$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft File: 7a8emnnZ_ssQeIOv03V_qPcKMtc.mft (raw, json) Hash identifier: x42Eo1XZgqe1rfPMw9eR0oVTJXFR+/Qg3KPTufSmx/c= Subject key identifier: 60:55:4A:5D:D8:E2:78:B8:B3:86:84:C6:FB:F4:EF:DA:01:A4:29:9E Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 0988 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft Manifest number: 0982 Signing time: Thu 24 Apr 2025 20:00:36 +0000 Manifest this update: Thu 24 Apr 2025 20:00:36 +0000 Manifest next update: Thu 01 May 2025 20:00:36 +0000 Files and hashes: 1: 7a8emnnZ_ssQeIOv03V_qPcKMtc.crl (hash: I7XgVWUgCRdBCZU4L5z4Zw8mE/yDoIv95wNOEuO1kHQ=) 2: FA7CB46C8AB411EA89D83541C4F9AE02.roa (hash: yD0pXJuzsIcwlQVDxXtH8gNE+deycvgoI/IITsyuLRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C, serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Apr 24 20:00:36 2025 GMT Not After : May 1 20:00:36 2025 GMT Subject: CN=680a9864-6940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:2c:e1:3f:5b:a0:c5:60:e5:47:7f:5e:89: b4:69:45:da:04:0b:39:95:3e:c9:8a:43:fc:2c:b7: 79:37:94:b6:ea:23:8b:0d:b6:13:90:33:a8:54:56: 43:a2:0a:6a:74:39:00:df:dd:f7:ee:42:86:c7:f7: 8b:3b:4e:8e:48:91:27:34:8f:29:40:4f:48:85:a4: d3:fd:82:d1:19:2b:aa:84:fd:e7:6c:c1:8a:20:ca: a8:7b:01:c5:4e:76:d5:43:a4:d2:dc:0a:d8:01:25: a5:80:a3:6b:08:4a:b6:50:61:5e:5d:6b:dc:c0:a5: b9:94:3a:ee:2d:19:64:4b:45:05:bc:ee:1e:69:d2: 26:f9:5f:cc:da:5c:c1:dd:4d:de:f7:ef:59:86:c6: a7:c3:f5:2a:b4:8e:b5:51:06:64:41:5a:ff:cb:ec: bf:8d:87:ad:a5:3a:08:14:b1:00:2e:d9:84:2d:bc: fa:94:0a:da:97:2d:0b:12:ae:d4:56:17:22:36:b3: a9:ee:73:ed:ec:5f:f7:86:08:98:9b:c8:c9:9f:7e: 3e:d1:ac:7f:b0:9a:90:4d:ea:28:7f:e1:98:89:03: 2c:9a:e3:fd:59:31:82:f2:e2:f1:41:41:64:19:82: 80:da:38:0b:5f:0f:e8:41:8e:4b:48:3d:7f:55:79: bf:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:55:4A:5D:D8:E2:78:B8:B3:86:84:C6:FB:F4:EF:DA:01:A4:29:9E X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d1:a0:01:dd:ad:a3:dd:37:6c:95:12:74:e3:24:b0:06:d7: 4e:03:ab:27:4a:c4:db:e0:64:0f:55:fa:a5:95:3d:33:8d:09: 41:8d:6a:c7:b1:4e:b1:d8:4f:6a:70:ef:2d:70:c8:16:ec:9a: 9a:51:c0:40:3b:6c:16:7e:30:fb:a9:60:77:37:f1:77:93:32: c0:fb:a0:d7:dc:9d:79:0f:a3:d4:0c:91:5b:e1:a6:0e:f6:5d: b6:cb:d7:db:cb:52:81:2f:dd:b6:2f:7d:30:13:08:e3:ca:82: 20:75:09:1d:27:81:0a:f5:9f:32:2e:be:5c:32:86:ab:ae:60: 88:13:c3:38:0a:7b:80:dd:c9:b4:dd:3f:8d:3a:3a:74:fd:58: d9:2e:3c:32:b2:36:32:22:87:67:19:53:6d:90:76:a5:3e:cc: 41:68:95:90:d9:c9:5f:30:32:c8:b6:62:53:97:3e:d5:63:d0: a0:47:3e:ae:54:c4:98:af:1f:75:e7:ae:99:dd:20:ad:a6:6c: bd:73:95:e8:ad:1b:56:49:1d:a7:70:99:c4:9f:61:d9:a6:a4: ae:d7:f6:c8:d8:79:af:66:b7:9d:a9:59:10:4c:2b:c8:dd:43: e5:87:04:29:c1:bf:2e:f6:c9:37:ce:61:06:3b:40:c0:85:4e: 4e:90:fe:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjUwNDI0MjAwMDM2WhcNMjUwNTAxMjAwMDM2WjAYMRYwFAYD VQQDEw02ODBhOTg2NC02OTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+Is4T9boMVg5Ud/Xom0aUXaBAs5lT7JikP8LLd5N5S26iOLDbYTkDOoVFZD ogpqdDkA39337kKGx/eLO06OSJEnNI8pQE9IhaTT/YLRGSuqhP3nbMGKIMqoewHF TnbVQ6TS3ArYASWlgKNrCEq2UGFeXWvcwKW5lDruLRlkS0UFvO4eadIm+V/M2lzB 3U3e9+9Zhsanw/UqtI61UQZkQVr/y+y/jYetpToIFLEALtmELbz6lAraly0LEq7U VhciNrOp7nPt7F/3hgiYm8jJn34+0ax/sJqQTeoof+GYiQMsmuP9WTGC8uLxQUFk GYKA2jgLXw/oQY5LSD1/VXm/yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBVSl3Y 4ni4s4aExvv079oBpCmeMB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY2Qy85RTMxRjNCMjhBQjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9z c1FlSU92MDNWX3FQY0tNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS0aAB3a2j3TdslRJ04ySwBtdOA6snSsTb4GQPVfqllT0zjQlBjWrH sU6x2E9qcO8tcMgW7JqaUcBAO2wWfjD7qWB3N/F3kzLA+6DX3J15D6PUDJFb4aYO 9l22y9fby1KBL922L30wEwjjyoIgdQkdJ4EK9Z8yLr5cMoarrmCIE8M4CnuA3cm0 3T+NOjp0/VjZLjwysjYyIodnGVNtkHalPsxBaJWQ2clfMDLItmJTlz7VY9CgRz6u VMSYrx91566Z3SCtpmy9c5XorRtWSR2ncJnEn2HZpqSu1/bI2HmvZredqVkQTCvI 3UPlhwQpwb8u9sk3zmEGO0DAhU5OkP6Q -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:26 2025 by rpki-client