$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: gVb2LWQxgGavey5enoBS72MrpB8jrS4YUK5sEZsXq6c= Subject key identifier: 7B:54:8B:CF:2F:20:E9:5B:A3:F9:15:44:9C:83:52:01:A7:6D:20:4B Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 17FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 17EA Signing time: Thu 24 Apr 2025 16:34:50 +0000 Manifest this update: Thu 24 Apr 2025 16:34:49 +0000 Manifest next update: Thu 01 May 2025 16:34:49 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: RCSH/B6MS78arZyaL1PoJCQnoqcgvq2EbpSNJo08cfI=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: k9iCQXzhjwfzVaU7vow/nBOXFL+lk5IPY/l7RxNnfPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6138 (0x17fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF, serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: Apr 24 16:34:49 2025 GMT Not After : May 1 16:34:49 2025 GMT Subject: CN=680a6829-88c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1d:f9:53:a7:83:2f:4e:d9:65:28:3e:6e:52: 4e:09:32:6e:a2:ec:67:96:eb:d3:9c:a0:c8:81:c1: b5:9a:41:7a:09:ae:38:9f:11:2b:21:68:0c:aa:ce: 74:37:b2:de:a5:f6:d4:0b:69:ab:1c:2d:cc:e2:3c: f5:f1:29:de:c8:1f:3c:bf:b8:1a:20:1e:b1:20:76: 7a:dd:4b:70:a9:00:82:de:7c:f6:4a:00:77:fd:99: c4:36:92:79:69:4a:73:47:34:0d:4d:d7:31:a4:15: 7b:2a:81:02:5a:3e:b0:be:2d:c7:8a:9b:8e:6e:d9: 7a:6c:d8:48:a4:24:71:10:bd:c8:52:bd:cb:8b:f0: 35:3e:ac:57:b5:04:ad:85:9c:cf:cd:7c:d2:ae:cc: 8a:99:17:cb:b4:d6:7b:fc:f1:e3:16:62:0b:90:8d: b4:f6:75:3b:54:c5:0e:fe:63:14:ec:f0:5b:5b:ce: 4c:cc:b3:bd:73:63:f8:d6:73:c3:3a:ed:ff:3f:eb: 79:21:1d:a1:d3:12:59:1c:74:e5:c6:f7:d5:f6:2a: 07:89:ed:f9:13:d8:cb:c5:84:fb:4a:77:66:a5:8a: a8:ef:13:e1:7a:94:95:ec:2a:37:13:20:f7:8b:ae: 63:7b:a7:10:f1:34:a2:a6:bc:6f:3a:7a:e8:3c:09: da:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:54:8B:CF:2F:20:E9:5B:A3:F9:15:44:9C:83:52:01:A7:6D:20:4B X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:d8:10:fc:c9:77:78:da:5a:09:25:a4:9e:5b:9f:cc:22:5f: d4:fd:fa:a5:a6:6d:d4:ff:ea:89:e4:33:8a:cc:97:9c:e5:b4: 6a:07:78:a6:58:62:02:46:be:e7:11:9f:82:76:35:bd:ff:26: 5f:6f:c1:2e:2a:75:cf:43:0d:11:a2:b2:8f:90:4b:06:ba:d3: 37:6e:d2:e6:e6:5a:a0:60:9c:75:85:55:af:0d:9c:4e:f7:fa: 62:09:a3:39:c4:3a:3e:47:c9:1c:3a:ad:5f:e4:c9:30:c2:c9: 9c:7d:88:cd:8f:24:dc:5b:b3:26:8e:c3:78:27:d2:d1:9a:9b: a0:db:58:48:b0:07:03:67:68:50:fe:a4:20:00:61:b7:e1:73: 15:90:f6:fa:0b:d1:dc:88:b2:83:6d:bf:fc:54:d6:60:ce:4e: a0:f4:b3:9b:9f:30:64:c3:49:41:9c:c2:36:71:da:1a:e2:b0: d7:85:8a:c5:17:c4:6a:fa:16:55:db:3f:06:1b:e9:ff:62:bc: 14:28:a1:49:6a:c3:2a:2a:e8:23:3b:d6:b1:89:08:37:59:27: 70:4a:5f:0d:3c:04:9f:7a:6f:50:7e:6c:8f:c9:a6:98:1d:c9: 55:6e:24:ff:a4:2f:78:5c:55:6f:0d:f9:92:5f:5e:94:1f:43: b7:91:5f:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjUwNDI0MTYzNDQ5WhcNMjUwNTAxMTYzNDQ5WjAYMRYwFAYD VQQDEw02ODBhNjgyOS04OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyB35U6eDL07ZZSg+blJOCTJuouxnluvTnKDIgcG1mkF6Ca44nxErIWgMqs50 N7LepfbUC2mrHC3M4jz18SneyB88v7gaIB6xIHZ63UtwqQCC3nz2SgB3/ZnENpJ5 aUpzRzQNTdcxpBV7KoECWj6wvi3HipuObtl6bNhIpCRxEL3IUr3Li/A1PqxXtQSt hZzPzXzSrsyKmRfLtNZ7/PHjFmILkI209nU7VMUO/mMU7PBbW85MzLO9c2P41nPD Ou3/P+t5IR2h0xJZHHTlxvfV9ioHie35E9jLxYT7SndmpYqo7xPhepSV7Co3EyD3 i65je6cQ8TSiprxvOnroPAna0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtUi88v IOlbo/kVRJyDUgGnbSBLMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+2BD8yXd42loJJaSeW5/MIl/U/fqlpm3U/+qJ5DOKzJec5bRqB3im WGICRr7nEZ+CdjW9/yZfb8EuKnXPQw0RorKPkEsGutM3btLm5lqgYJx1hVWvDZxO 9/piCaM5xDo+R8kcOq1f5MkwwsmcfYjNjyTcW7MmjsN4J9LRmpug21hIsAcDZ2hQ /qQgAGG34XMVkPb6C9HciLKDbb/8VNZgzk6g9LObnzBkw0lBnMI2cdoa4rDXhYrF F8Rq+hZV2z8GG+n/YrwUKKFJasMqKugjO9axiQg3WSdwSl8NPASfem9QfmyPyaaY HclVbiT/pC94XFVvDfmSX16UH0O3kV8j -----END CERTIFICATE-----Generated at Sat Apr 26 14:49:22 2025 by rpki-client