$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: L03WG8QRDd1PvWWxYgH7gKEIgacMr6b3NckZZP+dVN0= Subject key identifier: 5E:BD:38:2A:24:8C:44:22:E8:87:84:13:F8:79:B4:FD:F0:10:8D:9B Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 07 Signing time: Fri 25 Apr 2025 07:09:22 +0000 Manifest this update: Fri 25 Apr 2025 07:09:21 +0000 Manifest next update: Fri 02 May 2025 07:09:21 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: 7STFnIEpVzTTPXBMGEXahilUzRNHzfpxnG3CttEH11Q=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Apr 25 07:09:21 2025 GMT Not After : May 2 07:09:21 2025 GMT Subject: CN=680b3522-ec3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:94:b3:8a:9c:db:8b:a9:41:7f:d4:94:03: 34:e1:d8:ed:38:25:d1:88:de:9c:ab:92:46:c1:2b: 27:38:be:a9:db:5d:8a:d3:53:7b:35:b0:8a:68:04: 7d:9a:84:01:61:b1:bd:40:d3:42:33:b5:3a:41:8a: 2f:5c:bd:75:61:fe:db:8a:ee:7d:41:05:f3:73:de: 4e:db:34:da:31:5d:fc:13:b9:f0:a5:fd:ca:a2:11: 95:0f:c6:46:28:c7:22:ab:95:b3:a4:13:40:dd:9d: 9b:0e:3a:5d:ff:96:2f:1c:cf:4e:97:d5:c2:e0:98: 3d:65:87:7e:ea:40:ca:f2:51:1b:01:8d:91:99:be: 8d:ce:9b:22:07:70:f6:a9:d0:a8:14:02:65:e8:cf: 69:e1:cd:20:e4:a4:bc:fb:6a:ad:31:cf:9d:b4:9b: 22:da:6e:fe:dd:1f:56:97:97:00:5c:5f:f7:2b:a1: 82:5c:9e:d4:66:f1:7b:9a:29:5b:ae:b3:a4:bd:02: 31:ec:be:38:87:09:61:36:12:9e:e9:69:ca:15:cd: d2:e9:9e:34:6b:e2:22:e5:dd:89:7e:41:dc:5d:eb: fa:02:e5:9f:d1:04:d4:e2:94:81:bd:e8:e1:6d:d8: f9:3c:0d:c2:28:5b:5e:34:e0:a3:63:fb:85:b5:d1: 7e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BD:38:2A:24:8C:44:22:E8:87:84:13:F8:79:B4:FD:F0:10:8D:9B X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:36:ff:ad:54:af:23:71:dc:91:06:e7:8b:af:44:a3:83:ba: 65:88:bd:56:f7:c4:8a:17:65:47:64:f5:68:e0:7b:5f:87:ca: f5:ae:78:6f:58:81:18:ea:9a:e2:a1:b8:b2:66:ee:f8:90:27: 9e:63:59:e6:9a:bb:08:a1:08:2f:1b:e5:c3:9b:46:0a:23:10: 53:9d:bd:7a:33:9b:f2:66:18:ca:d9:a2:3a:f3:3e:56:c2:0a: ca:04:4e:4c:0a:f1:fa:93:8d:90:8e:ff:78:3d:4b:c7:2b:4b: ab:b9:97:36:2f:f8:90:8d:d6:b9:17:ec:bb:8f:98:1b:23:82: fb:bf:12:03:f8:c0:2f:12:6b:81:99:0f:3b:23:1d:71:99:10: 8f:2f:41:82:c9:5c:ad:f4:55:1b:6f:2c:72:b9:1d:15:85:1f: df:b8:44:79:e5:f6:da:8f:77:87:ba:59:21:d0:0c:b5:e6:79: 2e:bb:c0:01:52:d8:52:19:ab:9d:20:b9:de:78:36:1d:b3:84: a6:76:3d:a0:0e:c0:af:79:de:87:b6:91:9a:6f:d0:74:98:72: 9d:93:b5:7c:49:e5:05:3a:73:85:b3:ff:83:5a:be:1c:95:07: 34:30:f3:6e:d4:53:c2:ff:67:03:c7:d0:a1:37:35:ca:95:6d: 62:5f:61:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTA0MjUwNzA5MjFaFw0yNTA1MDIwNzA5MjFaMBgxFjAUBgNV BAMTDTY4MGIzNTIyLWVjM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq55Szipzbi6lBf9SUAzTh2O04JdGI3pyrkkbBKyc4vqnbXYrTU3s1sIpoBH2a hAFhsb1A00IztTpBii9cvXVh/tuK7n1BBfNz3k7bNNoxXfwTufCl/cqiEZUPxkYo xyKrlbOkE0DdnZsOOl3/li8cz06X1cLgmD1lh37qQMryURsBjZGZvo3OmyIHcPap 0KgUAmXoz2nhzSDkpLz7aq0xz520myLabv7dH1aXlwBcX/croYJcntRm8XuaKVuu s6S9AjHsvjiHCWE2Ep7pacoVzdLpnjRr4iLl3Yl+Qdxd6/oC5Z/RBNTilIG96OFt 2Pk8DcIoW1404KNj+4W10X45AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXr04KiSM RCLoh4QT+Hm0/fAQjZswHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE82/61UryNx3JEG54uvRKODumWIvVb3xIoXZUdk9Wjge1+HyvWueG9Y gRjqmuKhuLJm7viQJ55jWeaauwihCC8b5cObRgojEFOdvXozm/JmGMrZojrzPlbC CsoETkwK8fqTjZCO/3g9S8crS6u5lzYv+JCN1rkX7LuPmBsjgvu/EgP4wC8Sa4GZ DzsjHXGZEI8vQYLJXK30VRtvLHK5HRWFH9+4RHnl9tqPd4e6WSHQDLXmeS67wAFS 2FIZq50gud54Nh2zhKZ2PaAOwK953oe2kZpv0HSYcp2TtXxJ5QU6c4Wz/4NavhyV BzQw827UU8L/ZwPH0KE3NcqVbWJfYXY= -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:05 2025 by rpki-client