$ rpki-client -vvf rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft File: EDki63fZQHF8gZ4oyWZGKUgLvOU.mft (raw, json) Hash identifier: tIpyx2uNbo0zjVhreU/kHFwnuOo6ScYFLBVryOe8OZ8= Subject key identifier: A0:C7:A9:FA:06:F5:65:76:F8:67:B4:38:BA:98:46:A7:9E:A9:1E:7A Authority key identifier: 10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 Certificate issuer: /CN=A91A030C/serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft Manifest number: 23 Signing time: Fri 25 Apr 2025 06:50:31 +0000 Manifest this update: Fri 25 Apr 2025 06:50:30 +0000 Manifest next update: Fri 02 May 2025 06:50:30 +0000 Files and hashes: 1: EDki63fZQHF8gZ4oyWZGKUgLvOU.crl (hash: 7oUSXLiU+8iMACAZXcbe/yFwJvZ8vKOBloAqesxqMyc=) 2: 17D98518FD6911EFA889E84DC4F9AE02.roa (hash: TAYiLVNUfBDudM++NA0KlcXDtTA+39+D4En0/M5r2I8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A030C, serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Validity Not Before: Apr 25 06:50:30 2025 GMT Not After : May 2 06:50:30 2025 GMT Subject: CN=680b30b6-af07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2a:97:89:8f:a3:08:03:a0:30:c0:e0:a4:f4: 6f:97:04:76:b5:11:0c:65:6b:2f:88:22:39:07:81: d6:25:08:f2:cc:57:5e:27:b6:ff:96:02:a8:b4:3b: e8:72:88:7d:f3:93:c3:fc:9d:f7:19:ed:ab:e0:98: a2:c3:1c:f3:33:62:51:fa:9c:4b:da:fe:4b:7a:b9: c5:a9:f0:7d:82:f4:76:8e:c3:6f:cc:b2:67:ad:d0: 7f:82:d1:a1:0d:1b:a2:b0:40:91:a3:16:d2:d3:35: a0:03:bb:c0:88:bb:6a:2f:11:b5:6b:07:b5:1e:e5: 0c:4c:12:b4:19:c5:82:f7:be:12:46:61:c8:e2:84: 09:dd:65:a6:51:8e:f1:32:3f:6f:d5:4c:73:8a:42: d4:0c:ec:8f:e9:71:67:54:69:b1:23:2f:b7:57:0d: b1:dc:e6:96:9c:a8:2e:f9:ef:a8:7d:fd:17:99:57: b5:31:d1:77:7f:cf:61:12:ec:7e:62:fb:60:85:5d: 95:8a:a6:36:f4:ee:92:85:50:e6:3b:3a:15:71:95: 87:63:e1:ce:57:56:9a:67:b4:fa:94:c5:44:b6:e1: 67:c8:5b:be:3e:22:bb:13:f1:08:a7:16:0f:93:be: 03:22:55:2c:94:bc:8c:b2:84:c0:42:93:d8:88:61: 32:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C7:A9:FA:06:F5:65:76:F8:67:B4:38:BA:98:46:A7:9E:A9:1E:7A X509v3 Authority Key Identifier: keyid:10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e7:22:c0:82:a3:39:77:20:3f:96:c7:34:db:58:9d:a6:4b: f4:62:86:dc:c7:90:c7:7d:47:32:aa:ac:3c:e8:ec:78:d6:ff: 29:54:aa:41:a0:e4:d1:9a:59:17:42:39:09:36:21:8b:62:99: 9d:f2:4a:9d:09:7e:6a:a9:ef:99:df:0c:7b:05:8a:e7:59:0b: 70:10:4e:c9:24:25:35:46:cb:c9:fb:47:97:42:d3:a0:43:67: 38:91:aa:34:66:91:b6:74:73:fd:91:16:6b:ee:9e:b7:8c:1d: 28:ef:a1:57:4d:26:59:ce:4d:39:fd:dc:85:86:0b:82:9c:9e: dd:df:30:9c:c1:00:1f:18:a8:59:26:d8:da:3b:f0:e9:86:75: 4f:b1:cc:86:09:b6:b4:74:e8:13:f9:9e:04:e7:fd:53:66:41: 8f:ac:ed:79:43:b7:d3:8c:bd:a7:49:80:0a:2e:4e:cb:5b:cb: 1d:7a:05:58:6e:2f:a6:d9:31:be:41:d2:9e:03:dc:b6:d0:c8: 42:27:63:0b:a6:3d:f5:02:09:49:6a:0c:72:45:6e:c1:a6:8f: fd:b3:c2:41:81:74:5c:1f:86:a5:d0:bf:9a:31:ad:36:3c:4a: 32:b4:c8:2b:df:22:c0:61:a8:f1:f5:95:87:df:34:22:2a:20: c5:2b:2a:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDMwQzExMC8GA1UEBRMoMTAzOTIyRUI3N0Q5NDA3MTdDODE5RTI4Qzk2NjQ2Mjk0 ODBCQkNFNTAeFw0yNTA0MjUwNjUwMzBaFw0yNTA1MDIwNjUwMzBaMBgxFjAUBgNV BAMTDTY4MGIzMGI2LWFmMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkKpeJj6MIA6AwwOCk9G+XBHa1EQxlay+IIjkHgdYlCPLMV14ntv+WAqi0O+hy iH3zk8P8nfcZ7avgmKLDHPMzYlH6nEva/kt6ucWp8H2C9HaOw2/Msmet0H+C0aEN G6KwQJGjFtLTNaADu8CIu2ovEbVrB7Ue5QxMErQZxYL3vhJGYcjihAndZaZRjvEy P2/VTHOKQtQM7I/pcWdUabEjL7dXDbHc5pacqC7576h9/ReZV7Ux0Xd/z2ES7H5i +2CFXZWKpjb07pKFUOY7OhVxlYdj4c5XVppntPqUxUS24WfIW74+IrsT8QinFg+T vgMiVSyUvIyyhMBCk9iIYTIdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoMep+gb1 ZXb4Z7Q4uphGp56pHnowHwYDVR0jBBgwFoAUEDki63fZQHF8gZ4oyWZGKUgLvOUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwMzBDL0E3MDM2NzAwRjQ3 NjExRUZCRTQ2NkQ3RkM0RjlBRTAyL0VEa2k2M2ZaUUhGOGdaNG95V1pHS1VnTHZP VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRURraTYzZlpRSEY4Z1o0b3lXWkdLVWdMdk9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw MzBDL0E3MDM2NzAwRjQ3NjExRUZCRTQ2NkQ3RkM0RjlBRTAyL0VEa2k2M2ZaUUhG OGdaNG95V1pHS1VnTHZPVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADLnIsCCozl3ID+WxzTbWJ2mS/RihtzHkMd9RzKqrDzo7HjW/ylUqkGg 5NGaWRdCOQk2IYtimZ3ySp0Jfmqp75nfDHsFiudZC3AQTskkJTVGy8n7R5dC06BD ZziRqjRmkbZ0c/2RFmvunreMHSjvoVdNJlnOTTn93IWGC4Kcnt3fMJzBAB8YqFkm 2No78OmGdU+xzIYJtrR06BP5ngTn/VNmQY+s7XlDt9OMvadJgAouTstbyx16BVhu L6bZMb5B0p4D3LbQyEInYwumPfUCCUlqDHJFbsGmj/2zwkGBdFwfhqXQv5oxrTY8 SjK0yCvfIsBhqPH1lYffNCIqIMUrKhk= -----END CERTIFICATE-----Generated at Sat Apr 26 04:46:45 2025 by rpki-client