$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft File: aj72cYLbsPbM88pBN4wBGYBq6b0.mft (raw, json) Hash identifier: lPUlo1J4aKciWsJiSV43niAR2OE3HBJEUzDb8zztCyw= Subject key identifier: 1C:60:4F:BE:A3:79:C1:99:16:2E:47:DC:5B:4A:05:D0:C2:22:79:D0 Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD Certificate issuer: /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft Manifest number: 28 Signing time: Fri 25 Apr 2025 06:44:43 +0000 Manifest this update: Fri 25 Apr 2025 06:44:42 +0000 Manifest next update: Fri 02 May 2025 06:44:42 +0000 Files and hashes: 1: aj72cYLbsPbM88pBN4wBGYBq6b0.crl (hash: 1V2ApzvZTq7k/gAwxP9stanSk10igz3PHSBv5CzdlpE=) 2: FDE6938CE90C11EFB9D98326C4F9AE02.roa (hash: EQY90pkMKZS20T7XhciTL191HbTMnbpWtQHaja8QyGI=) 3: F449A3FCE9C811EF9972A934C4F9AE02.roa (hash: 7MwfNHRXASMEn22ZfT4zj9oG/ZQKY9GDP1pjifjdSXI=) 4: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (hash: XHfUu+5yh0x5y1fbUjOYEtUpMyJC2J2Z1oZf8nnZcak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A2E, serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Validity Not Before: Apr 25 06:44:42 2025 GMT Not After : May 2 06:44:42 2025 GMT Subject: CN=680b2f5b-5ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:08:db:1b:7d:26:ae:a7:22:55:6f:9f:be:27: b9:07:96:15:b7:a9:79:7a:d7:b2:c9:26:1d:55:08: 4a:96:67:9c:c3:4c:00:6b:f5:11:dc:14:80:73:85: 6b:27:ea:6d:4c:30:23:b6:f5:e2:11:50:32:56:5e: 0b:71:4f:dd:cc:75:2a:e5:53:df:cb:c8:3f:40:2f: 8c:3c:82:b0:7a:2a:81:7d:9a:f4:7c:e8:59:00:4f: f8:22:41:d6:d7:0a:b7:d1:9d:29:88:e1:9f:52:4e: 9f:29:a7:eb:12:e5:ad:e4:5f:7a:f7:28:3b:3f:9a: 1c:9b:3d:0f:17:9e:e1:cb:de:3a:92:a0:c2:b0:55: 43:57:d9:0f:e3:70:2d:f8:00:63:7a:47:f9:cf:df: 9f:05:93:2c:33:3d:ac:77:e1:33:52:a8:ed:8d:09: f8:f8:b3:0c:ca:ac:f2:f7:47:57:ce:f6:61:3e:bb: 68:a4:c8:82:62:78:90:f7:aa:91:0f:d7:2d:4e:5f: bb:46:6a:3b:8f:91:40:4d:30:ec:de:a2:99:f5:29: aa:52:48:dd:66:37:23:de:13:62:1b:0d:57:b9:8a: 5b:1a:74:60:55:59:9e:fe:25:d8:22:70:eb:b2:ce: 9b:98:88:20:8a:b0:0f:ae:3b:02:aa:3d:19:02:44: a3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:60:4F:BE:A3:79:C1:99:16:2E:47:DC:5B:4A:05:D0:C2:22:79:D0 X509v3 Authority Key Identifier: keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:48:3d:34:fe:60:65:28:15:e2:88:b6:02:4b:65:27:2a:28: 10:02:08:3f:4b:54:fd:44:af:3b:b3:1c:dc:14:84:97:64:c5: 9f:fd:62:54:e5:c3:35:87:90:4b:ba:21:88:31:d0:3e:dc:95: 5f:dc:9d:ca:1a:71:b6:09:54:fc:84:eb:d4:f7:77:20:1d:89: 45:89:03:5c:0f:bb:a4:f6:49:5a:8a:a2:62:5b:1c:b2:36:56: 81:31:60:ee:49:32:d9:aa:03:df:6f:d1:df:a4:e0:5a:2d:a3: cd:a4:89:d5:bc:a5:fe:68:8e:72:5a:0a:76:fd:5a:f7:07:04: 26:9b:ac:a5:00:dc:ce:f8:2f:a6:d4:d0:48:13:82:75:46:c7: 31:d4:91:49:63:87:fd:5f:a5:8e:d7:b7:c0:a6:fe:78:0e:b0: f4:c0:ea:a0:13:9b:65:59:d7:77:e9:73:10:ce:41:95:5e:82: 26:82:79:eb:b5:f0:eb:83:bf:e7:0b:2d:fc:90:ad:2d:a7:bb: 91:4f:ee:37:c2:58:ed:1e:32:fd:42:e9:80:9e:86:41:8a:12: f3:78:04:97:1d:a2:67:73:f9:07:3e:6e:56:0f:a2:06:0f:6b: f8:ae:d8:bf:76:01:2d:4c:cb:89:c4:9b:b7:44:92:a1:95:d0: a2:3e:d0:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEEyRTExMC8GA1UEBRMoNkEzRUY2NzE4MkRCQjBGNkNDRjNDQTQxMzc4QzAxMTk4 MDZBRTlCRDAeFw0yNTA0MjUwNjQ0NDJaFw0yNTA1MDIwNjQ0NDJaMBgxFjAUBgNV BAMTDTY4MGIyZjViLTVlZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDECNsbfSaupyJVb5++J7kHlhW3qXl617LJJh1VCEqWZ5zDTABr9RHcFIBzhWsn 6m1MMCO29eIRUDJWXgtxT93MdSrlU9/LyD9AL4w8grB6KoF9mvR86FkAT/giQdbX CrfRnSmI4Z9STp8pp+sS5a3kX3r3KDs/mhybPQ8XnuHL3jqSoMKwVUNX2Q/jcC34 AGN6R/nP358FkywzPax34TNSqO2NCfj4swzKrPL3R1fO9mE+u2ikyIJieJD3qpEP 1y1OX7tGajuPkUBNMOzeopn1KapSSN1mNyPeE2IbDVe5ilsadGBVWZ7+JdgicOuy zpuYiCCKsA+uOwKqPRkCRKMRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHGBPvqN5 wZkWLkfcW0oF0MIiedAwHwYDVR0jBBgwFoAUaj72cYLbsPbM88pBN4wBGYBq6b0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwQTJFL0M4MzZDN0IyRTkw QjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWo3MmNZTGJzUGJNODhwQk40d0JHWUJxNmIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw QTJFL0M4MzZDN0IyRTkwQjExRUY4MjE4NTgyNEM0RjlBRTAyL2FqNzJjWUxic1Bi TTg4cEJONHdCR1lCcTZiMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxIPTT+YGUoFeKItgJLZScqKBACCD9LVP1ErzuzHNwUhJdkxZ/9YlTl wzWHkEu6IYgx0D7clV/cncoacbYJVPyE69T3dyAdiUWJA1wPu6T2SVqKomJbHLI2 VoExYO5JMtmqA99v0d+k4Foto82kidW8pf5ojnJaCnb9WvcHBCabrKUA3M74L6bU 0EgTgnVGxzHUkUljh/1fpY7Xt8Cm/ngOsPTA6qATm2VZ13fpcxDOQZVegiaCeeu1 8OuDv+cLLfyQrS2nu5FP7jfCWO0eMv1C6YCehkGKEvN4BJcdomdz+Qc+blYPogYP a/iu2L92AS1My4nEm7dEkqGV0KI+0Bs= -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:55 2025 by rpki-client