$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: CdBWiCNNt3DzK0WKiSN/5UwZ1E9A8f618S2OkCG1re0= Subject key identifier: 14:22:7E:77:87:08:82:90:36:80:A7:E1:50:B8:4F:F7:A3:E6:3F:54 Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0C38 Signing time: Thu 24 Apr 2025 18:22:18 +0000 Manifest this update: Thu 24 Apr 2025 18:22:17 +0000 Manifest next update: Thu 01 May 2025 18:22:17 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: dbFl/cC/QaQj2y5ZsgyDfkmKmsy9JYPidwQ9K371Qao=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: 2GXsJ3lmpDTCyJ0+6RHbUPHuhr06/ng834HAohqlZ5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Apr 24 18:22:17 2025 GMT Not After : May 1 18:22:17 2025 GMT Subject: CN=680a815a-78b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:50:18:a9:d0:a2:5b:4e:07:3c:e4:94:bf: 4a:2f:12:2e:d3:62:31:bb:1d:b5:75:50:2a:6c:d6: de:71:61:d4:43:df:55:c0:06:59:72:57:66:d5:72: 47:e0:1c:68:44:14:7d:e8:83:1a:17:1d:02:f7:28: db:32:a0:d6:06:b3:2b:87:00:5b:fc:7e:bd:bf:3e: ab:22:e7:8c:81:b2:e4:b4:10:51:3a:f7:b5:1d:0e: 93:33:64:be:a5:34:a8:6d:e2:33:c6:18:56:18:5d: 86:ac:4e:5e:b0:84:c5:c8:d8:58:92:bc:42:5f:49: c6:c0:0b:bb:96:b8:40:7e:8a:df:f5:fd:bb:ba:f9: 67:d0:bf:14:21:9a:c7:ab:cd:7e:dc:65:17:b1:b3: 99:e1:80:ba:66:93:9f:4b:8f:b8:07:76:5d:c0:92: ba:0c:ab:0c:f2:2e:cc:9b:b2:41:e4:b1:46:7a:b6: 80:73:45:ad:da:db:cb:57:bd:c3:bc:6e:5a:ca:5c: ee:51:22:a3:35:dd:09:92:64:79:28:6a:d4:a1:92: f2:6a:5b:e4:f0:73:a6:e6:0a:b2:0e:45:e0:86:ac: f8:74:ac:95:c5:81:b8:07:5d:bf:3e:59:42:67:33: 56:09:fe:f5:9a:4e:e7:2e:5a:ab:96:ec:c0:c5:6a: f8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:22:7E:77:87:08:82:90:36:80:A7:E1:50:B8:4F:F7:A3:E6:3F:54 X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:2c:cc:99:0f:8d:c6:17:b0:30:7c:e3:03:2d:1d:7f:bc:d1: 45:5f:9b:4a:4c:c5:ac:4a:f4:f2:c9:c0:a9:db:db:1f:c0:9a: d4:a2:1f:e0:17:e5:f6:f7:c5:5e:0f:8e:5d:b7:1a:fe:f7:ef: 30:f1:d0:2e:2d:13:99:c1:30:88:84:ea:cf:66:d0:30:11:e5: 4c:f2:62:2b:e4:63:98:d8:1e:3d:66:e5:11:54:dd:de:d1:ee: 47:ba:af:3c:2e:7d:ad:7e:bf:28:5a:35:9a:ca:de:78:d0:83: 58:48:b1:83:a1:73:a6:a1:5e:46:21:aa:11:e4:66:e8:5c:7f: 59:4b:21:80:27:39:41:d2:0c:1e:13:dd:ff:f6:11:d8:9f:d6: 17:40:d1:7b:f6:15:08:7d:6b:e2:63:69:bb:30:98:ac:0f:1c: f2:dc:f3:14:d7:67:00:64:8d:67:9e:2d:76:06:ca:64:99:3b: 99:bc:cc:4b:7f:30:99:fa:2a:8a:83:a7:60:0c:c0:c8:85:84: f0:a4:28:11:e0:c1:07:6a:96:95:95:1e:f1:ee:ba:42:a6:43: 90:8d:78:17:b8:dd:fd:ff:9f:10:aa:4b:2b:28:b7:68:de:28: 95:e4:f7:1f:36:0b:9b:d2:d9:f6:e7:e8:8a:4b:23:f2:31:5b: b4:87:41:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUwNDI0MTgyMjE3WhcNMjUwNTAxMTgyMjE3WjAYMRYwFAYD VQQDEw02ODBhODE1YS03OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArE1QGKnQoltOBzzklL9KLxIu02Ixux21dVAqbNbecWHUQ99VwAZZcldm1XJH 4BxoRBR96IMaFx0C9yjbMqDWBrMrhwBb/H69vz6rIueMgbLktBBROve1HQ6TM2S+ pTSobeIzxhhWGF2GrE5esITFyNhYkrxCX0nGwAu7lrhAforf9f27uvln0L8UIZrH q81+3GUXsbOZ4YC6ZpOfS4+4B3ZdwJK6DKsM8i7Mm7JB5LFGeraAc0Wt2tvLV73D vG5aylzuUSKjNd0JkmR5KGrUoZLyalvk8HOm5gqyDkXghqz4dKyVxYG4B12/PllC ZzNWCf71mk7nLlqrluzAxWr4nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQifneH CIKQNoCn4VC4T/ej5j9UMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdLMyZD43GF7AwfOMDLR1/vNFFX5tKTMWsSvTyycCp29sfwJrUoh/g F+X298VeD45dtxr+9+8w8dAuLROZwTCIhOrPZtAwEeVM8mIr5GOY2B49ZuURVN3e 0e5Huq88Ln2tfr8oWjWayt540INYSLGDoXOmoV5GIaoR5GboXH9ZSyGAJzlB0gwe E93/9hHYn9YXQNF79hUIfWviY2m7MJisDxzy3PMU12cAZI1nni12BspkmTuZvMxL fzCZ+iqKg6dgDMDIhYTwpCgR4MEHapaVlR7x7rpCpkOQjXgXuN39/58QqksrKLdo 3iiV5PcfNgub0tn25+iKSyPyMVu0h0Hw -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:35 2025 by rpki-client