$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft File: 7JW4qElym6bvhCxjcarUrH2PIfc.mft (raw, json) Hash identifier: h7cX3ONI76gLR3icyZMJ8uJcw9JCgG8415tOFl0kJbw= Subject key identifier: 49:82:70:42:94:69:B2:F5:4C:09:B4:D7:B4:3F:84:27:51:C5:E6:59 Authority key identifier: EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7 Certificate issuer: /CN=A91A759F/serialNumber=EC95B8A849729BA6EF842C6371AAD4AC7D8F21F7 Certificate serial: 32F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft Manifest number: 3BDC Signing time: Thu 24 Apr 2025 15:21:41 +0000 Manifest this update: Thu 24 Apr 2025 15:21:41 +0000 Manifest next update: Thu 01 May 2025 15:21:41 +0000 Files and hashes: 1: 7JW4qElym6bvhCxjcarUrH2PIfc.crl (hash: SpGKWW8WoTHOmMWdcx5PJW0tMbVhZgzIbwaNjL8cuTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13041 (0x32f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F, serialNumber=EC95B8A849729BA6EF842C6371AAD4AC7D8F21F7 Validity Not Before: Apr 24 15:21:41 2025 GMT Not After : May 1 15:21:41 2025 GMT Subject: CN=680a5705-2622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:38:b3:16:22:7f:07:0e:b9:1d:a4:af:6e:4e: 41:97:be:03:3e:2f:af:e0:cd:d4:99:e1:b0:74:d7: c4:a0:e2:a0:b7:cf:80:85:11:ce:b3:84:ce:ce:53: f1:af:97:79:61:46:54:db:75:1c:2c:aa:38:51:46: f4:1f:54:6a:ff:91:ad:af:25:14:67:42:49:12:e3: b9:33:84:8b:70:70:07:a0:c8:cc:29:17:72:2e:87: 15:d5:ac:54:28:89:cc:9c:4c:f7:8b:6b:eb:85:b3: 85:20:a3:13:87:8c:df:84:1f:ce:61:df:8e:bb:d3: cb:b1:3f:c9:7c:dc:b4:b3:ea:d9:c7:b4:71:a0:97: 08:a3:a7:0b:43:d0:7d:f7:11:a7:77:b7:ff:ae:91: e2:50:03:db:02:94:26:e9:01:04:c1:be:31:3a:4f: 60:48:45:ef:3a:56:2b:79:09:50:5b:cf:a4:70:41: 0d:91:52:3a:19:f2:1b:7c:4e:4a:4f:86:e9:da:63: 53:8d:89:df:57:6f:84:7c:c2:75:51:3b:d6:25:d1: 11:80:28:04:88:62:8d:d6:45:c4:cf:49:f7:13:f8: 8b:85:0a:69:0f:ac:66:7a:c0:30:51:ad:69:16:d6: 12:8a:1b:72:5c:6a:8f:80:36:b7:78:30:2e:42:4f: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:82:70:42:94:69:B2:F5:4C:09:B4:D7:B4:3F:84:27:51:C5:E6:59 X509v3 Authority Key Identifier: keyid:EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:8b:8d:02:fa:4f:0b:e4:11:e5:95:2b:0d:6e:50:d7:d2:7d: cd:5e:56:ac:ec:33:3f:a9:61:a5:6e:71:4e:67:ba:d9:a1:41: 85:49:d0:06:0e:cb:80:4a:06:b0:17:2e:3d:b9:47:b8:7b:6c: 97:3e:8e:b3:7e:de:c5:f9:cd:06:09:87:7a:58:cc:7e:e0:35: 58:b7:1f:1d:e9:52:00:13:df:a0:1a:2a:43:02:21:cf:8d:c1: f1:f9:e0:1d:6f:8d:68:ec:9d:36:01:2c:d5:b8:bd:15:56:d7: c8:69:c1:e5:2b:6c:d7:e8:5f:13:27:fd:e7:95:79:1b:62:e1: f5:34:d8:48:76:e7:d0:e2:32:d1:b1:93:24:69:5b:01:2f:14: ef:f3:a4:5e:67:8c:40:9b:85:ae:8d:bf:0f:f0:bb:36:cc:87: f6:11:e0:74:3a:d8:54:ca:33:2d:3b:64:8b:3d:59:82:3c:fb: 80:8a:35:b8:06:77:ce:d0:cd:64:2a:b5:96:88:4b:d3:56:e2: 94:bc:bf:0f:c6:54:ff:7d:e9:48:13:2c:e1:3a:30:9b:4c:2a: 14:0a:85:85:90:ed:c3:c0:65:cd:44:b8:d2:8d:64:1d:45:21: 29:96:ee:a6:2c:5b:e5:48:bf:45:8f:1c:08:63:53:b9:e9:6b: f9:de:a2:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKEVDOTVCOEE4NDk3MjlCQTZFRjg0MkM2MzcxQUFENEFD N0Q4RjIxRjcwHhcNMjUwNDI0MTUyMTQxWhcNMjUwNTAxMTUyMTQxWjAYMRYwFAYD VQQDEw02ODBhNTcwNS0yNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDizFiJ/Bw65HaSvbk5Bl74DPi+v4M3UmeGwdNfEoOKgt8+AhRHOs4TOzlPx r5d5YUZU23UcLKo4UUb0H1Rq/5GtryUUZ0JJEuO5M4SLcHAHoMjMKRdyLocV1axU KInMnEz3i2vrhbOFIKMTh4zfhB/OYd+Ou9PLsT/JfNy0s+rZx7RxoJcIo6cLQ9B9 9xGnd7f/rpHiUAPbApQm6QEEwb4xOk9gSEXvOlYreQlQW8+kcEENkVI6GfIbfE5K T4bp2mNTjYnfV2+EfMJ1UTvWJdERgCgEiGKN1kXEz0n3E/iLhQppD6xmesAwUa1p FtYSihtyXGqPgDa3eDAuQk89TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmCcEKU abL1TAm017Q/hCdRxeZZMB8GA1UdIwQYMBaAFOyVuKhJcpum74QsY3Gq1Kx9jyH3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC83Slc0cUVseW02YnZoQ3hqY2FyVXJIMlBJ ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdKVzRxRWx5bTZidmhDeGpjYXJVckgyUElmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC83Slc0cUVseW02 YnZoQ3hqY2FyVXJIMlBJZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBei40C+k8L5BHllSsNblDX0n3NXlas7DM/qWGlbnFOZ7rZoUGFSdAG DsuASgawFy49uUe4e2yXPo6zft7F+c0GCYd6WMx+4DVYtx8d6VIAE9+gGipDAiHP jcHx+eAdb41o7J02ASzVuL0VVtfIacHlK2zX6F8TJ/3nlXkbYuH1NNhIdufQ4jLR sZMkaVsBLxTv86ReZ4xAm4Wujb8P8Ls2zIf2EeB0OthUyjMtO2SLPVmCPPuAijW4 BnfO0M1kKrWWiEvTVuKUvL8PxlT/felIEyzhOjCbTCoUCoWFkO3DwGXNRLjSjWQd RSEplu6mLFvlSL9FjxwIY1O56Wv53qLC -----END CERTIFICATE-----Generated at Sat Apr 26 09:23:48 2025 by rpki-client