$ rpki-client -vvf rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft File: bbZgfaaV3QngKYA6L_JiWtiDguM.mft (raw, json) Hash identifier: +SdWaFJ1082riNl0c5WEFnK0AG1yLwiIgAkIk6D/Ee8= Subject key identifier: DE:3E:5E:EF:F0:C4:E3:CC:89:69:A5:CE:5C:39:27:9F:23:AC:3E:94 Authority key identifier: 6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 Certificate issuer: /CN=A91643F8/serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft Manifest number: 70 Signing time: Fri 25 Apr 2025 05:52:15 +0000 Manifest this update: Fri 25 Apr 2025 05:52:15 +0000 Manifest next update: Fri 02 May 2025 05:52:15 +0000 Files and hashes: 1: bbZgfaaV3QngKYA6L_JiWtiDguM.crl (hash: kWZNVOOZK2FlqIEm1vmMThIbZemAjgBr/5epl9hU+qE=) 2: F2F0E3FE882E11EFB58CD069C4F9AE02.roa (hash: xhTjRYAmVfOwQQSsGsr7HfgpLZrnPmaYeWIc+EpYBdU=) 3: 50A6B6427C6B11EFAB9AB658C4F9AE02.roa (hash: xeZt84UMp+B7UEH+ve0Je8d8/kwmPLcBVN2BEDa+kr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91643F8, serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Validity Not Before: Apr 25 05:52:15 2025 GMT Not After : May 2 05:52:15 2025 GMT Subject: CN=680b230f-3a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0e:c5:82:4c:89:a5:5d:a4:05:60:d4:bf:ab: 7e:47:16:5b:34:c1:5f:84:d5:ad:cb:bd:fc:9b:4a: 30:3e:44:7c:70:d3:40:f4:86:df:d5:db:0a:cd:38: 76:e9:37:43:9a:65:fe:48:d3:2a:7e:54:71:82:cd: 55:9d:82:0f:01:09:88:75:61:04:ed:a5:c4:3f:93: 40:01:36:63:a9:ec:27:e1:9f:e9:ee:a1:db:2c:f5: cf:30:bb:a3:e4:6f:41:f7:87:c9:0a:c4:01:d0:e3: 20:bd:04:b4:8c:aa:a4:ec:48:d8:78:86:a7:6d:03: 0c:20:bc:83:c2:19:55:e6:ea:7a:ea:9f:08:61:4b: 44:71:63:d2:10:74:4d:9f:02:56:f6:6c:83:28:b9: 15:9d:db:82:f3:7b:08:61:92:2a:50:b4:ff:97:4b: 6d:25:9d:15:b1:09:9c:2e:73:bf:48:f0:5e:6d:8b: 50:70:bb:5d:a1:ce:a0:f2:8f:4b:1f:b7:a7:0e:40: 57:e8:a3:08:69:fe:c7:4d:52:b4:09:2e:3c:17:6b: 37:78:54:a1:2c:22:ee:68:eb:88:f4:3d:63:2c:0d: fd:98:26:48:e8:f7:62:3b:f5:a1:80:50:1b:c3:90: 96:b9:94:21:72:92:60:ca:c9:9b:ec:07:4a:b4:25: ef:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3E:5E:EF:F0:C4:E3:CC:89:69:A5:CE:5C:39:27:9F:23:AC:3E:94 X509v3 Authority Key Identifier: keyid:6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:dd:0e:c9:59:18:4c:9b:79:6b:13:54:ef:8c:d9:48:fd:57: 57:ee:23:21:f1:f7:34:27:bb:ff:51:6d:10:21:6f:e2:35:01: 