$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft File: 2udQjRHkcijaH-ADJZe70p91iQw.mft (raw, json) Hash identifier: +4zRk2/JMCui7cFGhNOXFU8jhIOUD5DeOiHXrqHTObk= Subject key identifier: 0F:46:CB:68:CC:4E:19:51:0C:E4:05:94:56:7E:48:8B:E5:81:5F:F4 Authority key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C Certificate issuer: /CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Certificate serial: 16AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft Manifest number: 1691 Signing time: Thu 24 Apr 2025 16:42:47 +0000 Manifest this update: Thu 24 Apr 2025 16:42:46 +0000 Manifest next update: Thu 01 May 2025 16:42:46 +0000 Files and hashes: 1: 2udQjRHkcijaH-ADJZe70p91iQw.crl (hash: CNC+irKKBWk8zd8aFaP0Oy8ANb3XIp/8N2k3mDVHWww=) 2: 2E0A645AD3B211EF83FA102FC4F9AE02.roa (hash: rswNlcA0WCKsJG6VnWBwnwXLXI6Zn2yhYH7zLlLkFQw=) 3: 2FFD1298AC5A11EDA8C03215C4F9AE02.roa (hash: u/KB2mQ4YEKI1MO9/XhoVdCkQH3Wf5L/GvyMuIz+Fjs=) 4: DCF1073E26B211E9B0DD0155C4F9AE02.roa (hash: c/srnZIsH3NNTNRc/nGdxh//V7+M+xfvwY4cIz74cKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5804 (0x16ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Validity Not Before: Apr 24 16:42:46 2025 GMT Not After : May 1 16:42:46 2025 GMT Subject: CN=680a6a07-32f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ef:98:53:ba:dd:5a:49:fc:7a:1e:6c:34:d2: 11:12:b6:09:0f:c2:1f:5f:9a:a1:ae:f6:17:fa:53: 80:b9:55:8c:71:b1:d5:57:3e:3a:04:68:ba:3c:ee: bc:ee:40:17:8b:e8:8e:3f:86:c8:7b:d5:0e:92:c4: 5c:a1:f4:a0:48:3f:1c:26:69:d2:26:19:77:59:09: 38:a3:99:de:39:ec:41:d1:40:6e:ad:1e:6d:4b:ae: d9:fe:34:f2:f0:a1:91:a4:e1:2f:a0:05:73:22:dc: 5c:88:38:1f:7c:28:14:bc:35:a7:f8:73:7f:07:d3: 52:97:fc:f4:07:29:18:d9:10:1a:5b:18:46:1a:d2: 91:95:f9:45:97:1f:1c:eb:46:e2:8c:ad:05:84:40: af:c7:55:12:bc:f3:39:95:87:fe:95:73:e0:ca:ba: b4:38:f6:b6:52:d9:d6:ea:e5:35:9c:47:a3:7a:56: d5:73:f1:fb:35:e8:17:2d:2c:43:bb:90:68:0a:52: e6:ce:bd:78:39:3a:ac:da:18:10:08:85:ea:96:d2: bd:80:fc:9b:db:22:1c:d7:fa:e1:46:d1:1b:74:ad: 3a:31:84:0d:06:6f:c0:01:f5:e4:7a:77:49:15:ed: 3d:1a:29:12:28:2d:c7:4d:03:88:8d:84:9a:c8:7a: 57:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:46:CB:68:CC:4E:19:51:0C:E4:05:94:56:7E:48:8B:E5:81:5F:F4 X509v3 Authority Key Identifier: keyid:DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:89:dd:81:2e:ee:55:6e:79:0a:f8:db:3a:36:c3:ca:29:ce: 