$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: IveAye9jm76zSqpZk712VxURa8W+ehph8P/ZSJIWE1Y= Subject key identifier: F4:21:A1:7B:AD:B0:0D:39:F7:60:1E:CE:67:0A:E6:D0:14:04:8B:4B Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0B9E Signing time: Thu 24 Apr 2025 18:54:18 +0000 Manifest this update: Thu 24 Apr 2025 18:54:18 +0000 Manifest next update: Thu 01 May 2025 18:54:18 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: Vek477V5BhI8ChQe7sAgy3sd8QPgqhjmFSKMBtku6WA=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Apr 24 18:54:18 2025 GMT Not After : May 1 18:54:18 2025 GMT Subject: CN=680a88da-9aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ee:8b:65:19:12:30:73:b4:39:6f:fb:46:4f: 14:72:41:9d:af:f4:d3:b3:96:96:af:2f:25:6f:2a: df:87:0d:5d:c6:0c:e1:4b:80:44:a4:de:31:c4:c9: ea:0c:b3:3c:d7:cb:86:f6:ff:e6:23:96:41:27:2f: d1:d3:2d:11:54:ab:9d:d9:2d:a4:ed:06:2a:17:76: e5:2a:24:6c:1b:07:9a:00:15:ff:c3:55:3f:3d:92: 7d:6c:4c:b8:91:ae:43:1b:38:64:e2:dc:b9:d2:11: fa:a4:4d:3d:94:45:0d:95:0a:9d:54:f3:d3:c8:63: 34:74:2e:4e:55:f1:5d:a0:21:82:9f:28:33:90:be: 6c:62:64:68:50:c9:aa:ad:65:93:e2:72:c2:47:86: 8f:7d:49:56:72:a9:db:bf:a3:ea:21:54:ac:49:c9: 94:cd:e8:9e:c8:08:15:55:7f:d1:4f:8d:f9:f0:7a: c9:f7:86:17:81:35:3f:3f:32:4e:88:7f:77:f3:eb: 4d:1c:c3:34:6f:b0:f2:e6:c5:c9:24:4c:a7:1a:67: bf:4b:7e:2f:ea:1a:d4:cc:03:1e:1a:fe:f4:db:9c: e0:85:4d:c7:94:41:9b:08:07:7e:ae:19:e7:1b:42: d5:fc:e5:66:65:3a:27:c0:b3:e1:8c:2b:72:73:c9: 8f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:21:A1:7B:AD:B0:0D:39:F7:60:1E:CE:67:0A:E6:D0:14:04:8B:4B X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:34:06:31:9a:cb:6b:1a:6f:a8:f7:f4:20:d3:70:c3:2e:74: 98:b7:bd:52:ff:ff:7b:b2:c9:8d:46:7a:27:75:17:9c:34:b5: 35:8b:0a:be:d0:f6:0d:1c:68:de:07:ce:2d:ed:4c:48:8c:29: a2:0a:de:e8:40:c0:03:60:27:69:11:0f:7f:53:40:06:fb:3e: 85:9f:b5:56:17:a6:4a:4d:9f:98:0e:84:79:86:19:cb:cd:40: 30:8f:fd:9c:16:bd:66:4d:62:ff:e3:5b:04:7e:5d:83:89:9a: 74:d0:89:d5:e6:81:15:29:07:df:b6:c0:48:5a:e6:a2:cb:e6: 50:35:be:69:b9:3c:cc:ee:59:88:27:8b:10:6a:35:9d:e4:18: ba:39:d3:e5:07:d1:e2:71:50:33:22:10:b7:27:27:b9:5b:08: f8:6d:41:b9:f9:ca:2d:f7:ba:a7:86:3a:cc:5f:78:1d:97:f2: 35:d3:3b:f6:0b:5a:80:fb:e1:fb:e9:a4:d3:9e:b7:b3:63:f0: 7d:ee:fd:3f:cf:8a:9f:da:ab:77:ff:0e:84:18:b1:6c:eb:ea: 58:a1:1b:21:b7:00:b5:28:db:98:e4:be:8f:6d:cd:f4:19:6d: 3d:02:22:3f:90:07:a7:19:f2:c9:62:66:62:b5:9f:50:f3:d1: 00:07:88:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUwNDI0MTg1NDE4WhcNMjUwNTAxMTg1NDE4WjAYMRYwFAYD VQQDEw02ODBhODhkYS05YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe6LZRkSMHO0OW/7Rk8UckGdr/TTs5aWry8lbyrfhw1dxgzhS4BEpN4xxMnq DLM818uG9v/mI5ZBJy/R0y0RVKud2S2k7QYqF3blKiRsGweaABX/w1U/PZJ9bEy4 ka5DGzhk4ty50hH6pE09lEUNlQqdVPPTyGM0dC5OVfFdoCGCnygzkL5sYmRoUMmq rWWT4nLCR4aPfUlWcqnbv6PqIVSsScmUzeieyAgVVX/RT4358HrJ94YXgTU/PzJO iH938+tNHMM0b7Dy5sXJJEynGme/S34v6hrUzAMeGv7025zghU3HlEGbCAd+rhnn G0LV/OVmZTonwLPhjCtyc8mPsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQhoXut sA0592AezmcK5tAUBItLMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMNAYxmstrGm+o9/Qg03DDLnSYt71S//97ssmNRnondRecNLU1iwq+ 0PYNHGjeB84t7UxIjCmiCt7oQMADYCdpEQ9/U0AG+z6Fn7VWF6ZKTZ+YDoR5hhnL zUAwj/2cFr1mTWL/41sEfl2DiZp00InV5oEVKQfftsBIWuaiy+ZQNb5puTzM7lmI J4sQajWd5Bi6OdPlB9HicVAzIhC3Jye5Wwj4bUG5+cot97qnhjrMX3gdl/I10zv2 C1qA++H76aTTnrezY/B97v0/z4qf2qt3/w6EGLFs6+pYoRshtwC1KNuY5L6Pbc30 GW09AiI/kAenGfLJYmZitZ9Q89EAB4iM -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:48 2025 by rpki-client