$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: NQHsQctYvi1wdIT6V2kjG/1M/15Kg+HqiBHKijh2ZxQ= Subject key identifier: 54:D5:DC:27:00:3A:61:D4:39:70:EA:41:EE:ED:71:AF:5D:44:56:B1 Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 55 Signing time: Fri 25 Apr 2025 06:12:06 +0000 Manifest this update: Fri 25 Apr 2025 06:12:06 +0000 Manifest next update: Fri 02 May 2025 06:12:06 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: casl6HrWgI6vo1GRK+Dlk4wkoa4BAPGLKHwURxP4Xo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Apr 25 06:12:06 2025 GMT Not After : May 2 06:12:06 2025 GMT Subject: CN=680b27b6-2310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:05:a3:1b:e3:ba:b4:3c:95:17:96:46:26: 2d:e9:12:73:bd:9c:d3:c1:c3:94:e1:4f:82:87:60: 07:48:dc:bd:dd:64:02:94:2a:1b:7a:9c:64:65:f1: 3e:b9:0e:12:af:b2:a8:fc:4c:9f:2b:23:81:62:1e: 18:22:90:63:09:28:5a:7b:8d:46:41:7e:b6:d9:ee: 47:75:de:e5:88:34:e4:7b:51:23:c4:1e:8b:8f:76: 9a:0c:c7:3d:7c:88:76:7d:85:58:d3:bd:d1:4c:93: 03:99:57:36:56:c9:4a:c2:e8:8f:86:99:a7:6c:9a: e2:45:34:e6:0b:fa:c0:bd:c1:8f:ec:23:75:bc:19: 68:d0:95:08:aa:59:47:23:76:2c:03:4e:78:4a:9d: cf:a7:08:a3:46:30:1c:02:fc:ef:00:0c:8f:d4:8e: 0a:f8:15:6c:79:84:18:5c:40:40:01:07:5b:b9:a9: cc:d0:83:b6:6a:9d:f5:af:fb:6c:db:e8:35:9b:7e: d3:03:8e:88:35:25:ec:7b:e7:c2:e0:6d:4d:26:e2: f5:c5:fc:78:eb:c2:df:0c:02:11:ee:bf:96:09:85: 8c:a0:7b:7b:b4:ba:2f:9c:4d:69:56:37:ef:ac:ce: 6f:15:53:fd:2a:0a:e0:43:25:84:3d:dc:7b:f8:52: d4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D5:DC:27:00:3A:61:D4:39:70:EA:41:EE:ED:71:AF:5D:44:56:B1 X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:d3:67:0b:9a:3b:1c:3e:fc:38:6e:bd:f8:31:1c:b8:5e:20: b5:d5:0f:a0:e7:e8:ea:42:09:bb:51:1d:5a:7c:75:9c:93:a6: 66:ba:b1:0b:c5:50:fd:41:8b:d2:c6:55:78:83:a8:ef:dc:40: 3e:4d:15:52:e1:7b:bc:bd:e2:27:8c:0d:b2:1c:b6:ad:ca:78: 80:da:ec:70:30:7d:a0:f5:56:63:70:5b:77:59:ad:a1:73:57: 0c:d8:d1:ff:43:72:af:65:62:3a:2f:e8:0c:7d:c8:ae:e6:20: 48:ca:fc:73:67:3d:d9:fd:bd:2a:62:0a:78:18:40:31:6a:c3: 5f:7c:89:8f:ef:d3:40:2a:06:ee:d0:a8:33:e4:dd:02:d5:f6: 5e:e1:9b:65:66:fb:8c:a8:2f:f9:d6:88:56:85:9a:5a:29:55: 18:7e:c6:37:c0:15:97:c0:0a:0b:c6:aa:3c:c5:c5:1a:37:53: 54:31:03:13:57:e9:e0:8f:0d:6a:4b:79:9a:71:c5:6c:44:e0: 25:8a:2e:ee:fd:a7:9d:96:a8:2d:3b:16:ad:35:49:b4:d7:23: 73:a5:f3:98:69:20:56:06:57:ad:99:b6:17:5d:20:0b:b6:b2: b0:0a:ea:43:2d:2f:ac:27:78:0d:ab:cb:68:6e:e8:04:13:ae: 7a:9a:d0:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoRDQ3RUY5MjgxRTMxNDMxREU1OEUzNDdDNjk3RTM5QkYy NzQyOTExOTAeFw0yNTA0MjUwNjEyMDZaFw0yNTA1MDIwNjEyMDZaMBgxFjAUBgNV BAMTDTY4MGIyN2I2LTIzMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+1QWjG+O6tDyVF5ZGJi3pEnO9nNPBw5ThT4KHYAdI3L3dZAKUKht6nGRl8T65 DhKvsqj8TJ8rI4FiHhgikGMJKFp7jUZBfrbZ7kd13uWINOR7USPEHouPdpoMxz18 iHZ9hVjTvdFMkwOZVzZWyUrC6I+GmadsmuJFNOYL+sC9wY/sI3W8GWjQlQiqWUcj diwDTnhKnc+nCKNGMBwC/O8ADI/Ujgr4FWx5hBhcQEABB1u5qczQg7ZqnfWv+2zb 6DWbftMDjog1Jex758LgbU0m4vXF/Hjrwt8MAhHuv5YJhYyge3u0ui+cTWlWN++s zm8VU/0qCuBDJYQ93Hv4UtRpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVNXcJwA6 YdQ5cOpB7u1xr11EVrEwHwYDVR0jBBgwFoAU1H75KB4xQx3ljjR8aX45vydCkRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQ5MUQ2OTRDQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUg3NUtCNHhReDNsampSOGFYNDV2eWRDa1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx MkZFLzQ5MUQ2OTRDQTI1NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgz bGpqUjhhWDQ1dnlkQ2tSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABPTZwuaOxw+/DhuvfgxHLheILXVD6Dn6OpCCbtRHVp8dZyTpma6sQvF UP1Bi9LGVXiDqO/cQD5NFVLhe7y94ieMDbIctq3KeIDa7HAwfaD1VmNwW3dZraFz VwzY0f9Dcq9lYjov6Ax9yK7mIEjK/HNnPdn9vSpiCngYQDFqw198iY/v00AqBu7Q qDPk3QLV9l7hm2Vm+4yoL/nWiFaFmlopVRh+xjfAFZfACgvGqjzFxRo3U1QxAxNX 6eCPDWpLeZpxxWxE4CWKLu79p52WqC07Fq01SbTXI3Ol85hpIFYGV62ZthddIAu2 srAK6kMtL6wneA2ry2hu6AQTrnqa0FI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:23 2025 by rpki-client