2c:a7:59:e0:48:8a:17:e6:6f:ef:55:bc:ff:54:d5:6b:77:0a: 0c:f7:16:0a:82:87:a3:ce:8e:93:79:24:1b:0c:16:13:04:80: 9c:05:63:99:d3:f4:df:8f:11:27:8b:32:1f:b5:a4:92:2b:aa: dc:5d:8a:65:3e:cd:7e:0b:db:84:42:bd:1a:4f:08:7e:e0:2c: 2a:0c:24:22:0d:54:a3:53:b0:03:af:0d:0d:22:06:d1:cf:ad: c4:b9:e6:05:49:2d:8d:81:19:58:fe:c6:fa:6e:6c:62:64:8a: 73:87:07:6b:89:38:d2:4a:f1:44:20:16:f0:be:4e:81:e1:42: 9b:3d:25:33:d8:b0:2a:67:9d:c4:5b:b7:49:72:a3:21:61:8a: 1b:72:4f:48:ae:66:3f:a7:8f:0e:b3:ca:00:48:e8:8c:56:ff: 72:4a:ee:f1:57:9c:02:59:5a:47:12:75:e4:c3:3a:b1:dd:82: 3a:b8:47:3e:ed:dd:ff:91:ab:15:0a:a3:88:28:c2:9c:c6:60: 0d:c5:cc:86:20:01:cd:42:7c:14:7c:73:d6:eb:01:7f:64:c2: 68:09:13:ee:b6:bb:55:c6:6e:b0:78:c8:46:d5:db:37:25:15: 03:28:23:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKERBRTc1MDhEMTFFNDcyMjhEQTFGRTAwMzI1OTdCQkQy OUY3NTg5MEMwHhcNMjUwNDI0MTY0MjQ2WhcNMjUwNTAxMTY0MjQ2WjAYMRYwFAYD VQQDEw02ODBhNmEwNy0zMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9++YU7rdWkn8eh5sNNIRErYJD8IfX5qhrvYX+lOAuVWMcbHVVz46BGi6PO68 7kAXi+iOP4bIe9UOksRcofSgSD8cJmnSJhl3WQk4o5neOexB0UBurR5tS67Z/jTy 8KGRpOEvoAVzItxciDgffCgUvDWn+HN/B9NSl/z0BykY2RAaWxhGGtKRlflFlx8c 60bijK0FhECvx1USvPM5lYf+lXPgyrq0OPa2UtnW6uU1nEejelbVc/H7NegXLSxD u5BoClLmzr14OTqs2hgQCIXqltK9gPyb2yIc1/rhRtEbdK06MYQNBm/AAfXkendJ Fe09GikSKC3HTQOIjYSayHpXjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9Gy2jM ThlRDOQFlFZ+SIvlgV/0MB8GA1UdIwQYMBaAFNrnUI0R5HIo2h/gAyWXu9KfdYkM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC80NjI4QkVDNDAw RDgxMUU4OTA2MTA2MzdDNEY5QUUwMi8ydWRRalJIa2NpamFILUFESlplNzBwOTFp UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1ZFFqUkhrY2lqYUgtQURKWmU3MHA5MWlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC80NjI4QkVDNDAwRDgxMUU4OTA2MTA2MzdDNEY5QUUwMi8ydWRRalJIa2Np amFILUFESlplNzBwOTFpUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcid2BLu5VbnkK+Ns6NsPKKc4sp1ngSIoX5m/vVbz/VNVrdwoM9xYK goejzo6TeSQbDBYTBICcBWOZ0/TfjxEnizIftaSSK6rcXYplPs1+C9uEQr0aTwh+ 4CwqDCQiDVSjU7ADrw0NIgbRz63EueYFSS2NgRlY/sb6bmxiZIpzhwdriTjSSvFE IBbwvk6B4UKbPSUz2LAqZ53EW7dJcqMhYYobck9IrmY/p48Os8oASOiMVv9ySu7x V5wCWVpHEnXkwzqx3YI6uEc+7d3/kasVCqOIKMKcxmANxcyGIAHNQnwUfHPW6wF/ ZMJoCRPutrtVxm6weMhG1ds3JRUDKCP7 -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:52 2025 by rpki-client