$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: ZUIKZnJrmsdsHBwj4ltLk+kwdqtJpC7BE0+yX1gdsME= Subject key identifier: 1C:F2:61:EB:5E:72:A0:EC:98:F2:69:D0:CD:B2:1C:86:88:38:93:15 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01A1 Signing time: Fri 25 Apr 2025 02:33:09 +0000 Manifest this update: Fri 25 Apr 2025 02:33:09 +0000 Manifest next update: Fri 02 May 2025 02:33:09 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: yPfxG/ehLhvNyTrucPLaRb10bM6vbrY2PUBYi2leNBE=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: gp0c0TAvNcGzlWuq4DB/NpWsaDumiulUkd34eH+poTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Apr 25 02:33:09 2025 GMT Not After : May 2 02:33:09 2025 GMT Subject: CN=680af465-7871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1b:d2:f2:ed:52:b3:be:c8:b1:a1:48:90:31: 76:63:d0:25:58:58:f9:1b:2a:0c:1b:a7:2a:ad:cd: f8:c4:81:58:3a:0c:0e:5c:76:d1:89:1d:05:22:b8: be:39:71:dc:29:92:84:85:88:a1:bb:d4:b7:29:7c: 02:3e:05:2e:52:db:4b:07:6f:7d:8b:45:cc:c1:02: df:c9:12:57:44:3b:27:1e:3d:26:49:ef:ce:75:d9: 7e:6a:77:5d:9b:22:58:0a:43:15:b4:66:86:d6:35: 8f:86:2b:2c:93:aa:e4:1c:ea:40:32:fa:cb:b4:d1: 5b:a2:5e:5e:c5:a7:d4:cd:18:29:32:62:7c:85:1c: ef:2c:8a:a7:da:c9:a0:50:ef:1d:fd:ec:cd:b3:2c: 45:cb:62:3d:6c:cf:bb:c5:f2:ee:9b:6f:9c:f2:93: f3:31:b6:74:35:db:91:ec:8c:03:4d:55:72:a3:a4: 4c:26:4f:21:a4:0b:25:1b:34:87:64:56:90:2a:b7: 49:b9:fb:54:99:ca:52:0b:a6:d5:81:be:1b:b9:b6: 9e:09:24:dd:bc:7d:a2:f6:8d:7e:78:2d:25:f1:f0: 23:9b:17:96:ed:7c:bc:83:00:14:36:6e:5f:c6:10: 48:c7:26:62:b3:9c:ef:20:69:66:c5:c7:84:60:24: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F2:61:EB:5E:72:A0:EC:98:F2:69:D0:CD:B2:1C:86:88:38:93:15 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:74:f8:e8:c4:67:0f:25:6c:7b:e8:db:44:f1:b1:1e:0c:b4: 54:aa:4d:4b:f2:ce:49:b3:0d:50:21:cb:c3:74:85:92:c7:be: d5:04:cf:40:1f:67:18:1f:d6:22:d4:dd:48:ee:01:e1:d6:c0: ed:a6:51:7b:0a:34:75:29:0e:82:0e:83:c0:9c:41:85:cf:af: be:17:d1:91:06:80:cd:8c:fb:83:16:92:15:47:0d:22:3a:ff: 4c:10:2b:b5:3d:db:d2:ef:35:4f:b7:60:de:10:d7:a0:82:d5: c5:f0:9f:9d:86:46:8d:ca:28:76:2a:b2:3e:4d:58:95:c0:cd: 9a:52:05:52:77:cb:31:c1:cd:dc:71:05:87:92:e0:a7:08:88: 4a:60:90:fe:ee:a4:59:ff:f9:fc:c3:37:6b:bf:83:cd:e7:a2: 9c:de:cf:09:72:65:36:19:3e:ca:d5:44:4d:44:63:1b:5f:f7: e9:00:c1:d3:9a:42:7c:10:39:fa:c8:49:46:35:33:0d:4e:65: ff:7f:19:37:33:8e:0c:0b:a4:53:e6:01:31:15:25:20:d6:c4: 3c:d4:22:17:e1:c6:2f:ab:cb:05:67:14:69:67:0a:26:4c:f2: d2:1d:8c:9f:fc:2a:41:41:d8:3f:56:0e:14:73:3b:38:17:a0: fc:52:68:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwNDI1MDIzMzA5WhcNMjUwNTAyMDIzMzA5WjAYMRYwFAYD VQQDEw02ODBhZjQ2NS03ODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BvS8u1Ss77IsaFIkDF2Y9AlWFj5GyoMG6cqrc34xIFYOgwOXHbRiR0FIri+ OXHcKZKEhYihu9S3KXwCPgUuUttLB299i0XMwQLfyRJXRDsnHj0mSe/Oddl+andd myJYCkMVtGaG1jWPhissk6rkHOpAMvrLtNFbol5exafUzRgpMmJ8hRzvLIqn2smg UO8d/ezNsyxFy2I9bM+7xfLum2+c8pPzMbZ0NduR7IwDTVVyo6RMJk8hpAslGzSH ZFaQKrdJuftUmcpSC6bVgb4bubaeCSTdvH2i9o1+eC0l8fAjmxeW7Xy8gwAUNm5f xhBIxyZis5zvIGlmxceEYCRP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzyYete cqDsmPJp0M2yHIaIOJMVMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhdPjoxGcPJWx76NtE8bEeDLRUqk1L8s5Jsw1QIcvDdIWSx77VBM9A H2cYH9Yi1N1I7gHh1sDtplF7CjR1KQ6CDoPAnEGFz6++F9GRBoDNjPuDFpIVRw0i Ov9MECu1PdvS7zVPt2DeENeggtXF8J+dhkaNyih2KrI+TViVwM2aUgVSd8sxwc3c cQWHkuCnCIhKYJD+7qRZ//n8wzdrv4PN56Kc3s8JcmU2GT7K1URNRGMbX/fpAMHT mkJ8EDn6yElGNTMNTmX/fxk3M44MC6RT5gExFSUg1sQ81CIX4cYvq8sFZxRpZwom TPLSHYyf/CpBQdg/Vg4Uczs4F6D8Umgw -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:33 2025 by rpki-client