$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft File: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft (raw, json) Hash identifier: 1WXsuKvWmZyQBwR/QA2/2UCchYWyuz/rgchg5X7Bvho= Subject key identifier: F9:D3:30:51:C1:10:3B:32:93:CB:80:3B:4B:99:00:74:D5:3D:E1:F1 Authority key identifier: 05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D Certificate issuer: /CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft Manifest number: 0106 Signing time: Fri 25 Apr 2025 04:10:48 +0000 Manifest this update: Fri 25 Apr 2025 04:10:47 +0000 Manifest next update: Fri 02 May 2025 04:10:47 +0000 Files and hashes: 1: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl (hash: 5FpN/D/Dj1UOoFuy8dU1J2Oawrd70DhJRmNjtrdyNFA=) 2: 134D519098B711EE99FD1F09C4F9AE02.roa (hash: vJ2YKh1qvo6z7EsNb01ZnfIC7WfZlHkFbVKbRaXaFP0=) 3: 13E4471298B711EE99FD1F09C4F9AE02.roa (hash: /ZzSx5BufcsBFJm8hzU4SO+vyDuIxcR/d9CCuElSRT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3526, serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Validity Not Before: Apr 25 04:10:47 2025 GMT Not After : May 2 04:10:47 2025 GMT Subject: CN=680b0b47-1f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:cd:74:6a:7a:2b:d3:23:b1:bf:e7:f9:ec: ac:07:bd:e7:01:4b:2d:b0:3e:54:12:67:0b:c2:b0: 11:84:41:3c:04:d7:42:9b:ed:22:aa:82:12:30:28: 9a:a5:4a:53:c1:2a:fd:e2:d6:52:da:b1:4f:10:0f: ef:07:7b:8b:f6:50:fb:67:77:3f:05:52:19:50:f0: 96:d8:12:dd:64:dd:0f:ee:7a:3a:f9:3a:29:32:bb: b4:34:e1:bf:75:a5:f9:21:53:68:a6:c9:24:17:0b: 3a:05:94:ad:73:b2:98:c2:52:00:bb:ca:93:bc:ef: 3f:b0:4f:22:7c:c4:a9:1e:b4:55:ed:fb:23:7a:04: 34:52:2b:a9:1c:ca:ab:c8:33:81:0c:57:1f:fe:a5: 22:a5:46:84:43:6a:64:79:09:b9:ae:16:25:57:d1: 3f:8c:19:55:1a:58:f4:db:a9:8f:be:ea:12:c6:58: 18:63:65:d7:ab:47:5d:8c:8e:91:30:26:e8:d5:b7: 27:2d:e1:ee:97:11:22:b2:b3:d3:8f:62:68:77:d8: 13:e2:58:69:d6:c2:46:aa:41:12:01:a4:ad:a9:78: fa:3c:01:ad:ad:89:96:97:0b:4b:58:58:7e:e4:ed: e2:be:47:77:02:6a:7a:bd:1b:78:41:1b:68:90:8b: 9e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D3:30:51:C1:10:3B:32:93:CB:80:3B:4B:99:00:74:D5:3D:E1:F1 X509v3 Authority Key Identifier: keyid:05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:9b:f7:51:82:f4:e4:0f:5e:96:2f:dd:b4:7d:df:a4:1a:fd: 2d:cf:4d:80:fe:d8:5f:18:6a:f9:4c:a5:04:40:07:81:49:0b: cd:6a:1c:ff:f8:55:e2:5a:6e:be:c3:4d:95:eb:c4:44:b1:25: c3:19:a6:9b:fc:0d:32:4f:7b:d0:26:d3:58:a8:7a:7e:d0:dc: 25:94:ed:78:ea:e7:32:40:fe:4e:8a:c1:59:6f:e3:80:c7:54: fe:b7:53:6c:9e:76:1d:4e:90:35:57:e4:98:0d:69:41:f3:4e: 95:d5:c7:e6:71:61:18:74:b6:5f:bb:6e:d8:7f:2b:46:25:bb: 7f:d0:51:7c:60:f5:f6:a3:f6:a6:03:b3:d7:a6:e1:00:65:98: 5b:05:a6:c1:75:42:fd:d3:40:a4:42:9c:c5:ab:d2:86:17:0d: c6:3f:d9:42:45:64:e9:e9:8e:85:de:1e:a4:76:4c:6b:a8:79: 6e:d7:3c:dc:4b:fe:7e:80:46:a3:0f:6b:16:73:5e:25:fa:a2: d5:8e:c5:c4:27:bd:c9:97:86:9b:d4:ac:ba:fe:f0:0c:b8:ab: dc:d2:ad:31:be:85:ac:1a:0f:bf:11:1a:39:e0:c9:e7:02:70: 64:5d:0e:e6:b4:8a:64:81:1a:71:6c:5b:5f:bf:35:40:19:2e: 92:f1:7f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MjYxMTAvBgNVBAUTKDA1RkQyRDUxOUQ0MENCMjA4OTM3QkY4QThFNDYzRTZE ODQyQ0MwN0QwHhcNMjUwNDI1MDQxMDQ3WhcNMjUwNTAyMDQxMDQ3WjAYMRYwFAYD VQQDEw02ODBiMGI0Ny0xZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArODNdGp6K9Mjsb/n+eysB73nAUstsD5UEmcLwrARhEE8BNdCm+0iqoISMCia pUpTwSr94tZS2rFPEA/vB3uL9lD7Z3c/BVIZUPCW2BLdZN0P7no6+TopMru0NOG/ daX5IVNopskkFws6BZStc7KYwlIAu8qTvO8/sE8ifMSpHrRV7fsjegQ0UiupHMqr yDOBDFcf/qUipUaEQ2pkeQm5rhYlV9E/jBlVGlj026mPvuoSxlgYY2XXq0ddjI6R MCbo1bcnLeHulxEisrPTj2Jod9gT4lhp1sJGqkESAaStqXj6PAGtrYmWlwtLWFh+ 5O3ivkd3Amp6vRt4QRtokIueywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnTMFHB EDsyk8uAO0uZAHTVPeHxMB8GA1UdIwQYMBaAFAX9LVGdQMsgiTe/io5GPm2ELMB9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyNi9BMTNDNTVDRTk4 QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5Q0pONy1LamtZLWJZUXN3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmMHRVWjFBeXlDSk43LUtqa1ktYllRc3dIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyNi9BMTNDNTVDRTk4QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5 Q0pONy1LamtZLWJZUXN3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKm/dRgvTkD16WL920fd+kGv0tz02A/thfGGr5TKUEQAeBSQvNahz/ +FXiWm6+w02V68REsSXDGaab/A0yT3vQJtNYqHp+0NwllO146ucyQP5OisFZb+OA x1T+t1NsnnYdTpA1V+SYDWlB806V1cfmcWEYdLZfu27YfytGJbt/0FF8YPX2o/am A7PXpuEAZZhbBabBdUL900CkQpzFq9KGFw3GP9lCRWTp6Y6F3h6kdkxrqHlu1zzc S/5+gEajD2sWc14l+qLVjsXEJ73Jl4ab1Ky6/vAMuKvc0q0xvoWsGg+/ERo54Mnn AnBkXQ7mtIpkgRpxbFtfvzVAGS6S8X8Z -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:51 2025 by rpki-client