$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: KeyLJvOayGEUNRXSyh6/y59q7pQSw1YtLtlkyW4pXWY= Subject key identifier: 37:96:13:DA:D3:B9:17:85:17:AB:A3:98:95:47:48:5B:76:02:FB:3C Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 027F Signing time: Fri 25 Apr 2025 01:28:15 +0000 Manifest this update: Fri 25 Apr 2025 01:28:14 +0000 Manifest next update: Fri 02 May 2025 01:28:14 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: U2fZWtUtUDi/6pvhe/2we5Jm1SnrbLkDrLCUGtr7jV4=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Apr 25 01:28:14 2025 GMT Not After : May 2 01:28:14 2025 GMT Subject: CN=680ae52e-d99e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:63:12:52:e7:17:ad:e4:9e:6f:f7:96:c4:71: 67:c8:84:96:36:6a:f2:e2:83:fc:0a:17:98:c2:e8: 21:c8:83:a9:45:1d:87:e6:39:b0:70:34:4f:3e:a7: 6d:2d:7d:52:7a:63:3b:4b:dd:d9:2b:4f:f1:41:3a: de:45:1c:b2:3d:52:60:f0:14:19:1c:b2:58:58:b4: 7d:ac:89:7b:ec:d1:53:bd:99:23:ad:8e:04:94:56: f6:b5:6d:e7:68:d4:d9:78:56:6b:51:84:e3:bd:77: e2:de:24:a2:fc:56:e0:ea:dc:ce:9b:c8:6e:48:c9: 05:8f:13:20:a6:f9:46:42:1f:51:db:96:f1:5f:b6: bc:77:a9:63:be:ac:cd:13:a8:fa:2b:b2:d7:79:35: 13:0b:2b:6f:1d:a1:6b:0b:25:ab:6b:c1:30:00:85: f8:bc:57:49:4d:85:4f:31:50:d7:3d:bc:73:2b:ce: 1d:fd:1a:82:cd:c1:43:a0:e3:47:54:ee:87:9d:cf: 60:df:11:b7:1e:55:d4:93:2d:51:3e:4a:a1:78:3d: be:88:1b:89:2d:3e:f3:fc:b2:a8:75:bf:42:55:92: 11:85:a7:ca:4e:b0:c3:1f:0f:ce:34:87:dd:92:b8: 19:7c:e1:ac:77:63:45:f9:70:d6:b6:1b:33:f2:ec: 83:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:96:13:DA:D3:B9:17:85:17:AB:A3:98:95:47:48:5B:76:02:FB:3C X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:47:b5:c9:4a:b5:d0:72:5f:cb:6f:cc:34:1d:46:93:ce:e9: 91:22:cc:f9:b1:f3:7a:d8:1e:6c:12:4b:8e:57:71:c8:72:f9: 65:d9:49:ee:6c:c0:7b:26:f8:ef:4f:cd:b9:da:6a:fa:4c:d5: a2:6e:b8:40:ef:05:e5:2e:22:44:e2:05:64:d8:32:29:3a:82: 54:94:2f:3b:43:0a:65:20:52:7b:c3:fc:ee:4d:62:6e:a4:54: 19:1e:08:2b:be:49:72:39:e7:5f:17:3d:99:de:3e:18:08:9f: 99:e3:f9:e7:0e:e4:c8:07:49:33:fa:25:20:71:65:c9:13:9a: 0e:5a:0b:6a:b3:ab:9b:63:b1:ff:58:61:29:49:35:4c:b7:f7: 34:c0:94:21:8d:88:00:1e:00:41:8f:bd:38:32:23:60:96:dc: 3b:fe:2f:8a:eb:90:4c:28:a5:45:01:a8:8d:82:c8:e3:e6:c3: 85:d2:89:6a:03:75:db:f2:b2:5b:a9:13:35:c0:38:ed:c5:82: 46:29:75:b0:69:7a:46:86:d0:7b:22:25:ac:d7:1e:35:ee:36: 72:a4:a0:38:64:22:73:d3:94:af:a4:cd:75:04:a4:c2:18:40: 1c:a0:6e:da:4b:51:38:4a:82:44:10:57:67:b7:7f:15:e2:54: 05:d8:78:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUwNDI1MDEyODE0WhcNMjUwNTAyMDEyODE0WjAYMRYwFAYD VQQDEw02ODBhZTUyZS1kOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32MSUucXreSeb/eWxHFnyISWNmry4oP8CheYwughyIOpRR2H5jmwcDRPPqdt LX1SemM7S93ZK0/xQTreRRyyPVJg8BQZHLJYWLR9rIl77NFTvZkjrY4ElFb2tW3n aNTZeFZrUYTjvXfi3iSi/Fbg6tzOm8huSMkFjxMgpvlGQh9R25bxX7a8d6ljvqzN E6j6K7LXeTUTCytvHaFrCyWra8EwAIX4vFdJTYVPMVDXPbxzK84d/RqCzcFDoONH VO6Hnc9g3xG3HlXUky1RPkqheD2+iBuJLT7z/LKodb9CVZIRhafKTrDDHw/ONIfd krgZfOGsd2NF+XDWthsz8uyDPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeWE9rT uReFF6ujmJVHSFt2Avs8MB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlR7XJSrXQcl/Lb8w0HUaTzumRIsz5sfN62B5sEkuOV3HIcvll2Unu bMB7JvjvT8252mr6TNWibrhA7wXlLiJE4gVk2DIpOoJUlC87QwplIFJ7w/zuTWJu pFQZHggrvklyOedfFz2Z3j4YCJ+Z4/nnDuTIB0kz+iUgcWXJE5oOWgtqs6ubY7H/ WGEpSTVMt/c0wJQhjYgAHgBBj704MiNgltw7/i+K65BMKKVFAaiNgsjj5sOF0olq A3Xb8rJbqRM1wDjtxYJGKXWwaXpGhtB7IiWs1x417jZypKA4ZCJz05SvpM11BKTC GEAcoG7aS1E4SoJEEFdnt38V4lQF2Hiy -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:15 2025 by rpki-client