$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft File: RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft (raw, json) Hash identifier: kie0gOCvzU+GUIqf332vt5ZZ79l2kRlfunJaiLmX6FI= Subject key identifier: 3C:AB:70:14:AC:B4:75:B7:E7:28:BD:F1:1C:91:B6:DC:0E:B7:3F:E5 Authority key identifier: 45:C9:DE:25:4E:2E:03:05:D6:50:A5:0A:6B:F1:92:68:80:7E:F1:0A Certificate issuer: /CN=A91A1938/serialNumber=45C9DE254E2E0305D650A50A6BF19268807EF10A Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft Manifest number: 0171 Signing time: Fri 25 Apr 2025 02:56:29 +0000 Manifest this update: Fri 25 Apr 2025 02:56:29 +0000 Manifest next update: Fri 02 May 2025 02:56:28 +0000 Files and hashes: 1: RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl (hash: +0sDf+jH0Xbu7qlMQCrfxEV5u0VhbR9XeqTzGvavC7g=) 2: 68ECF3BAEE1911ED9C7CDC63C4F9AE02.roa (hash: B9rH7xYB2+kr58NYbrhUnykfNCc6xLqTbSn0D9X3q9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1938, serialNumber=45C9DE254E2E0305D650A50A6BF19268807EF10A Validity Not Before: Apr 25 02:56:29 2025 GMT Not After : May 2 02:56:28 2025 GMT Subject: CN=680af9dd-8aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e2:bd:fc:08:a9:00:4b:47:e5:af:6b:c4:a3: e2:f5:47:e9:e2:05:7f:9f:5f:9d:05:19:57:bb:c8: 18:2b:ce:c9:93:cd:2a:40:ca:cc:f1:5d:86:36:aa: da:c0:b4:fc:53:26:ce:38:bf:a1:5f:86:6d:73:77: 7f:12:6a:f4:de:67:0c:21:b2:96:b4:8c:a3:c1:54: 87:ba:a7:2f:f9:8f:27:12:9c:6c:c6:b1:e7:cc:7b: 5e:9f:2f:ca:1b:63:15:1a:2d:7c:4d:8f:80:6d:bb: 57:26:30:8b:77:68:b0:cb:26:81:53:e6:22:be:a0: ae:be:68:7f:7e:9e:71:a3:a6:b5:8b:80:e2:ef:ea: 28:75:ea:61:07:83:87:d7:77:c8:4b:1e:95:9c:4c: 72:b6:35:0d:39:e7:68:14:68:56:9f:83:62:18:81: e5:93:b6:84:34:34:cd:10:c2:af:2c:df:92:0d:cc: ba:70:9c:48:ac:dd:44:4f:34:1b:f8:83:71:d0:b0: e4:23:a0:22:01:d4:23:37:cd:36:c7:d0:32:1b:f5: c6:22:24:3e:71:5c:a8:e1:c1:25:09:fb:ad:b0:1f: 6b:39:44:f7:b6:f8:84:b4:18:1e:00:11:9e:3f:1d: 39:2a:43:fd:48:ca:d9:13:3b:0d:28:ee:6e:ee:70: b1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AB:70:14:AC:B4:75:B7:E7:28:BD:F1:1C:91:B6:DC:0E:B7:3F:E5 X509v3 Authority Key Identifier: keyid:45:C9:DE:25:4E:2E:03:05:D6:50:A5:0A:6B:F1:92:68:80:7E:F1:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RcneJU4uAwXWUKUKa_GSaIB-8Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1938/52684972EE1011ED90657436C4F9AE02/RcneJU4uAwXWUKUKa_GSaIB-8Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:78:09:73:f5:50:03:b4:f9:2d:42:fe:3f:a6:ce:96:45:a3: 