$ rpki-client -vvf rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft File: dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft (raw, json) Hash identifier: vioviuP1yXoaDnMH4kexMbwuYY+N5eI9mInWn4YEQXQ= Subject key identifier: 18:1C:71:13:61:A2:67:35:79:8A:3C:4F:3E:5F:C0:F2:02:7F:DB:C5 Authority key identifier: 76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF Certificate issuer: /CN=A91828F3/serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft Manifest number: 019F Signing time: Fri 25 Apr 2025 02:29:08 +0000 Manifest this update: Fri 25 Apr 2025 02:29:08 +0000 Manifest next update: Fri 02 May 2025 02:29:08 +0000 Files and hashes: 1: dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl (hash: j2+Wwe6Bn01lj+qNs+ktSaTYKzQCTJkTafy+QFTjP5U=) 2: 05E078B2A5D211EDBC42DA12C4F9AE02.roa (hash: 949cDrd9O3ejSTUuoxYP0yKZgFwRWnkdff/N9Ay5rNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91828F3, serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Validity Not Before: Apr 25 02:29:08 2025 GMT Not After : May 2 02:29:08 2025 GMT Subject: CN=680af374-7e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:6b:c0:65:47:33:8e:34:5c:47:39:80:0c: 6f:21:eb:84:7a:67:b3:03:24:20:38:a5:1d:b6:45: c6:f7:a7:0c:4d:2e:82:3e:61:c7:07:32:ce:79:7b: 5b:f7:f7:c1:60:6f:da:74:ea:f1:65:02:c4:13:0d: 0d:7b:7c:71:31:f3:88:5b:99:40:c7:2b:14:0e:3d: d1:9b:e1:4a:51:f7:57:39:7a:8f:0c:07:f5:6a:1a: 9c:50:22:30:e8:0e:1f:bd:70:12:f8:6a:25:b2:b3: e9:68:0b:29:eb:7b:86:79:66:3e:c9:14:73:4d:b2: f3:cc:b5:fb:a0:bf:70:f2:dd:85:60:dc:1e:91:cb: ca:53:8d:81:1e:7e:23:10:bd:d4:5f:26:a3:22:f5: 97:b6:5e:9b:2a:1a:d1:61:87:0b:4e:bd:49:aa:9d: 39:d3:06:0c:7b:fd:6c:7a:00:be:70:49:d3:ab:eb: 81:3c:0e:17:71:64:c6:71:ce:a6:79:5e:e2:ab:b5: 25:91:4b:92:f6:85:23:df:4e:11:20:6f:4b:6e:4b: ce:a0:d6:e0:d0:7e:4a:df:79:90:0b:82:15:7b:f0: cb:04:a5:33:0f:9a:55:ab:ea:fc:af:8a:d0:2d:e7: 2d:d8:69:61:e1:c2:bb:b7:53:d2:c6:01:ad:44:51: f2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:1C:71:13:61:A2:67:35:79:8A:3C:4F:3E:5F:C0:F2:02:7F:DB:C5 X509v3 Authority Key Identifier: keyid:76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:58:2a:9a:66:34:80:a3:cd:34:f9:a0:9f:6b:b1:a3:30:46: a1:fe:41:c8:71:7f:cb:72:52:a7:96:a2:a3:b1:4a:f7:6d:5d: fe:85:ed:cf:ba:55:ef:97:cf:35:84:ca:8e:a1:fc:5b:65:3f: ba:5e:a8:0f:f2:4c:0e:e4:29:67:5d:2e:ed:aa:ba:43:89:4d: 99:c4:4f:ee:4d:2e:59:73:89:16:ea:04:3e:38:e6:99:08:b8: ab:7f:8e:5a:99:14:4b:bf:99:d3:81:14:f8:66:7e:bd:8b:33: 22:41:e4:3f:ed:7b:37:32:db:55:3d:98:3e:ee:4f:ea:59:eb: 06:5e:85:93:dc:5d:8b:41:14:ab:43:76:7f:c7:4f:07:16:0e: 4e:b0:9f:af:df:64:d4:76:42:39:8e:14:45:95:b8:f5:5f:f4: ef:40:43:3d:c7:cd:53:dd:17:05:fd:5a:75:5f:60:41:4d:9a: 5c:a0:8c:03:82:88:ee:86:8f:5d:59:70:aa:b0:01:7b:91:8e: 1b:ae:08:a2:cf:52:1d:be:9b:83:48:41:6c:9a:32:6a:55:4b: 82:f5:a2:53:91:3d:c8:4e:99:37:95:e5:1d:86:87:80:2a:af: 72:fb:1d:30:80:5d:74:d2:4d:1c:13:85:52:60:e1:1b:b1:d8: 09:b6:1b:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI4RjMxMTAvBgNVBAUTKDc2NjYxMDA4REFDODkyODRDNTM3RjJEQ0UwQTkyMEJB OTRFMDc4Q0YwHhcNMjUwNDI1MDIyOTA4WhcNMjUwNTAyMDIyOTA4WjAYMRYwFAYD VQQDEw02ODBhZjM3NC03ZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pBrwGVHM440XEc5gAxvIeuEemezAyQgOKUdtkXG96cMTS6CPmHHBzLOeXtb 9/fBYG/adOrxZQLEEw0Ne3xxMfOIW5lAxysUDj3Rm+FKUfdXOXqPDAf1ahqcUCIw 6A4fvXAS+GolsrPpaAsp63uGeWY+yRRzTbLzzLX7oL9w8t2FYNwekcvKU42BHn4j EL3UXyajIvWXtl6bKhrRYYcLTr1Jqp050wYMe/1segC+cEnTq+uBPA4XcWTGcc6m eV7iq7UlkUuS9oUj304RIG9LbkvOoNbg0H5K33mQC4IVe/DLBKUzD5pVq+r8r4rQ Lect2Glh4cK7t1PSxgGtRFHyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgccRNh omc1eYo8Tz5fwPICf9vFMB8GA1UdIwQYMBaAFHZmEAjayJKExTfy3OCpILqU4HjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjhGMy9DMjc5NThCOEE1 Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtvVEZOX0xjNEtrZ3VwVGdl TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtWVFDTnJJa29URk5fTGM0S2tndXBUZ2VNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjhGMy9DMjc5NThCOEE1Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtv VEZOX0xjNEtrZ3VwVGdlTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTWCqaZjSAo800+aCfa7GjMEah/kHIcX/LclKnlqKjsUr3bV3+he3P ulXvl881hMqOofxbZT+6XqgP8kwO5ClnXS7tqrpDiU2ZxE/uTS5Zc4kW6gQ+OOaZ CLirf45amRRLv5nTgRT4Zn69izMiQeQ/7Xs3MttVPZg+7k/qWesGXoWT3F2LQRSr Q3Z/x08HFg5OsJ+v32TUdkI5jhRFlbj1X/TvQEM9x81T3RcF/Vp1X2BBTZpcoIwD gojuho9dWXCqsAF7kY4brgiiz1IdvpuDSEFsmjJqVUuC9aJTkT3ITpk3leUdhoeA Kq9y+x0wgF100k0cE4VSYOEbsdgJthtz -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:04 2025 by rpki-client