$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: xyiaaAczHphY/PdXC1YIOwyO/NMoWphuq7Pt89G3L2E= Subject key identifier: 95:ED:FD:DD:D6:DB:37:77:2A:B7:DE:C5:2F:A8:ED:5A:77:A4:B7:B1 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 076F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 0769 Signing time: Thu 24 Apr 2025 21:20:07 +0000 Manifest this update: Thu 24 Apr 2025 21:20:07 +0000 Manifest next update: Thu 01 May 2025 21:20:06 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: mZQggdWVS3jSQEslV5IghV1/jYQ+GABh32YzB7oXE6U=) 2: B89D979A13F411EB8BF49553C4F9AE02.roa (hash: uA//4m9RZCjXQutR/xTMIccaTwt8NsdxBBjUfw2F3iI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1903 (0x76f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Apr 24 21:20:07 2025 GMT Not After : May 1 21:20:06 2025 GMT Subject: CN=680aab07-0377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a1:fa:97:8f:df:f3:49:f9:18:47:1b:34:a9: d9:66:a2:f4:52:28:b3:5b:4a:d1:fd:99:c1:bc:47: 5b:e3:bc:35:1f:7b:67:0a:bb:5e:04:24:58:7e:b4: 21:28:25:c3:60:da:1b:18:da:ba:10:5c:6f:c1:97: 98:00:de:27:22:b3:d6:47:48:3f:b6:af:ee:fc:ba: 2f:d0:22:53:a5:f1:01:19:90:d2:12:7a:4e:12:b6: 11:1f:36:62:ef:f7:36:56:ea:bc:ed:54:f8:bc:71: da:27:08:85:01:16:8d:63:f5:2d:0b:40:a6:70:fe: 0d:5b:ef:78:52:5f:86:03:07:b7:8d:2e:bb:ff:31: 13:18:03:37:cd:6c:10:4d:bd:e1:08:d1:12:93:10: cf:b8:50:11:7e:f3:cd:d3:a6:c3:9a:28:d4:28:e6: cd:b7:38:a5:e7:9b:b7:3e:2e:90:52:cf:10:ea:21: 00:d6:fc:52:86:a5:01:b5:80:86:e9:cd:77:18:ca: 6e:b0:15:34:3b:10:d7:8f:76:4f:fa:7b:07:56:33: ca:da:3a:86:67:f0:48:59:58:da:b9:b5:52:e5:47: 2d:31:a4:22:28:94:64:5a:50:20:b9:a2:93:5d:5f: 62:b9:be:e4:81:8c:1b:39:fd:ba:88:86:4c:b3:9b: c1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:ED:FD:DD:D6:DB:37:77:2A:B7:DE:C5:2F:A8:ED:5A:77:A4:B7:B1 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:db:6b:0d:f2:85:c6:24:33:c3:11:82:36:53:9b:11:59:e9: 69:8d:79:3e:20:99:4a:07:6e:76:e3:82:22:6e:c8:15:6d:d3: 2f:df:0f:a9:84:69:62:52:cc:da:39:61:ab:29:66:3f:39:cf: 3b:65:d5:5d:c9:b7:d3:d6:0c:c6:fb:38:df:2d:b1:a7:20:93: ce:ec:a3:fd:46:85:35:15:88:99:f0:51:1d:88:f9:77:6f:4f: 42:94:79:d8:4f:e7:bb:9e:8f:9c:2b:3b:3b:f6:a8:38:0b:ba: 9d:37:b9:8f:15:bc:3a:69:5d:0f:d3:6c:f3:af:b0:f3:c8:ff: 25:f2:5a:a9:3c:09:ef:24:4e:34:0f:f3:71:8e:c4:0c:bb:fd: 85:29:f7:6c:0d:b4:1f:89:d1:93:9e:cc:e8:8d:bc:d9:ac:88: d6:2d:16:1d:93:d2:c3:c1:f4:af:d8:b4:dd:6c:9d:29:b5:4d: 1b:6a:72:be:c7:ca:1b:a4:b5:38:de:31:a8:a4:4b:7f:95:79: 10:22:15:44:96:d7:39:07:87:ce:71:ff:75:aa:ea:c8:df:fe: 02:86:f3:2c:43:52:8e:ec:b1:cc:52:0b:69:1a:74:7f:f7:a8: c6:19:05:ab:09:fc:86:45:46:35:d2:35:94:fe:da:f9:1f:94: 05:93:6f:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUwNDI0MjEyMDA3WhcNMjUwNTAxMjEyMDA2WjAYMRYwFAYD VQQDEw02ODBhYWIwNy0wMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaH6l4/f80n5GEcbNKnZZqL0UiizW0rR/ZnBvEdb47w1H3tnCrteBCRYfrQh KCXDYNobGNq6EFxvwZeYAN4nIrPWR0g/tq/u/Lov0CJTpfEBGZDSEnpOErYRHzZi 7/c2Vuq87VT4vHHaJwiFARaNY/UtC0CmcP4NW+94Ul+GAwe3jS67/zETGAM3zWwQ Tb3hCNESkxDPuFARfvPN06bDmijUKObNtzil55u3Pi6QUs8Q6iEA1vxShqUBtYCG 6c13GMpusBU0OxDXj3ZP+nsHVjPK2jqGZ/BIWVjaubVS5UctMaQiKJRkWlAguaKT XV9iub7kgYwbOf26iIZMs5vB5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXt/d3W 2zd3KrfexS+o7Vp3pLexMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC122sN8oXGJDPDEYI2U5sRWelpjXk+IJlKB25244IibsgVbdMv3w+p hGliUszaOWGrKWY/Oc87ZdVdybfT1gzG+zjfLbGnIJPO7KP9RoU1FYiZ8FEdiPl3 b09ClHnYT+e7no+cKzs79qg4C7qdN7mPFbw6aV0P02zzr7DzyP8l8lqpPAnvJE40 D/NxjsQMu/2FKfdsDbQfidGTnszojbzZrIjWLRYdk9LDwfSv2LTdbJ0ptU0banK+ x8obpLU43jGopEt/lXkQIhVEltc5B4fOcf91qurI3/4ChvMsQ1KO7LHMUgtpGnR/ 96jGGQWrCfyGRUY10jWU/tr5H5QFk29z -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:17 2025 by rpki-client