$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: 3EmuR53jCDzIy1U0hCzbraebQl6d4374F68v1XawYIg= Subject key identifier: 4B:C9:6A:10:A2:3D:F1:FB:38:E0:0D:30:BD:99:4D:30:E5:98:41:D1 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1EE5 Signing time: Thu 24 Apr 2025 16:03:25 +0000 Manifest this update: Thu 24 Apr 2025 16:03:25 +0000 Manifest next update: Thu 01 May 2025 16:03:25 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: wd4bbeln1xaLuuz5mRyv4RFUiFKtitgTb5fhwOQOVwI=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: Uo0DI8uu4MaKQTtSGimWFCEZqnoAxk8F8R7u5G4FQ3c=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: 1vTwS6NmMwWfh2eOEtEYiCFnJVIHS5ywk/KgkT3QCd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7946 (0x1f0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Apr 24 16:03:25 2025 GMT Not After : May 1 16:03:25 2025 GMT Subject: CN=680a60cd-11c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fd:04:a8:cb:1e:dd:00:a6:03:08:9f:50:2a: d9:92:4a:4c:a0:77:10:d5:f5:4e:5a:60:36:a2:0e: 3b:6c:e7:58:d2:01:b6:64:31:12:60:67:f7:5f:70: c2:ec:aa:fe:43:5d:2b:b4:64:e8:c6:e4:d2:21:fb: 75:4d:26:32:93:6f:5e:31:62:74:8a:52:40:c1:e3: dc:5e:6f:6a:04:9e:f5:96:33:48:da:b8:5c:25:da: c2:0f:01:23:55:80:a4:ec:d8:c4:bc:9a:be:06:85: 32:4e:42:7a:37:a1:f7:75:ff:c3:c0:b0:09:28:a1: 27:87:72:9e:01:23:c9:dc:60:8f:d0:b4:50:3a:e1: 83:e4:eb:f7:26:e8:3d:46:a8:ec:e7:77:e0:ce:8e: 61:1a:13:c3:f8:6b:4b:36:e1:3e:2c:6c:c2:d9:5a: 6f:2e:98:46:95:b0:25:ba:81:74:b5:4e:e8:45:22: 16:a9:6c:1f:5d:d5:90:0b:46:9d:61:b5:02:63:6b: 2d:98:70:f2:f2:04:18:ff:8e:26:c9:52:49:2a:26: 4d:34:44:ad:ce:bf:06:ae:ce:f2:6c:01:08:74:12: 5a:47:da:96:e4:3c:a2:58:fc:bc:8c:ab:6a:3c:1c: 38:99:f3:1a:8b:b3:c3:f3:79:f8:8e:22:a1:22:63: 3d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C9:6A:10:A2:3D:F1:FB:38:E0:0D:30:BD:99:4D:30:E5:98:41:D1 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:cd:48:63:76:41:43:83:cf:c2:a3:8f:79:ec:bc:2b:1b:8e: a8:a0:db:d1:1a:25:10:93:d2:f0:0f:61:de:a0:0a:c4:a7:83: 9b:5e:5c:90:7f:60:46:25:53:98:ef:0f:94:5d:76:1f:ce:8b: 4e:b8:dc:d0:52:72:fb:97:bc:c7:96:9c:49:b2:12:b4:24:68: 22:7e:e9:4d:e3:b3:87:62:5f:8d:1c:38:c3:12:55:9e:74:85: 0a:fd:2d:73:09:1c:35:cf:6d:90:6c:3c:d4:ea:b5:36:f3:ed: 3d:6e:d3:ae:72:af:be:7d:ab:ff:d9:d7:e8:6f:bb:58:39:a2: e0:bb:bc:66:3a:0f:42:86:38:f1:b9:7f:ee:88:70:9e:49:5f: 84:f0:c1:45:38:a9:3b:11:46:26:ce:fc:9a:3a:29:53:65:b0: 24:1b:de:ec:56:0a:cb:d8:2d:de:c9:18:80:51:ae:89:01:89: dd:61:e0:52:df:b1:91:9b:8c:c5:1b:48:fe:71:27:71:fe:3d: 66:af:d0:28:1d:ec:0c:45:19:33:cf:6c:ff:53:11:eb:aa:16: 5b:de:e4:f3:d4:04:56:20:b0:ab:f2:06:55:8f:3b:48:a7:d9: cc:fc:36:dc:f6:5c:d0:03:ea:0b:75:87:e8:00:47:ea:77:14: da:23:40:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUwNDI0MTYwMzI1WhcNMjUwNTAxMTYwMzI1WjAYMRYwFAYD VQQDEw02ODBhNjBjZC0xMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/0EqMse3QCmAwifUCrZkkpMoHcQ1fVOWmA2og47bOdY0gG2ZDESYGf3X3DC 7Kr+Q10rtGToxuTSIft1TSYyk29eMWJ0ilJAwePcXm9qBJ71ljNI2rhcJdrCDwEj VYCk7NjEvJq+BoUyTkJ6N6H3df/DwLAJKKEnh3KeASPJ3GCP0LRQOuGD5Ov3Jug9 Rqjs53fgzo5hGhPD+GtLNuE+LGzC2VpvLphGlbAluoF0tU7oRSIWqWwfXdWQC0ad YbUCY2stmHDy8gQY/44myVJJKiZNNEStzr8Grs7ybAEIdBJaR9qW5DyiWPy8jKtq PBw4mfMai7PD83n4jiKhImM9+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvJahCi PfH7OOANML2ZTTDlmEHRMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIzUhjdkFDg8/Co4957LwrG46ooNvRGiUQk9LwD2HeoArEp4ObXlyQ f2BGJVOY7w+UXXYfzotOuNzQUnL7l7zHlpxJshK0JGgifulN47OHYl+NHDjDElWe dIUK/S1zCRw1z22QbDzU6rU28+09btOucq++fav/2dfob7tYOaLgu7xmOg9Chjjx uX/uiHCeSV+E8MFFOKk7EUYmzvyaOilTZbAkG97sVgrL2C3eyRiAUa6JAYndYeBS 37GRm4zFG0j+cSdx/j1mr9AoHewMRRkzz2z/UxHrqhZb3uTz1ARWILCr8gZVjztI p9nM/Dbc9lzQA+oLdYfoAEfqdxTaI0Db -----END CERTIFICATE-----Generated at Sat Apr 26 15:17:51 2025 by rpki-client