$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft File: mpwxvYeWc4abPI8FWW6IFVgvEdA.mft (raw, json) Hash identifier: XHqAqhwmNANNBQjnstH7lVqHCoSH6/LPaumHYcnl8dI= Subject key identifier: 47:A1:58:4D:4E:60:81:37:C1:2C:73:A1:92:6C:EE:39:D2:B8:9E:EF Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft Manifest number: 0C30 Signing time: Thu 24 Apr 2025 18:23:19 +0000 Manifest this update: Thu 24 Apr 2025 18:23:18 +0000 Manifest next update: Thu 01 May 2025 18:23:18 +0000 Files and hashes: 1: mpwxvYeWc4abPI8FWW6IFVgvEdA.crl (hash: fz+khhWFSuY9BbC/AhcDKLDhvAU/Dm8CbNE8F5zOHgo=) 2: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (hash: rjjlCBXic9PjXjyPWM+A+lhdUtqC6LPHHyzyg5jp9Pc=) 3: 98DC875C050111EA9BDD372BC4F9AE02.roa (hash: tUTz8eY+t4ddLMBAcdiLEQQ0A3k/C+6KL0Lp4wdaHaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4, serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Apr 24 18:23:18 2025 GMT Not After : May 1 18:23:18 2025 GMT Subject: CN=680a8196-a1bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:57:2f:c9:79:9e:19:2c:41:31:79:89:82:a0: da:9c:03:8d:46:ed:aa:70:a8:c3:d8:fa:68:41:a4: 7c:cb:84:88:29:16:c2:12:51:2f:a2:a5:67:8b:6d: 45:65:7d:e8:16:a7:49:36:06:c4:75:37:dd:6f:cb: 14:f5:9d:4c:88:90:2c:55:31:a7:5c:8e:d6:17:6f: c7:24:d8:27:8c:5d:36:8d:c7:87:d8:e0:6e:19:78: 37:31:b0:7e:5f:0f:1b:ff:91:73:d9:09:d0:0d:8c: e9:83:b1:85:b6:87:e5:68:79:cf:5b:47:7c:1f:1a: 04:d6:dd:42:60:24:bf:cc:e4:0a:5a:de:e5:c0:5e: 43:e8:41:d7:81:8e:d0:69:12:4d:e4:21:d6:ee:1f: 51:b8:a6:bb:e0:22:07:11:bc:7a:c9:96:eb:9a:83: ec:33:28:bd:2a:00:97:c6:39:03:a7:48:ff:bb:d7: 23:32:d0:b5:78:cb:80:72:fe:2d:b3:e3:c2:c8:24: 8d:1e:08:5e:8d:6a:ef:f7:ae:12:76:7d:26:f1:61: f3:04:5e:3c:5d:3c:82:f1:6f:bd:e2:5a:9a:f9:e8: e8:cb:37:ee:ee:9e:6e:e1:a0:f2:a6:1b:1c:d8:0e: 36:d3:cf:18:af:33:05:6d:cf:85:99:1c:90:38:25: eb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A1:58:4D:4E:60:81:37:C1:2C:73:A1:92:6C:EE:39:D2:B8:9E:EF X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d4:5a:7e:6f:15:77:f0:3c:2f:08:da:e9:92:70:57:62:cb: 74:f8:2d:26:17:cb:bd:d5:81:6d:32:19:b2:fb:d6:e7:9f:ce: 27:22:00:e3:e5:d4:2d:b3:ae:c9:32:da:2b:fc:f0:fd:28:90: a9:47:b7:9a:75:5a:1e:11:b9:d0:48:9f:f2:f3:4b:f2:87:42: 5e:d8:3e:a9:9a:30:0b:99:52:67:38:5c:e0:e6:17:63:44:83: 64:77:57:a9:24:43:5a:e6:fc:59:72:d2:fb:6a:bd:c8:db:fd: 07:26:0d:d6:38:ad:47:2c:ba:c3:ba:80:a7:a0:c6:71:97:72: 93:93:e0:63:62:03:99:f7:b1:fd:fd:1c:88:ab:f8:10:b3:aa: 26:72:e2:84:47:0c:21:2f:70:03:c7:07:ba:1e:81:38:26:5c: 54:16:d3:0a:79:6c:fd:4e:d3:e1:03:5e:b7:cf:31:0a:83:2b: 0f:0d:81:1a:64:ac:1e:e1:58:81:56:24:69:67:9a:63:f2:3d: 21:c6:72:40:b5:a4:ed:0f:a4:b0:c0:64:a4:13:3d:e6:cf:5a: cb:30:1a:49:cd:05:49:55:d4:eb:9f:8b:f7:f7:7f:b8:9f:75: 87:4e:13:e7:ef:50:30:e7:56:a7:6c:31:29:c0:64:39:2f:71: 4a:af:1c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjUwNDI0MTgyMzE4WhcNMjUwNTAxMTgyMzE4WjAYMRYwFAYD VQQDEw02ODBhODE5Ni1hMWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslcvyXmeGSxBMXmJgqDanAONRu2qcKjD2PpoQaR8y4SIKRbCElEvoqVni21F ZX3oFqdJNgbEdTfdb8sU9Z1MiJAsVTGnXI7WF2/HJNgnjF02jceH2OBuGXg3MbB+ Xw8b/5Fz2QnQDYzpg7GFtoflaHnPW0d8HxoE1t1CYCS/zOQKWt7lwF5D6EHXgY7Q aRJN5CHW7h9RuKa74CIHEbx6yZbrmoPsMyi9KgCXxjkDp0j/u9cjMtC1eMuAcv4t s+PCyCSNHghejWrv964Sdn0m8WHzBF48XTyC8W+94lqa+ejoyzfu7p5u4aDyphsc 2A42088YrzMFbc+FmRyQOCXraQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEehWE1O YIE3wSxzoZJs7jnSuJ7vMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTZDNC9BM0JBRDhFMjA0RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0 YWJQSThGV1c2SUZWZ3ZFZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT1Fp+bxV38DwvCNrpknBXYst0+C0mF8u91YFtMhmy+9bnn84nIgDj 5dQts67JMtor/PD9KJCpR7eadVoeEbnQSJ/y80vyh0Je2D6pmjALmVJnOFzg5hdj RINkd1epJENa5vxZctL7ar3I2/0HJg3WOK1HLLrDuoCnoMZxl3KTk+BjYgOZ97H9 /RyIq/gQs6omcuKERwwhL3ADxwe6HoE4JlxUFtMKeWz9TtPhA163zzEKgysPDYEa ZKwe4ViBViRpZ5pj8j0hxnJAtaTtD6SwwGSkEz3mz1rLMBpJzQVJVdTrn4v393+4 n3WHThPn71Aw51anbDEpwGQ5L3FKrxze -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:36 2025 by rpki-client