kYA3JGJwGzEqr8aMRxm seJ0389XqOaTaSomlEmPke4RULTqXWFkJfzrQkqEyfQB288xO50I81dkWK42+e1d bfDbFAZ/P21DkVQ4RRI+e5cPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoQC+PRgO xfjMu/3Kwr1t6+GvcqMwHwYDVR0jBBgwFoAU7D2Af3k8nPX84zXuFeCYREm0MJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxN0NGL0I0MTU1NDU4QjJD NzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1K WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0QyQWYzazhuUFg4NHpYdUZlQ1lSRW0wTUpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx N0NGL0I0MTU1NDU4QjJDNzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBY ODR6WHVGZUNZUkVtME1KWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC6oefPzO+ssskct1hBkpvQZHTziWT6xBRdIau5RpIFRY3v4x7p4QY8l fW9D50/wiW9tmhvS4HVzlQues/AmrgTHHEV7vlHQjrkeQ/nXUb6chb/9ExiR0P0Z wfgyM3AyxZXQfmjFdcW5nx2hjLod0FRhs0MazXDMl3HWTXbw4SJhhDSTgJwTUTmz CuLZpLrAWla0jH7Q903FBmBB5wUA/LL+7OA5QFwPu/FsmbeFpHM1OgRoX25G+cht POFsKZrV5zQVrvqjXwVC2Gij2ePGiDdWcixZ3yuxn4VF9gg6uTfct3O6NXbQbQ1n qlki2j5nF8RCIr+IvZkp9paImf0dn3s= -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:34 2025 by rpki-client