04:ce:10:41:11:0c:ef:13:c1:0d:93:59:8e:17:16:67:02:d9: 5d:fe:84:2c:b9:28:52:2d:18:88:3c:d3:10:03:80:90:f7:06: 47:1c:9d:27:dd:c2:4e:ee:5e:4b:d9:7b:5c:44:7e:00:8d:ff: ca:9a:e8:6e:a4:21:c6:3a:ab:ce:66:e9:be:90:d0:a8:ae:ea: 2f:03:d6:0b:5e:87:d8:4a:5a:50:6c:f4:77:ea:94:14:25:95: a8:3c:37:9a:a3:f5:b7:d3:15:44:2f:e8:7c:84:e0:ed:b3:9a: a7:b5:27:c9:2e:65:88:fb:37:76:5a:e2:2f:ca:74:eb:3e:7f: bb:bc:49:f8:3b:7a:c2:a2:6d:71:2a:2a:ae:e5:25:af:bc:00: d5:a9:28:0b:06:07:3f:37:c3:dd:12:f5:aa:a6:d1:e1:7c:77: 14:07:8c:3d:0c:08:bf:e8:95:c9:b6:82:bf:a0:d9:05:2e:bd: 2d:91:d3:40:7c:7a:1a:6d:9a:e5:14:bf:f2:21:4f:f2:37:b2: 55:f2:09:b9:b2:67:29:74:62:57:d7:00:7c:c8:e1:1f:dd:de: 73:3f:3b:41:90:61:21:69:3a:fe:d5:5b:2d:43:30:c8:17:83: 98:ef:76:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5MzgxMTAvBgNVBAUTKDQ1QzlERTI1NEUyRTAzMDVENjUwQTUwQTZCRjE5MjY4 ODA3RUYxMEEwHhcNMjUwNDI1MDI1NjI5WhcNMjUwNTAyMDI1NjI4WjAYMRYwFAYD VQQDEw02ODBhZjlkZC04YWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OK9/AipAEtH5a9rxKPi9Ufp4gV/n1+dBRlXu8gYK87Jk80qQMrM8V2GNqra wLT8UybOOL+hX4Ztc3d/Emr03mcMIbKWtIyjwVSHuqcv+Y8nEpxsxrHnzHteny/K G2MVGi18TY+AbbtXJjCLd2iwyyaBU+YivqCuvmh/fp5xo6a1i4Di7+oodephB4OH 13fISx6VnExytjUNOedoFGhWn4NiGIHlk7aENDTNEMKvLN+SDcy6cJxIrN1ETzQb +INx0LDkI6AiAdQjN802x9AyG/XGIiQ+cVyo4cElCfutsB9rOUT3tviEtBgeABGe Px05KkP9SMrZEzsNKO5u7nCxtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyrcBSs tHW35yi98RyRttwOtz/lMB8GA1UdIwQYMBaAFEXJ3iVOLgMF1lClCmvxkmiAfvEK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTkzOC81MjY4NDk3MkVF MTAxMUVEOTA2NTc0MzZDNEY5QUUwMi9SY25lSlU0dUF3WFdVS1VLYV9HU2FJQi04 UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbmVKVTR1QXdYV1VLVUthX0dTYUlCLThRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTkzOC81MjY4NDk3MkVFMTAxMUVEOTA2NTc0MzZDNEY5QUUwMi9SY25lSlU0dUF3 WFdVS1VLYV9HU2FJQi04UW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaeAlz9VADtPktQv4/ps6WRaMEzhBBEQzvE8ENk1mOFxZnAtld/oQs uShSLRiIPNMQA4CQ9wZHHJ0n3cJO7l5L2XtcRH4Ajf/KmuhupCHGOqvOZum+kNCo ruovA9YLXofYSlpQbPR36pQUJZWoPDeao/W30xVEL+h8hODts5qntSfJLmWI+zd2 WuIvynTrPn+7vEn4O3rCom1xKiqu5SWvvADVqSgLBgc/N8PdEvWqptHhfHcUB4w9 DAi/6JXJtoK/oNkFLr0tkdNAfHoabZrlFL/yIU/yN7JV8gm5smcpdGJX1wB8yOEf 3d5zPztBkGEhaTr+1VstQzDIF4OY73Yg -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:20 2025 by rpki-client