$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: S2bJfOv1K90aJQYbG8jRCDp36Xg2crf+lhQJHed3wbc= Subject key identifier: D6:32:A5:6E:C5:31:FD:FE:DF:C7:62:24:C1:D0:B0:F0:F2:96:03:2E Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 50 Signing time: Thu 24 Apr 2025 22:52:45 +0000 Manifest this update: Thu 24 Apr 2025 22:52:44 +0000 Manifest next update: Thu 01 May 2025 22:52:44 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: Q8+NN/QA036owqAw3TRTxJJnun3vrNgG5Rn8yC0gJHY=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 2bzYWZhSZUzBimn1IglwPv7AEhVCAaK8feLQOEL571A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Apr 24 22:52:44 2025 GMT Not After : May 1 22:52:44 2025 GMT Subject: CN=680ac0bc-fec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:82:cf:a5:95:77:58:bd:a2:4d:e0:75:cc: c4:e4:55:d8:4b:77:0e:b7:5f:61:be:ef:0a:40:a0: 02:96:bc:ca:c5:8c:b5:91:c1:c9:3c:64:10:1b:11: df:e6:20:5a:4b:3b:5b:36:54:9a:19:59:d0:a3:bc: a8:30:01:a1:13:a2:a4:57:c1:f1:a8:6e:7f:ee:b2: 41:b5:a7:ae:1f:31:0f:a2:75:ec:0b:8d:40:6a:96: df:d0:4e:36:5b:b0:78:31:04:b3:7e:14:c6:cf:f4: 72:8b:1b:f1:05:2e:a0:f4:b8:9b:82:5a:df:96:a8: 79:74:62:5b:8e:39:a1:49:12:f8:bb:b9:13:fd:d6: 58:50:42:34:34:b0:75:f0:3b:c6:aa:4c:9a:ef:42: 99:66:48:47:81:f4:76:f2:92:4c:be:d0:87:31:02: 3d:45:7e:79:a8:b1:89:c1:ca:10:0c:75:e5:51:37: e2:b2:4c:f8:d7:25:6c:c7:47:39:36:e2:79:fd:bb: 2c:19:34:ff:1d:bb:2a:f5:4a:6c:09:c3:c8:76:15: 94:78:e8:c3:ba:b3:a3:d2:05:a7:b2:46:2e:04:c2: 7a:e8:63:db:d7:9e:ce:d8:8f:17:47:7b:ca:c6:ce: 9b:51:83:a2:61:97:3b:71:58:43:c2:82:bd:e2:90: 7c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:32:A5:6E:C5:31:FD:FE:DF:C7:62:24:C1:D0:B0:F0:F2:96:03:2E X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:14:b2:5a:bf:ee:b3:1e:c9:79:c7:a6:ee:71:97:c5:cb:a8: 7a:36:4a:4c:65:c9:e3:0e:f0:34:b9:5e:5e:d9:ee:b8:f6:50: 75:4e:e1:c2:aa:9a:f5:5f:8d:31:be:9a:36:f9:1b:5b:dd:fd: b3:25:88:69:e8:ef:31:2b:52:40:35:9c:49:bc:4e:e5:b1:de: 8e:24:8a:b0:d9:e7:58:f9:99:6f:d2:49:cb:45:75:e4:dd:0d: 76:03:be:73:ac:77:a6:71:d2:20:27:e4:f9:ef:2a:d6:7a:ad: 55:33:96:13:eb:bf:10:13:51:82:d5:90:e7:fa:e2:0f:56:9f: 90:12:67:f9:57:1a:ad:fc:56:5b:55:3f:2a:18:91:d2:7b:19: 52:b1:aa:cc:0d:14:48:b7:29:e7:13:ff:ef:c2:c3:cc:b9:66: 1c:92:f2:17:85:4e:b1:e7:56:0e:4b:e2:c7:57:3c:85:6b:c7: 6a:0d:62:0f:9e:ad:87:16:08:74:42:ab:2d:2d:9d:32:bd:70: 86:6b:80:8e:9c:51:2b:c0:71:7b:46:2e:22:32:5c:44:a2:5d: f4:8f:2c:4b:ee:bd:c7:53:2e:d7:4a:10:cd:54:15:ef:c7:3c: d5:26:8e:80:b1:30:78:74:ee:2c:1b:f0:42:5a:59:ec:e5:10: 92:09:a3:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNTA0MjQyMjUyNDRaFw0yNTA1MDEyMjUyNDRaMBgxFjAUBgNV BAMTDTY4MGFjMGJjLWZlYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9TYLPpZV3WL2iTeB1zMTkVdhLdw63X2G+7wpAoAKWvMrFjLWRwck8ZBAbEd/m IFpLO1s2VJoZWdCjvKgwAaEToqRXwfGobn/uskG1p64fMQ+idewLjUBqlt/QTjZb sHgxBLN+FMbP9HKLG/EFLqD0uJuCWt+WqHl0YluOOaFJEvi7uRP91lhQQjQ0sHXw O8aqTJrvQplmSEeB9Hbykky+0IcxAj1FfnmosYnByhAMdeVRN+KyTPjXJWzHRzk2 4nn9uywZNP8duyr1SmwJw8h2FZR46MO6s6PSBaeyRi4EwnroY9vXns7YjxdHe8rG zptRg6JhlztxWEPCgr3ikHwbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1jKlbsUx /f7fx2IkwdCw8PKWAy4wHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjJELzZGODIxMTc4QUI4ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNn TlVHRjR5ZWZMZEU5dU9PWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF8Uslq/7rMeyXnHpu5xl8XLqHo2SkxlyeMO8DS5Xl7Z7rj2UHVO4cKq mvVfjTG+mjb5G1vd/bMliGno7zErUkA1nEm8TuWx3o4kirDZ51j5mW/SSctFdeTd DXYDvnOsd6Zx0iAn5PnvKtZ6rVUzlhPrvxATUYLVkOf64g9Wn5ASZ/lXGq38VltV PyoYkdJ7GVKxqswNFEi3KecT/+/Cw8y5ZhyS8heFTrHnVg5L4sdXPIVrx2oNYg+e rYcWCHRCqy0tnTK9cIZrgI6cUSvAcXtGLiIyXESiXfSPLEvuvcdTLtdKEM1UFe/H PNUmjoCxMHh07iwb8EJaWezlEJIJo2s= -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:23 2025 by rpki-client