$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft File: cpJvxg98GEph1zvQlKpqOGtjACo.mft (raw, json) Hash identifier: NlrsRg/MRJ9gnuJku/tbQeB6qNJz4MsXp8AQQxQM7W8= Subject key identifier: 63:F8:64:24:0C:A5:6D:EC:EA:01:67:6F:12:07:86:8E:D2:D4:A0:14 Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft Manifest number: FF Signing time: Fri 25 Apr 2025 04:17:42 +0000 Manifest this update: Fri 25 Apr 2025 04:17:42 +0000 Manifest next update: Fri 02 May 2025 04:17:42 +0000 Files and hashes: 1: cpJvxg98GEph1zvQlKpqOGtjACo.crl (hash: YBqdKZ3aj7C5dd7d2gy31+fA8ZVuYQsrAInAUXBmWxE=) 2: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (hash: eBM1U0C9BAgz3z+X5mRsroakC5anBwEWYdlHygNX0ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE, serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Apr 25 04:17:42 2025 GMT Not After : May 2 04:17:42 2025 GMT Subject: CN=680b0ce6-02f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:f4:77:57:c8:b2:a7:86:16:24:32:8b:73: 54:da:15:2a:ac:4a:c9:c9:a0:7a:f8:c0:e9:3f:42: ff:b6:52:90:07:b5:27:fd:c4:67:da:f7:55:1b:0f: 58:e9:d4:89:0d:85:72:61:37:50:eb:a1:6a:27:03: ea:80:37:f5:ff:1a:57:53:2f:b7:57:c8:73:3d:f4: 30:fd:9a:c9:9b:35:97:26:c7:98:53:e5:85:fd:f0: 70:51:5e:87:a7:60:e7:fa:c5:10:c8:11:11:3f:34: 6d:e2:76:d6:d5:f3:ce:a6:aa:53:f6:da:ca:c2:1b: 88:97:fa:a4:68:a1:6b:00:3a:1e:db:b7:84:0a:68: 34:5a:b1:ac:b2:6a:28:8c:7c:c0:8a:ba:1d:db:eb: ef:3a:68:97:67:35:3f:4a:65:97:d0:cc:53:53:8b: 01:0d:44:56:66:84:ff:07:7f:6c:b4:15:04:52:24: 98:38:00:81:31:a1:7c:7b:69:7b:71:32:5d:ca:ed: 61:79:20:5c:6d:47:c9:4c:f8:81:46:a8:5c:8a:46: 2f:74:31:fe:09:13:29:81:d7:17:18:bb:ef:73:3e: 9c:69:06:36:db:de:e2:72:fc:17:ca:b4:45:e5:ae: ed:ad:fb:43:12:6f:95:55:7e:4f:e5:4f:94:f8:67: 7e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F8:64:24:0C:A5:6D:EC:EA:01:67:6F:12:07:86:8E:D2:D4:A0:14 X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:69:e4:0e:62:68:6f:1c:87:5d:97:a7:1a:6a:5f:14:31:da: 58:64:6b:38:5c:63:8b:0f:ee:67:e3:56:3a:d6:c0:29:d9:c5: 79:2e:6e:59:63:f1:59:7b:c0:3a:f7:de:f8:c5:3c:ae:ee:a5: d2:1c:d1:f0:7c:a2:c2:c8:64:33:ae:10:7f:93:24:06:88:5f: 1a:02:00:9c:1e:1f:84:8f:b4:ff:91:e8:a7:cc:ac:a6:97:29: de:8d:3c:2c:f3:06:e0:23:a3:6e:cd:be:54:06:e0:6f:62:c2: 16:ba:37:48:4c:60:6d:ad:ba:db:06:21:a3:44:d0:59:32:f3: e1:ea:41:a1:8b:45:49:31:df:98:f4:27:16:ce:03:00:e0:07: b6:34:07:d7:44:07:06:3d:d7:c7:43:ea:1e:23:cc:96:01:f2: 90:c1:fa:4c:7b:4a:56:d1:b9:f4:47:c6:ff:5c:9f:fd:84:fd: 3a:d5:4c:a6:23:3d:b6:82:35:32:0c:3d:6c:44:93:2d:d3:94: 00:fb:9a:c9:99:e5:29:f6:ec:ff:9a:b9:4b:b7:99:00:6c:61: 3f:1d:68:fe:1c:3b:e2:b5:72:04:36:3a:6c:cd:1b:06:0a:3a: 08:bc:14:a6:13:e1:54:34:56:9a:f6:e4:28:d6:af:1a:57:4a: c1:fa:e2:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1Q0UxMTAvBgNVBAUTKDcyOTI2RkM2MEY3QzE4NEE2MUQ3M0JEMDk0QUE2QTM4 NkI2MzAwMkEwHhcNMjUwNDI1MDQxNzQyWhcNMjUwNTAyMDQxNzQyWjAYMRYwFAYD VQQDEw02ODBiMGNlNi0wMmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F70d1fIsqeGFiQyi3NU2hUqrErJyaB6+MDpP0L/tlKQB7Un/cRn2vdVGw9Y 6dSJDYVyYTdQ66FqJwPqgDf1/xpXUy+3V8hzPfQw/ZrJmzWXJseYU+WF/fBwUV6H p2Dn+sUQyBERPzRt4nbW1fPOpqpT9trKwhuIl/qkaKFrADoe27eECmg0WrGssmoo jHzAirod2+vvOmiXZzU/SmWX0MxTU4sBDURWZoT/B39stBUEUiSYOACBMaF8e2l7 cTJdyu1heSBcbUfJTPiBRqhcikYvdDH+CRMpgdcXGLvvcz6caQY2297icvwXyrRF 5a7trftDEm+VVX5P5U+U+Gd+IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGP4ZCQM pW3s6gFnbxIHho7S1KAUMB8GA1UdIwQYMBaAFHKSb8YPfBhKYdc70JSqajhrYwAq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVDRS8wRUIwOUQzNkFF NzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdFcGgxenZRbEtwcU9HdGpB Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVDRS8wRUIwOUQzNkFFNzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdF cGgxenZRbEtwcU9HdGpBQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgaeQOYmhvHIddl6caal8UMdpYZGs4XGOLD+5n41Y61sAp2cV5Lm5Z Y/FZe8A69974xTyu7qXSHNHwfKLCyGQzrhB/kyQGiF8aAgCcHh+Ej7T/keinzKym lynejTws8wbgI6Nuzb5UBuBvYsIWujdITGBtrbrbBiGjRNBZMvPh6kGhi0VJMd+Y 9CcWzgMA4Ae2NAfXRAcGPdfHQ+oeI8yWAfKQwfpMe0pW0bn0R8b/XJ/9hP061Uym Iz22gjUyDD1sRJMt05QA+5rJmeUp9uz/mrlLt5kAbGE/HWj+HDvitXIENjpszRsG CjoIvBSmE+FUNFaa9uQo1q8aV0rB+uK5 -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:38 2025 by rpki-client