53:a7:ea:44:c3:b9:5a:c5:fa:f9:fe:20:f3:79:42:37:39:58: ca:ea:50:ea:08:74:3d:1b:e4:bd:fb:59:40:3e:65:d5:69:e7: a3:93:30:1c:37:e7:69:4c:53:3b:44:70:00:1e:85:d3:4a:b9: f2:bc:2e:80:f7:23:18:61:d6:8a:1d:a6:79:48:78:a0:3d:21: 24:4a:30:63:be:45:c1:04:b6:a9:8f:da:f9:bc:d0:6e:f2:73: 34:52:3b:40:66:c2:d3:72:84:bf:4d:b9:dd:97:0b:12:f3:d6: 60:08:33:97:69:e3:10:f4:9c:8e:2b:6f:df:1d:97:d2:aa:7a: 00:c2:55:36:09:35:75:f5:69:00:37:b9:f7:d6:57:90:9f:8f: 22:2f:bd:a0:a6:bb:f2:45:d3:7d:d2:ac:cb:f0:41:ff:fa:54: 53:e7:c6:78:7e:53:87:56:b3:9b:c8:ab:0d:e5:4f:e9:40:30: 8f:7f:ec:b4:a1:51:2f:f5:e1:5c:66:72:cf:24:7c:0a:34:f8: 5e:64:5b:39:7f:4c:6d:c7:75:f2:90:4b:94:9d:07:99:f4:f9: e8:42:2a:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDNGODExMC8GA1UEBRMoNkRCNjYwN0RBNjk1REQwOUUwMjk4MDNBMkZGMjYyNUFE ODgzODJFMzAeFw0yNTA0MjUwNTUyMTVaFw0yNTA1MDIwNTUyMTVaMBgxFjAUBgNV BAMTDTY4MGIyMzBmLTNhNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYDsWCTImlXaQFYNS/q35HFls0wV+E1a3LvfybSjA+RHxw00D0ht/V2wrNOHbp N0OaZf5I0yp+VHGCzVWdgg8BCYh1YQTtpcQ/k0ABNmOp7Cfhn+nuodss9c8wu6Pk b0H3h8kKxAHQ4yC9BLSMqqTsSNh4hqdtAwwgvIPCGVXm6nrqnwhhS0RxY9IQdE2f Alb2bIMouRWd24LzewhhkipQtP+XS20lnRWxCZwuc79I8F5ti1Bwu12hzqDyj0sf t6cOQFfoowhp/sdNUrQJLjwXazd4VKEsIu5o64j0PWMsDf2YJkjo92I79aGAUBvD kJa5lCFykmDKyZvsB0q0Je8NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3j5e7/DE 48yJaaXOXDknnyOsPpQwHwYDVR0jBBgwFoAUbbZgfaaV3QngKYA6L/JiWtiDguMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0M0Y4L0Y3OTBDQzVBN0M2 QTExRUY5QTY4ODg1N0M0RjlBRTAyL2JiWmdmYWFWM1FuZ0tZQTZMX0ppV3RpRGd1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmJaZ2ZhYVYzUW5nS1lBNkxfSmlXdGlEZ3VNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0 M0Y4L0Y3OTBDQzVBN0M2QTExRUY5QTY4ODg1N0M0RjlBRTAyL2JiWmdmYWFWM1Fu Z0tZQTZMX0ppV3RpRGd1TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADPdDslZGEybeWsTVO+M2Uj9V1fuIyHx9zQnu/9RbRAhb+I1AVOn6kTD uVrF+vn+IPN5Qjc5WMrqUOoIdD0b5L37WUA+ZdVp56OTMBw352lMUztEcAAehdNK ufK8LoD3Ixhh1oodpnlIeKA9ISRKMGO+RcEEtqmP2vm80G7yczRSO0BmwtNyhL9N ud2XCxLz1mAIM5dp4xD0nI4rb98dl9KqegDCVTYJNXX1aQA3uffWV5CfjyIvvaCm u/JF033SrMvwQf/6VFPnxnh+U4dWs5vIqw3lT+lAMI9/7LShUS/14Vxmcs8kfAo0 +F5kWzl/TG3HdfKQS5SdB5n0+ehCKjQ= -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:34 2025 by rpki-client