$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: eK/wpOYIvLwLwvQ4qpFq8lLv+0kexI9bW1xVX7uS590= Subject key identifier: 3B:0F:7D:63:EC:96:70:AF:B8:F8:82:C8:10:84:03:A1:EA:02:2C:19 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 01B4 Signing time: Fri 25 Apr 2025 02:25:36 +0000 Manifest this update: Fri 25 Apr 2025 02:25:36 +0000 Manifest next update: Fri 02 May 2025 02:25:36 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: QreXmnExUf8xj6DwidqBUoi9mbun+/uVcnSqBVZrnpg=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: yk9nPTjP4U1qVXizgEWQziK8OtxwSvu99sQkiIJG/k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Apr 25 02:25:36 2025 GMT Not After : May 2 02:25:36 2025 GMT Subject: CN=680af2a0-2f19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b4:15:b0:01:c0:a7:42:d1:a2:2a:68:c3:af: 0b:fd:f5:1e:00:70:b5:97:e0:da:62:99:cf:b6:2d: 62:8b:77:dc:31:9a:9e:2c:42:d4:40:8f:8f:28:4b: 3c:02:f6:04:dd:01:39:98:97:61:67:df:b7:8b:41: 97:cd:1a:b7:10:f8:64:89:7a:84:e2:24:c9:7c:54: 43:01:9d:a7:1a:cc:3b:9e:77:9f:c1:7f:f2:5c:97: 58:d6:17:19:09:b8:75:a1:bf:f0:1a:b2:eb:06:7b: 65:9d:75:0a:ba:2c:79:3c:14:7f:24:f8:48:52:f8: 6e:d2:b8:8f:6c:13:28:46:e0:d1:a0:8e:65:b3:b7: 26:da:55:9b:d0:ee:7d:a7:f9:b2:0c:f0:70:80:0f: 95:18:7a:51:5e:f9:34:8c:17:89:05:c2:49:f4:57: 15:82:8b:1c:ed:e2:58:89:5e:5a:51:f1:1d:53:98: 4a:62:66:49:46:e2:6e:a9:6a:4d:2b:e2:5d:db:97: fe:37:52:b4:24:59:84:fe:c5:a5:1c:43:dd:95:23: c9:d7:44:15:30:da:4a:7c:6e:8e:24:46:97:f2:ea: a4:ac:8c:89:6f:fc:ad:10:bb:24:73:1b:62:df:5b: 01:3d:1a:2d:56:9e:a9:3d:c6:dc:35:bc:d8:50:e6: 53:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0F:7D:63:EC:96:70:AF:B8:F8:82:C8:10:84:03:A1:EA:02:2C:19 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:1f:a4:1a:27:c1:e0:11:0d:0e:aa:95:71:83:c7:5b:86:7a: 70:c0:54:a7:fa:91:07:4b:40:99:53:64:5d:d0:74:ab:e9:d5: 80:94:9a:fc:38:b3:4b:e1:a2:2e:18:93:15:eb:d8:20:da:38: ea:96:2a:31:dd:8e:80:67:9f:53:89:76:c8:0e:3c:b4:1e:bb: cd:bf:47:fa:4b:23:f2:db:08:30:9c:3a:89:4f:3d:96:02:89: 86:33:0c:82:ce:60:a9:bf:81:45:af:dd:c4:df:6c:ed:86:e6: d3:1d:e3:13:30:f0:2e:cd:62:c4:44:8f:60:8f:5e:75:9c:10: e9:f1:fd:95:41:50:39:62:d6:6f:40:ff:70:cb:a4:62:f7:5f: c2:8b:bf:d7:a4:e3:62:06:99:f2:22:6c:55:f4:a2:5c:dc:5a: e3:1a:1f:ac:77:72:a3:3d:be:da:9d:06:b8:5f:56:9d:b6:04: 51:71:f9:ff:04:07:2a:3b:cd:4a:7f:b9:d8:22:79:76:95:71: 74:78:50:22:f3:ea:e8:df:44:cb:ba:34:4e:82:f1:c8:47:4a: 8d:08:70:6f:73:e1:f5:82:33:64:1b:40:81:df:12:00:7d:ad: db:a0:d6:86:fe:3f:ca:67:83:1f:40:0a:a1:e2:b4:cc:09:12: 0c:f1:97:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUwNDI1MDIyNTM2WhcNMjUwNTAyMDIyNTM2WjAYMRYwFAYD VQQDEw02ODBhZjJhMC0yZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrQVsAHAp0LRoipow68L/fUeAHC1l+DaYpnPti1ii3fcMZqeLELUQI+PKEs8 AvYE3QE5mJdhZ9+3i0GXzRq3EPhkiXqE4iTJfFRDAZ2nGsw7nnefwX/yXJdY1hcZ Cbh1ob/wGrLrBntlnXUKuix5PBR/JPhIUvhu0riPbBMoRuDRoI5ls7cm2lWb0O59 p/myDPBwgA+VGHpRXvk0jBeJBcJJ9FcVgosc7eJYiV5aUfEdU5hKYmZJRuJuqWpN K+Jd25f+N1K0JFmE/sWlHEPdlSPJ10QVMNpKfG6OJEaX8uqkrIyJb/ytELskcxti 31sBPRotVp6pPcbcNbzYUOZT9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsPfWPs lnCvuPiCyBCEA6HqAiwZMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJH6QaJ8HgEQ0OqpVxg8dbhnpwwFSn+pEHS0CZU2Rd0HSr6dWAlJr8 OLNL4aIuGJMV69gg2jjqliox3Y6AZ59TiXbIDjy0HrvNv0f6SyPy2wgwnDqJTz2W AomGMwyCzmCpv4FFr93E32zthubTHeMTMPAuzWLERI9gj151nBDp8f2VQVA5YtZv QP9wy6Ri91/Ci7/XpONiBpnyImxV9KJc3FrjGh+sd3KjPb7anQa4X1adtgRRcfn/ BAcqO81Kf7nYInl2lXF0eFAi8+ro30TLujROgvHIR0qNCHBvc+H1gjNkG0CB3xIA fa3boNaG/j/KZ4MfQAqh4rTMCRIM8ZcQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:30 2025 by rpki-client