$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: 9cDHBasvj9UiA/1bExwWavpPTobZwvUSmGDMdfPqDFc= Subject key identifier: 61:48:4A:14:E1:24:FF:54:29:E1:41:24:D7:C9:17:86:8A:F8:74:4C Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 0773 Signing time: Thu 24 Apr 2025 21:17:21 +0000 Manifest this update: Thu 24 Apr 2025 21:17:21 +0000 Manifest next update: Thu 01 May 2025 21:17:21 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: i3muhQOvuo9r8RKWn5S7KC8T1lxgOsqm0+rj4APlKyw=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Apr 24 21:17:21 2025 GMT Not After : May 1 21:17:21 2025 GMT Subject: CN=680aaa61-086f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:e6:7f:65:7d:a7:0f:4e:0d:aa:4b:d0:13: 31:c0:1e:c5:37:a2:7f:ad:fe:a5:ee:a2:be:63:43: 45:94:72:1a:b0:48:b4:9c:ef:75:16:d9:86:3c:73: a7:9b:a5:2b:b0:50:dd:31:10:06:4d:d4:2a:31:e0: 92:71:14:43:4d:f8:97:df:04:e1:70:bc:a1:cf:80: 26:25:f4:1e:1d:70:dc:62:c3:5d:21:84:44:cf:ee: 58:44:5b:12:fb:92:9a:6f:74:38:52:7f:c3:ae:99: 9a:45:af:90:f8:93:9d:e4:4e:14:20:1b:bc:e5:ff: 6f:89:28:8f:ca:dc:18:92:24:09:ae:48:ad:91:ad: 71:d3:1e:74:ea:c6:72:0c:42:b6:08:a9:d6:70:72: 63:49:82:bb:b1:bc:7b:41:da:f2:a2:9d:61:5a:dc: ad:f5:9a:b3:8d:8f:7f:d6:8d:91:b5:8e:c0:62:94: a9:0e:f5:c5:b0:21:69:c0:0b:28:94:f0:ce:33:9f: 77:dc:81:3a:08:0c:93:05:77:6f:10:66:1f:ca:79: 9d:05:5a:ef:84:9c:da:ef:75:c3:1c:a8:69:d3:2a: b4:12:c0:50:ac:ca:e8:49:45:65:f0:c8:1d:92:b5: 33:79:05:4d:75:05:ec:d8:0c:bf:14:90:46:5d:64: ae:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:48:4A:14:E1:24:FF:54:29:E1:41:24:D7:C9:17:86:8A:F8:74:4C X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:b4:1d:c4:8a:a4:45:34:07:9f:d6:73:fb:0f:6e:46:3a:b9: ca:e2:47:13:ce:f9:d2:10:a4:ef:c9:4b:61:ca:0c:b6:6e:b7: 6e:c3:95:f4:ce:28:14:2a:1f:42:fa:1d:28:c8:cd:23:b6:59: 0a:cc:97:f4:73:11:a9:a2:e0:b4:e6:ec:06:2b:c9:3d:69:2c: 95:ca:99:75:94:75:56:8a:ec:b4:3f:08:ec:d0:2e:d9:2d:b7: cd:2c:96:58:81:0e:3b:ce:35:e0:0e:9f:7f:2e:1f:99:3d:56: 08:7b:46:d5:0e:72:57:ad:da:cf:4a:bb:8d:87:ff:66:1d:7a: 15:4d:e2:4d:73:43:cc:69:88:68:21:20:c7:90:8c:eb:93:63: 78:16:7c:45:ca:8b:18:a8:f3:ca:8a:03:55:03:aa:fc:c8:08: e2:d8:82:93:89:87:9d:80:06:f9:57:c8:62:ca:43:a1:ad:09: f9:be:9d:ba:39:47:40:ce:a8:5c:1d:13:bf:12:e4:41:02:9d: ad:f7:05:4f:ab:17:95:bd:f4:2c:69:19:f9:8b:30:ba:51:e3: 37:af:e2:9b:18:22:02:51:70:53:b6:17:71:5e:20:de:e2:81: 68:11:f3:5a:d7:f8:9b:41:8f:09:31:62:05:4f:de:3e:7e:97: d2:d8:3c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNDI0MjExNzIxWhcNMjUwNTAxMjExNzIxWjAYMRYwFAYD VQQDEw02ODBhYWE2MS0wODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2Tmf2V9pw9ODapL0BMxwB7FN6J/rf6l7qK+Y0NFlHIasEi0nO91FtmGPHOn m6UrsFDdMRAGTdQqMeCScRRDTfiX3wThcLyhz4AmJfQeHXDcYsNdIYREz+5YRFsS +5Kab3Q4Un/DrpmaRa+Q+JOd5E4UIBu85f9viSiPytwYkiQJrkitka1x0x506sZy DEK2CKnWcHJjSYK7sbx7Qdryop1hWtyt9ZqzjY9/1o2RtY7AYpSpDvXFsCFpwAso lPDOM5933IE6CAyTBXdvEGYfynmdBVrvhJza73XDHKhp0yq0EsBQrMroSUVl8Mgd krUzeQVNdQXs2Ay/FJBGXWSueQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFIShTh JP9UKeFBJNfJF4aK+HRMMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBStB3EiqRFNAef1nP7D25GOrnK4kcTzvnSEKTvyUthygy2brduw5X0 zigUKh9C+h0oyM0jtlkKzJf0cxGpouC05uwGK8k9aSyVypl1lHVWiuy0Pwjs0C7Z LbfNLJZYgQ47zjXgDp9/Lh+ZPVYIe0bVDnJXrdrPSruNh/9mHXoVTeJNc0PMaYho ISDHkIzrk2N4FnxFyosYqPPKigNVA6r8yAji2IKTiYedgAb5V8hiykOhrQn5vp26 OUdAzqhcHRO/EuRBAp2t9wVPqxeVvfQsaRn5izC6UeM3r+KbGCICUXBTthdxXiDe 4oFoEfNa1/ibQY8JMWIFT94+fpfS2Dxl -----END CERTIFICATE-----Generated at Sat Apr 26 18:14:06 2025 by rpki-client