$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft File: bywgdVh2TqtQ74UGb3hZDOWxxWE.mft (raw, json) Hash identifier: 5n51Sz6qmEn6uYpF96k0jXQkqnyyrD5YK4CE1YghSjI= Subject key identifier: 92:3E:B0:98:75:4F:6C:E7:F0:D4:6B:6B:DC:67:42:EA:2A:69:D0:C7 Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 1091 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft Manifest number: 1089 Signing time: Thu 24 Apr 2025 17:20:53 +0000 Manifest this update: Thu 24 Apr 2025 17:20:52 +0000 Manifest next update: Thu 01 May 2025 17:20:52 +0000 Files and hashes: 1: bywgdVh2TqtQ74UGb3hZDOWxxWE.crl (hash: +uOhS6jYxvfD4Iw/hBbXo4a6SGGaWt8LuqL3ggyHluw=) 2: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (hash: NcGX1+0f22h9EnvK4Hf3V559zCSmDIlERyuyLCtuDE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4241 (0x1091) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5, serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Apr 24 17:20:52 2025 GMT Not After : May 1 17:20:52 2025 GMT Subject: CN=680a72f5-e779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:69:b7:43:4f:a3:35:e1:52:8f:5c:bd:ea:1e: 48:40:83:0c:24:bb:69:21:3b:e3:24:9a:9b:68:df: da:3c:eb:08:f6:5e:8b:b4:44:b8:26:c8:24:b6:73: 8e:d9:15:8e:55:77:d9:da:cf:dc:41:d0:9d:f0:74: 66:45:8f:30:41:41:a1:6b:86:74:3c:fb:7a:1d:12: 06:58:c3:a5:0b:39:0c:41:73:86:dd:2d:e8:72:2b: f9:b9:ac:0e:88:a0:7b:e9:29:0d:97:3c:9c:a4:98: 32:63:65:61:13:2f:ba:d3:ed:f5:9f:e0:b4:1d:c8: 7d:dd:85:15:e1:f3:0e:b4:78:62:0f:24:78:b1:88: 89:47:59:f0:44:b8:9e:3d:4d:1c:cf:aa:c8:3c:a3: 71:95:db:51:80:d3:c9:77:66:68:cc:22:cb:12:53: 85:ea:87:d8:a4:f0:c2:b1:08:38:4a:58:62:50:e6: 1e:06:a2:21:99:14:79:c7:1a:11:99:67:d2:15:74: 13:d1:ef:d7:b0:06:7f:2e:f3:46:3b:1c:7e:34:c7: d1:99:eb:aa:b0:df:65:c2:a8:8a:e0:4a:91:77:85: 8c:cc:5c:02:6f:a8:07:3f:28:be:64:ad:2a:c3:65: 8f:a9:9b:34:a1:cf:27:41:3a:98:01:a5:ec:ad:8c: 3a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3E:B0:98:75:4F:6C:E7:F0:D4:6B:6B:DC:67:42:EA:2A:69:D0:C7 X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:28:b3:92:a5:4f:79:0b:3f:15:5a:11:1d:27:cc:f9:a8:3a: 2c:09:99:6f:0f:1c:66:71:25:dd:36:51:03:5f:e6:9a:94:0d: c3:20:cb:7e:75:8e:cb:ad:a2:c9:36:79:c9:95:1e:c7:ff:cc: b0:e8:e2:98:85:a5:ec:28:e6:f1:b8:96:f2:93:c8:10:9e:a4: 0c:64:0d:cd:46:d1:24:0c:4c:52:0a:4c:06:2a:de:40:fb:95: 17:f0:70:ac:f1:89:8b:f2:31:97:e4:b3:92:d2:2d:f1:fd:4b: 48:0c:03:a2:57:9b:29:46:0a:fe:e9:e5:9d:8d:ac:7c:b1:63: 03:b7:16:0a:36:77:d1:dc:eb:83:f9:ce:52:e9:8a:1e:f3:08: 28:ea:c3:4b:5b:f1:11:a6:7f:5b:a6:7d:b6:83:ef:77:be:74: bb:77:8f:1a:e4:cb:11:f0:60:02:99:ee:74:44:2e:a1:b9:89: 68:71:a5:f7:cb:83:69:54:6e:e7:c5:10:24:5d:ed:32:02:47: 64:e4:68:35:0b:99:4b:30:8f:a0:b7:e7:10:16:80:99:03:07: ed:d3:3a:ec:72:de:7a:1b:5e:a5:73:0b:e6:c3:a9:da:34:03: 03:1d:ea:79:85:7a:81:c4:f5:09:cf:03:f8:ea:1d:4c:e3:90: 0b:e3:65:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjUwNDI0MTcyMDUyWhcNMjUwNTAxMTcyMDUyWjAYMRYwFAYD VQQDEw02ODBhNzJmNS1lNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGm3Q0+jNeFSj1y96h5IQIMMJLtpITvjJJqbaN/aPOsI9l6LtES4JsgktnOO 2RWOVXfZ2s/cQdCd8HRmRY8wQUGha4Z0PPt6HRIGWMOlCzkMQXOG3S3ociv5uawO iKB76SkNlzycpJgyY2VhEy+60+31n+C0Hch93YUV4fMOtHhiDyR4sYiJR1nwRLie PU0cz6rIPKNxldtRgNPJd2ZozCLLElOF6ofYpPDCsQg4SlhiUOYeBqIhmRR5xxoR mWfSFXQT0e/XsAZ/LvNGOxx+NMfRmeuqsN9lwqiK4EqRd4WMzFwCb6gHPyi+ZK0q w2WPqZs0oc8nQTqYAaXsrYw6wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI+sJh1 T2zn8NRra9xnQuoqadDHMB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRx dFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAKLOSpU95Cz8VWhEdJ8z5qDosCZlvDxxmcSXdNlEDX+aalA3DIMt+ dY7LraLJNnnJlR7H/8yw6OKYhaXsKObxuJbyk8gQnqQMZA3NRtEkDExSCkwGKt5A +5UX8HCs8YmL8jGX5LOS0i3x/UtIDAOiV5spRgr+6eWdjax8sWMDtxYKNnfR3OuD +c5S6Yoe8wgo6sNLW/ERpn9bpn22g+93vnS7d48a5MsR8GACme50RC6huYlocaX3 y4NpVG7nxRAkXe0yAkdk5Gg1C5lLMI+gt+cQFoCZAwft0zrsct56G16lcwvmw6na NAMDHep5hXqBxPUJzwP46h1M45AL42X0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:56 2025 by rpki-client