$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft File: AQgOJC5FBGBlb__55qpDLh1A4lw.mft (raw, json) Hash identifier: d8MKN/1Pu6Jd/RtfsaTLlj1GP5qeDGfxjVwXbzsVgUs= Subject key identifier: CA:AF:2B:DE:11:68:37:89:70:E8:5E:5F:38:D9:22:6B:FC:1B:3E:FB Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 053C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft Manifest number: 0532 Signing time: Thu 24 Apr 2025 23:17:23 +0000 Manifest this update: Thu 24 Apr 2025 23:17:23 +0000 Manifest next update: Thu 01 May 2025 23:17:23 +0000 Files and hashes: 1: AQgOJC5FBGBlb__55qpDLh1A4lw.crl (hash: Ev8FvkCW8V4fF5avVWeVCVKJ2ObGNpUmM/gQ0WUYHb4=) 2: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (hash: jezgNWeangYgvRMm1Nco5WCrmwhWUzw/oL8A7ZNwlsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1340 (0x53c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: Apr 24 23:17:23 2025 GMT Not After : May 1 23:17:23 2025 GMT Subject: CN=680ac683-f6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5a:2d:56:66:c5:23:a7:8d:21:81:fb:2a:8b: 8c:41:65:e8:d0:e5:a1:3a:c8:b4:4c:40:4e:23:7d: 68:6d:09:f6:6a:01:3f:23:b0:78:73:27:6f:cc:4e: c0:c0:0f:98:71:cd:ad:69:cf:d6:c9:a7:27:04:a8: 97:bc:fa:25:eb:44:c0:71:5e:2a:50:6f:60:9f:dd: 60:8e:1b:2a:07:47:8f:87:ad:3a:c3:16:6f:79:ef: bf:0b:cf:12:0d:5b:e4:86:1e:6f:4f:3a:c8:a2:e2: 36:c2:61:5c:be:6f:2a:89:2e:31:39:b7:8c:1d:71: 0e:64:25:f3:fb:fa:db:98:61:26:f4:2d:dd:64:51: 82:ee:92:d9:de:bd:ca:9c:0d:d7:20:dd:66:4a:18: 86:2b:0a:54:58:08:7a:ad:e3:e3:58:4c:1a:ef:09: b3:13:95:ad:53:45:d9:c8:16:62:f2:2e:2c:52:58: 5e:95:db:3d:16:e8:7c:5b:73:74:b6:9d:9b:0c:4e: 72:6b:a6:ad:7b:d1:8d:37:82:0d:b7:da:b8:cb:7e: 3e:be:5a:f5:5c:39:1a:6b:2a:86:6a:ab:c4:1a:92: 08:28:d2:17:97:3e:25:ef:c7:56:1e:3f:9f:0a:ed: 57:8b:65:2d:fe:fd:d0:ea:7d:b0:5d:67:7f:ab:23: a4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:AF:2B:DE:11:68:37:89:70:E8:5E:5F:38:D9:22:6B:FC:1B:3E:FB X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:15:40:4b:55:49:c1:ac:d8:88:77:22:71:51:c0:fd:80:25: c4:cf:22:ca:53:68:f5:ca:4f:29:78:f8:98:90:ec:1d:f5:96: 63:a5:21:07:68:0a:17:09:72:5c:8a:e0:ac:65:87:3c:0f:cb: 1b:ed:1c:80:f5:76:67:57:f7:8b:ac:18:ef:c5:d0:82:1b:19: c0:6e:44:60:ab:8e:e6:c1:c9:8f:67:a4:32:85:99:bd:e3:48: 3d:da:eb:79:b5:f6:81:e9:8e:40:f6:cb:85:7c:83:ce:ac:87: db:cd:92:84:05:9a:48:db:4c:3d:36:56:cc:68:52:fb:e5:b0: 72:44:0e:fe:81:dd:57:b6:ce:5d:70:4c:22:09:8d:7a:81:0c: df:df:63:94:04:b9:48:90:ad:41:d6:2d:09:66:aa:f8:44:99: 89:66:ff:d9:0a:40:2c:23:8b:b8:83:25:13:92:0e:04:69:dc: 38:60:af:94:14:36:cf:bf:50:d3:72:28:aa:ab:00:b0:f7:d3: 66:7b:9e:c8:76:79:df:e9:6b:27:c0:49:9f:a5:ee:2e:61:e8: b5:3f:6b:77:d9:cf:25:79:f1:7f:92:01:64:ef:98:31:70:f7: a2:2a:54:4c:e5:09:b9:fa:62:a1:ae:51:17:d0:03:c6:2c:b4: 12:41:c0:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUwNDI0MjMxNzIzWhcNMjUwNTAxMjMxNzIzWjAYMRYwFAYD VQQDEw02ODBhYzY4My1mNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1otVmbFI6eNIYH7KouMQWXo0OWhOsi0TEBOI31obQn2agE/I7B4cydvzE7A wA+Ycc2tac/WyacnBKiXvPol60TAcV4qUG9gn91gjhsqB0ePh606wxZvee+/C88S DVvkhh5vTzrIouI2wmFcvm8qiS4xObeMHXEOZCXz+/rbmGEm9C3dZFGC7pLZ3r3K nA3XIN1mShiGKwpUWAh6rePjWEwa7wmzE5WtU0XZyBZi8i4sUlhelds9Fuh8W3N0 tp2bDE5ya6ate9GNN4INt9q4y34+vlr1XDkaayqGaqvEGpIIKNIXlz4l78dWHj+f Cu1Xi2Ut/v3Q6n2wXWd/qyOk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqvK94R aDeJcOheXzjZImv8Gz77MB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVDMy84QTMzRDcyMEY0RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJH QmxiX181NXFwRExoMUE0bHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRFUBLVUnBrNiIdyJxUcD9gCXEzyLKU2j1yk8pePiYkOwd9ZZjpSEH aAoXCXJciuCsZYc8D8sb7RyA9XZnV/eLrBjvxdCCGxnAbkRgq47mwcmPZ6QyhZm9 40g92ut5tfaB6Y5A9suFfIPOrIfbzZKEBZpI20w9NlbMaFL75bByRA7+gd1Xts5d cEwiCY16gQzf32OUBLlIkK1B1i0JZqr4RJmJZv/ZCkAsI4u4gyUTkg4Eadw4YK+U FDbPv1DTciiqqwCw99Nme57Idnnf6WsnwEmfpe4uYei1P2t32c8lefF/kgFk75gx cPeiKlRM5Qm5+mKhrlEX0APGLLQSQcAU -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:54 2025 by rpki-client