$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft File: 446z9aUQfjDwynHd6nWxcNCwMlY.mft (raw, json) Hash identifier: mm330SqvHRBaJrvReUexbtjHi7U0JZ5sbYFDnngTIkQ= Subject key identifier: 4E:3B:18:A9:F6:0D:48:6A:9D:89:92:06:3D:4F:48:98:38:B6:C4:C6 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft Manifest number: B1 Signing time: Fri 25 Apr 2025 05:08:20 +0000 Manifest this update: Fri 25 Apr 2025 05:08:19 +0000 Manifest next update: Fri 02 May 2025 05:08:19 +0000 Files and hashes: 1: 446z9aUQfjDwynHd6nWxcNCwMlY.crl (hash: UUiWr53lzR4JN8t5AVdeqQCYcOdw3MNs4UM4AceTxPQ=) 2: CEA2276C1AD511F0A8A8811CC4F9AE02.roa (hash: 2A1lG71X8xYaIUoTChjegPu89TboGvrn5Fad8OHtf1k=) 3: B84D6D3AF81811EFACB5925BC4F9AE02.roa (hash: OXnTHrIuW8lqh4Zru5Af4wCTMKEnL5QDhv8/K+4cKxI=) 4: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (hash: NdbphxCCW/0QaYFIIuCoc2s3U5MsSxFLdZGoiC7E3Ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560, serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Apr 25 05:08:19 2025 GMT Not After : May 2 05:08:19 2025 GMT Subject: CN=680b18c4-5951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dd:25:13:7b:2d:ef:f0:d2:58:8d:67:ca:ed: 05:c4:ba:4f:c9:58:ee:d8:37:83:3f:09:b8:2f:aa: 1b:f4:ed:b7:3b:14:e0:51:15:a8:4b:3a:20:95:79: 13:13:b1:f5:0e:3b:f2:1e:79:d3:57:ec:d3:49:85: 45:c4:e0:fd:f5:87:30:1c:63:4d:1e:f7:d0:08:bd: 94:ce:cd:5a:cb:77:6b:0c:6c:b6:98:9e:11:33:74: 0c:3e:89:29:32:f2:d1:94:c2:07:7d:6c:83:ae:71: b9:94:6f:e8:82:fc:3e:a8:55:9b:0b:c8:ab:0b:7b: b9:95:00:30:bf:58:d3:5f:ac:5b:c3:c7:5d:db:10: 39:5a:57:f6:ed:97:b4:9e:fb:08:2e:a4:34:f3:3d: 4a:59:a7:11:ee:97:d2:95:0d:f5:af:c7:08:7f:15: 27:cf:19:7a:41:e4:f7:6a:eb:d5:bb:51:72:a3:39: f7:fc:cb:e5:43:c7:a6:03:1e:c2:c9:f9:be:7f:2b: e8:15:b8:b5:81:28:44:53:c5:f7:8c:37:1c:86:39: e0:c8:16:fb:9e:0c:30:28:20:d5:f7:71:71:b0:b2: c2:23:4d:fd:fd:c4:df:38:3c:4a:e5:a7:6d:cb:04: 26:7e:b1:d8:0a:ad:35:51:e0:73:84:0e:ff:9e:00: e3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3B:18:A9:F6:0D:48:6A:9D:89:92:06:3D:4F:48:98:38:B6:C4:C6 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ce:db:ec:f1:a9:d4:36:a3:d6:36:76:e6:07:d3:ef:8d:70: f3:6e:a3:29:30:c6:0b:c2:33:fd:2b:12:db:cb:80:52:11:13: d2:b5:cd:0e:1a:08:ee:50:cd:03:e0:93:9f:33:02:bc:62:2a: dd:ba:07:14:26:4e:d3:18:e0:7c:ae:a2:f4:af:2b:39:ef:7f: 04:df:8a:28:2c:cb:1a:68:4e:49:86:90:51:95:f5:5e:be:de: b1:f7:d9:3a:81:0b:85:f1:05:d6:00:68:a9:6e:b4:6f:17:39: 34:73:db:4d:47:ef:d2:97:2d:58:22:0d:c8:7f:32:dc:65:b8: a5:2f:ac:af:e3:1a:d8:31:32:7b:1f:50:d6:b3:12:8d:86:79: 85:0b:45:65:55:35:86:56:23:d2:50:e1:c2:49:df:9a:92:98: bd:d6:35:8b:18:d2:2c:01:13:de:87:93:81:c7:03:6b:27:44: 77:56:aa:55:8e:63:5d:04:8b:f2:92:9d:a7:ba:b6:bb:80:fb: e9:1c:5e:ce:5f:3a:77:ca:7a:2d:e6:3c:e0:b7:ad:49:fd:0d: 28:0c:94:c4:53:54:c3:ec:05:b8:01:53:b8:b5:a2:2c:b7:c5: 89:e7:c2:a4:45:25:64:d7:b7:5c:dd:2f:ae:e1:aa:70:18:92: a1:b1:7f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NjAxMTAvBgNVBAUTKEUzOEVCM0Y1QTUxMDdFMzBGMENBNzFEREVBNzVCMTcw RDBCMDMyNTYwHhcNMjUwNDI1MDUwODE5WhcNMjUwNTAyMDUwODE5WjAYMRYwFAYD VQQDEw02ODBiMThjNC01OTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d0lE3st7/DSWI1nyu0FxLpPyVju2DeDPwm4L6ob9O23OxTgURWoSzoglXkT E7H1DjvyHnnTV+zTSYVFxOD99YcwHGNNHvfQCL2Uzs1ay3drDGy2mJ4RM3QMPokp MvLRlMIHfWyDrnG5lG/ogvw+qFWbC8irC3u5lQAwv1jTX6xbw8dd2xA5Wlf27Ze0 nvsILqQ08z1KWacR7pfSlQ31r8cIfxUnzxl6QeT3auvVu1Fyozn3/MvlQ8emAx7C yfm+fyvoFbi1gShEU8X3jDcchjngyBb7ngwwKCDV93FxsLLCI039/cTfODxK5adt ywQmfrHYCq01UeBzhA7/ngDjPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE47GKn2 DUhqnYmSBj1PSJg4tsTGMB8GA1UdIwQYMBaAFOOOs/WlEH4w8Mpx3ep1sXDQsDJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU2MC80QzNENkJDMDIx NkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZqRHd5bkhkNm5XeGNOQ3dN bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01sWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZq RHd5bkhkNm5XeGNOQ3dNbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzztvs8anUNqPWNnbmB9PvjXDzbqMpMMYLwjP9KxLby4BSERPStc0O GgjuUM0D4JOfMwK8YirdugcUJk7TGOB8rqL0rys5738E34ooLMsaaE5JhpBRlfVe vt6x99k6gQuF8QXWAGipbrRvFzk0c9tNR+/Sly1YIg3IfzLcZbilL6yv4xrYMTJ7 H1DWsxKNhnmFC0VlVTWGViPSUOHCSd+akpi91jWLGNIsARPeh5OBxwNrJ0R3VqpV jmNdBIvykp2nura7gPvpHF7OXzp3ynot5jzgt61J/Q0oDJTEU1TD7AW4AVO4taIs t8WJ58KkRSVk17dc3S+u4apwGJKhsX/J -----END CERTIFICATE-----Generated at Sat Apr 26 12:39:38 2025 by rpki-client