$ rpki-client -vvf rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft File: Sn0mxMvxZwAkXWf79pULcSkYmTk.mft (raw, json) Hash identifier: nIGwPv2Kw8X2L3oh4Rc6pwlqpEg8imHSjJnSIs1te9Q= Subject key identifier: 43:D8:77:FE:E4:04:60:57:39:00:F8:D4:4C:32:D7:0F:50:29:1D:10 Authority key identifier: 4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 Certificate issuer: /CN=A91839CF/serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft Manifest number: 50 Signing time: Fri 25 Apr 2025 06:16:00 +0000 Manifest this update: Fri 25 Apr 2025 06:15:59 +0000 Manifest next update: Fri 02 May 2025 06:15:59 +0000 Files and hashes: 1: Sn0mxMvxZwAkXWf79pULcSkYmTk.crl (hash: NbiTFyv6VM1k8+WjVdCk9T5Ei1HJv6XgcgLb7aV1kjA=) 2: 305EB30EA98D11EF8C023466C4F9AE02.roa (hash: Buuzt0i/kKtBaGkDf9aAUjvIwcQJfDzcstPOVS8Jm/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91839CF, serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Validity Not Before: Apr 25 06:15:59 2025 GMT Not After : May 2 06:15:59 2025 GMT Subject: CN=680b289f-c470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c4:e6:31:4f:2c:95:de:17:c0:9c:1c:52:b5: c7:ad:5a:5e:37:d5:f4:6e:a1:25:cf:82:9a:90:0a: 67:5d:db:69:ec:e0:8b:11:58:d4:8e:f7:23:1a:54: 74:93:c6:a9:93:2b:2f:4e:cb:4a:23:93:7f:9a:e4: 17:20:03:f7:a3:b8:6f:e3:07:d8:b8:83:b1:1c:b5: 8e:56:94:a5:a7:f7:87:0c:92:5d:8d:b1:d3:a8:21: 3c:9d:8e:41:1f:b7:44:b6:97:08:8b:1d:57:41:11: 63:b9:0b:a7:dd:1a:2f:20:08:45:1c:59:de:a4:5d: 5c:da:d9:d3:a6:90:ca:9b:c0:8b:85:96:bb:26:b6: f4:0d:ca:fc:c8:70:25:47:0a:66:cc:f6:23:7c:96: 81:15:f4:db:36:96:ed:80:a3:ff:bb:fd:87:d3:45: 0b:6f:d5:c7:fa:9b:83:99:8c:b6:3a:e2:dd:0a:03: 64:a4:26:e6:dc:21:34:39:f0:96:85:bd:44:18:0d: cf:b6:5d:be:aa:03:24:79:37:d6:02:ad:fb:02:6a: 6b:06:9f:25:f7:e2:b6:35:37:3a:a4:2a:22:36:58: 2e:55:73:ab:dd:78:dc:fc:aa:e6:da:c6:1e:29:88: b6:6e:a0:f8:00:c2:3f:27:d1:3a:9d:6d:ff:df:6d: 1c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D8:77:FE:E4:04:60:57:39:00:F8:D4:4C:32:D7:0F:50:29:1D:10 X509v3 Authority Key Identifier: keyid:4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:5f:ea:81:c8:7a:4b:a9:60:67:0c:04:6e:10:ce:12:f3:3e: f3:43:e1:5d:d6:a8:b6:0d:34:5c:20:b2:d1:8d:66:16:04:e5: e9:06:86:26:e1:f0:a8:c0:fd:0b:04:45:ca:ea:3d:09:38:97: 50:8c:70:22:b0:c0:b4:4c:a1:bf:55:91:44:ff:e6:ec:5c:f5: 01:38:01:9f:65:ac:42:a0:da:4f:e4:37:4a:38:d7:b6:b7:98: 64:75:84:3b:9c:67:f0:af:93:b6:1e:0d:fd:44:df:39:ad:c1: 67:83:cd:a2:31:a3:a8:5d:92:0f:92:86:10:c4:1b:fd:41:f4: 49:3d:33:8b:1f:9c:d3:5d:38:ae:0f:c8:2d:02:96:00:98:83: 83:3c:28:f9:0a:64:dc:88:60:d8:92:ea:de:15:17:2d:09:62: 23:22:fd:a5:85:42:af:cb:1b:30:72:84:32:01:a6:a1:04:df: 3e:1b:22:e4:4a:e7:56:7c:5e:56:1c:10:ae:d8:65:e5:57:f4: d0:9e:e7:57:61:06:88:66:6a:82:90:c8:6e:ed:61:41:d9:82: 79:cc:f5:03:49:10:8a:ea:34:94:96:86:95:36:c5:6a:ff:51: c9:18:ea:e0:b8:98:ea:10:51:38:35:ae:0b:89:37:ca:13:5f: 43:1d:b8:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzlDRjExMC8GA1UEBRMoNEE3RDI2QzRDQkYxNjcwMDI0NUQ2N0ZCRjY5NTBCNzEy OTE4OTkzOTAeFw0yNTA0MjUwNjE1NTlaFw0yNTA1MDIwNjE1NTlaMBgxFjAUBgNV BAMTDTY4MGIyODlmLWM0NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPxOYxTyyV3hfAnBxStcetWl431fRuoSXPgpqQCmdd22ns4IsRWNSO9yMaVHST xqmTKy9Oy0ojk3+a5BcgA/ejuG/jB9i4g7EctY5WlKWn94cMkl2NsdOoITydjkEf t0S2lwiLHVdBEWO5C6fdGi8gCEUcWd6kXVza2dOmkMqbwIuFlrsmtvQNyvzIcCVH CmbM9iN8loEV9Ns2lu2Ao/+7/YfTRQtv1cf6m4OZjLY64t0KA2SkJubcITQ58JaF vUQYDc+2Xb6qAyR5N9YCrfsCamsGnyX34rY1NzqkKiI2WC5Vc6vdeNz8qubaxh4p iLZuoPgAwj8n0Tqdbf/fbRw3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ9h3/uQE YFc5APjUTDLXD1ApHRAwHwYDVR0jBBgwFoAUSn0mxMvxZwAkXWf79pULcSkYmTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzOUNGLzRERjJCRTUyQTk4 QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndBa1hXZjc5cFVMY1NrWW1U ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU24wbXhNdnhad0FrWFdmNzlwVUxjU2tZbVRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz OUNGLzRERjJCRTUyQTk4QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndB a1hXZjc5cFVMY1NrWW1Uay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKdf6oHIekupYGcMBG4QzhLzPvND4V3WqLYNNFwgstGNZhYE5ekGhibh 8KjA/QsERcrqPQk4l1CMcCKwwLRMob9VkUT/5uxc9QE4AZ9lrEKg2k/kN0o417a3 mGR1hDucZ/Cvk7YeDf1E3zmtwWeDzaIxo6hdkg+ShhDEG/1B9Ek9M4sfnNNdOK4P yC0ClgCYg4M8KPkKZNyIYNiS6t4VFy0JYiMi/aWFQq/LGzByhDIBpqEE3z4bIuRK 51Z8XlYcEK7YZeVX9NCe51dhBohmaoKQyG7tYUHZgnnM9QNJEIrqNJSWhpU2xWr/ UckY6uC4mOoQUTg1rguJN8oTX0MduEE= -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:52 2025 by rpki-client