$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: eUW1MhOF+aaecoqKO32cjMeJDitsuQR+FT1TRu/ByqE= Subject key identifier: 4A:1B:60:35:42:38:74:C0:4C:95:0E:FF:86:8D:4B:1E:AC:7A:32:96 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 026B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0268 Signing time: Fri 25 Apr 2025 01:30:07 +0000 Manifest this update: Fri 25 Apr 2025 01:30:07 +0000 Manifest next update: Fri 02 May 2025 01:30:07 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: n5YM3CEGvgB/9HaltlR9SfwYRJfJekQWR7pfhfnOxtM=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: 9zqxhpOangW9769mdxLoJSN4Rv/Y8CMGWvMe+D0Ah7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Apr 25 01:30:07 2025 GMT Not After : May 2 01:30:07 2025 GMT Subject: CN=680ae59f-cbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c5:19:94:be:7f:2c:8a:67:e3:a8:4e:98:aa: 0c:b3:f4:90:b8:e1:92:1a:87:de:cb:9f:38:e9:3a: ee:77:e3:af:33:45:cb:ff:c1:ce:44:04:4d:92:43: 04:c1:4f:b8:29:87:bf:b9:3c:ea:6f:32:0f:0e:16: a9:7a:1c:ef:aa:7a:b2:04:f8:e0:e1:d3:27:5d:c6: eb:05:92:e4:80:94:38:fc:09:b7:1f:a1:f4:29:20: 5f:38:9f:6a:bd:c4:d2:38:c9:f4:b1:fa:a9:70:3d: 88:14:aa:0c:12:b6:dc:35:0e:ae:01:ae:c7:d1:56: 30:55:9d:c1:68:2f:da:24:21:e3:4e:5f:de:58:1e: d4:25:28:8c:dc:94:aa:98:f6:0e:aa:c2:74:13:bc: d8:fb:90:c9:d9:2b:10:8c:8d:a7:4b:c0:c1:3a:85: 94:1a:72:4f:8d:14:0f:2e:62:ac:5f:bc:ff:c8:41: 4f:06:28:75:6d:76:d0:ee:95:7a:da:aa:1b:f3:41: 46:f9:f5:86:4d:0d:b8:b9:14:8a:5e:c5:b7:1a:86: d2:1a:5b:c0:89:02:93:c8:8b:10:4e:b9:51:db:4f: a0:51:ef:0b:4b:a6:32:b0:a0:17:67:99:c1:58:8a: 6a:13:7d:2f:d6:83:09:a7:5e:8e:99:77:a1:a1:e7: 1d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:1B:60:35:42:38:74:C0:4C:95:0E:FF:86:8D:4B:1E:AC:7A:32:96 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d0:6c:25:43:d8:d8:16:10:8b:07:fa:1d:83:20:6e:ef:1d: 96:60:f3:7f:35:a7:68:2c:99:bd:d9:e2:7c:c7:5e:1c:66:68: 7c:15:49:81:4a:0c:de:23:99:e9:c4:74:09:f7:ae:d2:77:d0: be:cf:fd:7d:7c:4b:64:ef:24:14:e8:96:cd:51:43:3a:35:94: be:84:48:64:54:ee:ab:7f:63:83:2f:00:47:cd:d0:03:1e:c7: 73:3e:bf:d6:55:3f:f3:12:15:98:ca:0f:0b:57:e0:82:87:39: a7:ea:51:80:54:07:b7:d4:bc:41:94:25:54:87:ec:e6:21:1f: f4:05:96:72:01:c9:0a:24:ac:23:b9:88:e6:0b:a0:23:4b:88: df:6f:a3:27:81:44:0c:c3:0e:78:f5:01:a1:28:7f:30:04:04: 9c:c5:1c:6d:7b:b4:88:46:9a:de:7c:e6:42:71:22:6a:b2:4e: 9b:27:57:67:f5:a5:a8:5d:7a:a8:16:94:b2:bb:2c:dc:3d:df: 63:ee:89:f9:b4:7a:7c:31:e6:f9:b8:09:7c:a8:6a:6d:00:e8: 59:79:c4:cc:3f:72:2a:0c:31:b3:3b:dd:b9:31:49:6b:07:83: 47:d8:35:5f:f2:a6:24:c9:eb:ba:54:af:06:3d:bc:de:72:4b: 0d:cb:b4:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNDI1MDEzMDA3WhcNMjUwNTAyMDEzMDA3WjAYMRYwFAYD VQQDEw02ODBhZTU5Zi1jYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cUZlL5/LIpn46hOmKoMs/SQuOGSGofey5846Trud+OvM0XL/8HORARNkkME wU+4KYe/uTzqbzIPDhapehzvqnqyBPjg4dMnXcbrBZLkgJQ4/Am3H6H0KSBfOJ9q vcTSOMn0sfqpcD2IFKoMErbcNQ6uAa7H0VYwVZ3BaC/aJCHjTl/eWB7UJSiM3JSq mPYOqsJ0E7zY+5DJ2SsQjI2nS8DBOoWUGnJPjRQPLmKsX7z/yEFPBih1bXbQ7pV6 2qob80FG+fWGTQ24uRSKXsW3GobSGlvAiQKTyIsQTrlR20+gUe8LS6YysKAXZ5nB WIpqE30v1oMJp16OmXehoecdWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEobYDVC OHTATJUO/4aNSx6sejKWMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu0GwlQ9jYFhCLB/odgyBu7x2WYPN/NadoLJm92eJ8x14cZmh8FUmB SgzeI5npxHQJ967Sd9C+z/19fEtk7yQU6JbNUUM6NZS+hEhkVO6rf2ODLwBHzdAD HsdzPr/WVT/zEhWYyg8LV+CChzmn6lGAVAe31LxBlCVUh+zmIR/0BZZyAckKJKwj uYjmC6AjS4jfb6MngUQMww549QGhKH8wBAScxRxte7SIRprefOZCcSJqsk6bJ1dn 9aWoXXqoFpSyuyzcPd9j7on5tHp8Meb5uAl8qGptAOhZecTMP3IqDDGzO925MUlr B4NH2DVf8qYkyeu6VK8GPbzecksNy7Sx -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:53 2025 by rpki-client