$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: 8+V4uuiucvIO8DTc63gzW6E14rI7QTgT74OZUC0zb7U= Subject key identifier: 7E:B6:AB:97:D5:E1:AB:42:8A:E8:19:D9:FA:F7:86:8C:64:A4:DE:30 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 0190 Signing time: Fri 25 Apr 2025 02:40:57 +0000 Manifest this update: Fri 25 Apr 2025 02:40:57 +0000 Manifest next update: Fri 02 May 2025 02:40:57 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: HrKWrG2MXkQf5ivibHOB/ZaAkbIVAThzvozDk4adUB8=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Apr 25 02:40:57 2025 GMT Not After : May 2 02:40:57 2025 GMT Subject: CN=680af639-6306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4e:34:bd:d3:bd:69:ec:70:e3:65:82:fe:80: f8:78:b7:f9:2f:71:a0:e9:8a:d9:95:61:10:3b:fb: 80:e7:62:57:6b:87:69:ce:8f:a4:df:1b:7a:63:fb: 16:ea:85:d3:95:9b:b6:1c:7f:83:d3:fe:47:21:ca: 3d:3b:6e:97:e9:c3:2e:ef:b0:76:fe:9e:ab:07:52: 01:9a:44:1f:ec:99:33:e4:74:e7:da:7e:01:ee:65: a6:f8:79:41:19:f1:13:45:1a:2c:1f:fb:72:c7:cd: dd:37:12:a5:b2:8b:64:69:40:19:59:65:df:62:ee: 91:4d:42:ae:35:7f:6f:64:6b:66:70:9b:94:03:d3: cb:b6:81:ca:49:22:65:3d:b9:38:90:96:9c:4b:fb: 75:a5:3d:bb:7c:06:b9:4f:92:84:05:22:59:6b:44: da:a9:dd:c9:78:5d:fa:49:a6:73:ad:ae:e7:9c:40: cc:3a:52:59:55:fa:72:4f:01:14:87:29:2d:f0:4c: cf:28:8a:d4:8b:43:ff:0b:2c:53:54:92:c4:5c:c5: 3f:02:5a:a1:a9:d9:2f:fc:68:3e:07:f6:9f:09:7d: ca:c1:8c:a2:1a:fd:41:7c:f3:0d:9d:fc:69:92:4e: b4:49:6a:02:e7:21:f1:24:68:a5:2d:b0:5e:49:5f: a3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B6:AB:97:D5:E1:AB:42:8A:E8:19:D9:FA:F7:86:8C:64:A4:DE:30 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:37:9b:8b:05:62:62:31:12:75:6e:e0:99:76:2b:03:44:bb: a1:eb:f5:4f:e8:b3:5c:10:bf:0e:85:00:da:1a:4c:b4:ec:a0: bc:8c:72:af:7a:44:78:2f:f5:35:69:09:b8:9d:6f:69:b2:ea: bf:6d:83:b2:ed:fc:b0:8b:ec:2a:e2:21:9f:31:cc:37:47:b2: 17:eb:46:a3:62:02:ee:81:19:42:e7:fe:f0:e2:5c:a9:02:a5: 81:e8:17:b2:3a:82:05:7a:a9:7b:4a:fd:93:ce:3b:1e:b6:84: 38:5b:32:f0:a5:3b:88:e8:95:cf:59:bb:85:41:f4:6b:91:5b: 73:0d:d5:59:d7:1e:6c:06:de:6a:82:47:91:c3:00:f6:5a:08: 7d:a7:74:6f:6d:9f:a6:94:ba:91:92:e3:ed:2a:55:85:b7:dc: 2e:ca:26:06:17:24:c5:86:1c:83:d5:62:39:d9:bf:2b:2f:10: ef:ad:36:b2:ec:b8:8f:e8:c9:74:20:e5:01:b4:9b:8f:62:51: f9:04:1f:83:8b:07:a7:85:8a:12:2e:45:42:d2:4b:97:d8:4f: 93:8e:30:c5:8f:c9:3a:48:81:b5:3a:64:70:02:fc:8d:6e:58: 64:84:75:a2:dc:8d:09:02:d2:05:21:71:35:0e:de:87:9b:1b: dd:94:c2:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwNDI1MDI0MDU3WhcNMjUwNTAyMDI0MDU3WjAYMRYwFAYD VQQDEw02ODBhZjYzOS02MzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk40vdO9aexw42WC/oD4eLf5L3Gg6YrZlWEQO/uA52JXa4dpzo+k3xt6Y/sW 6oXTlZu2HH+D0/5HIco9O26X6cMu77B2/p6rB1IBmkQf7Jkz5HTn2n4B7mWm+HlB GfETRRosH/tyx83dNxKlsotkaUAZWWXfYu6RTUKuNX9vZGtmcJuUA9PLtoHKSSJl Pbk4kJacS/t1pT27fAa5T5KEBSJZa0Taqd3JeF36SaZzra7nnEDMOlJZVfpyTwEU hykt8EzPKIrUi0P/CyxTVJLEXMU/Alqhqdkv/Gg+B/afCX3KwYyiGv1BfPMNnfxp kk60SWoC5yHxJGilLbBeSV+jlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH62q5fV 4atCiugZ2fr3hoxkpN4wMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADN5uLBWJiMRJ1buCZdisDRLuh6/VP6LNcEL8OhQDaGky07KC8jHKv ekR4L/U1aQm4nW9psuq/bYOy7fywi+wq4iGfMcw3R7IX60ajYgLugRlC5/7w4lyp AqWB6BeyOoIFeql7Sv2TzjsetoQ4WzLwpTuI6JXPWbuFQfRrkVtzDdVZ1x5sBt5q gkeRwwD2Wgh9p3RvbZ+mlLqRkuPtKlWFt9wuyiYGFyTFhhyD1WI52b8rLxDvrTay 7LiP6Ml0IOUBtJuPYlH5BB+DiwenhYoSLkVC0kuX2E+TjjDFj8k6SIG1OmRwAvyN blhkhHWi3I0JAtIFIXE1Dt6HmxvdlMIZ -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:31 2025 by rpki-client