$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: F9d4szhTss1FLFIUqP0VZ+AXC3L83l1O8AIqV7ZBZFU= Subject key identifier: 23:BD:40:84:89:B1:2F:73:94:03:88:C3:13:DB:74:11:E8:2C:EB:D8 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 079A Signing time: Thu 24 Apr 2025 21:04:22 +0000 Manifest this update: Thu 24 Apr 2025 21:04:21 +0000 Manifest next update: Thu 01 May 2025 21:04:21 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: npqUJggDNL463q6BEBzGjLhJQh0XyLWtpXrwC7spKT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Apr 24 21:04:21 2025 GMT Not After : May 1 21:04:21 2025 GMT Subject: CN=680aa756-bdf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:1c:db:ed:71:1c:ce:1f:b4:fa:10:7b:37: ec:e9:89:1a:11:80:15:9e:1e:91:39:90:37:1b:cd: 01:6a:55:c2:61:5f:8a:b7:3e:a6:20:a0:08:5d:f1: 15:52:2d:21:f1:43:00:3a:13:23:5d:7f:f8:fb:b9: 10:f5:c2:8d:b7:ac:99:32:e7:af:c0:9e:b1:14:b1: a0:9b:0c:cd:25:12:8a:ac:3d:10:5f:f1:b4:16:c7: b3:23:db:d8:5b:73:fa:fc:3e:25:fd:ec:cc:fa:8d: 48:84:c7:c8:97:78:2e:01:3c:5c:1d:9e:c5:f2:75: 31:b9:7b:91:5c:22:f1:c9:ed:bb:0a:9e:0a:e7:7f: 07:57:34:93:28:ea:50:6b:5b:c1:47:cc:10:64:2e: 77:69:08:e2:2d:99:b6:00:9f:85:33:57:25:e9:56: ed:f4:f6:1e:13:d6:1e:1e:4d:92:3a:da:2b:ef:af: 52:4d:22:29:e2:eb:3e:d1:99:71:b8:61:d6:42:0d: 5c:b6:51:b6:7a:b7:cc:ae:f2:6e:f9:d1:5d:f6:4b: d9:37:5d:f5:01:5b:ca:31:25:78:a6:fe:00:bb:0d: b0:ee:43:82:49:c6:b8:85:a0:e5:47:ef:ed:da:ad: 50:a0:81:8a:0d:6c:2b:04:fd:e5:b2:1d:b4:4a:80: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BD:40:84:89:B1:2F:73:94:03:88:C3:13:DB:74:11:E8:2C:EB:D8 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:37:26:3c:2f:cc:b2:30:03:8c:6a:49:b0:2a:97:8e:e6:4c: 67:1e:4e:cf:8d:c6:03:29:96:1e:1d:09:74:d9:fd:37:27:49: de:61:82:97:f0:47:5f:75:f3:f6:7e:ed:3d:de:2d:51:b6:a6: f7:64:d5:9a:aa:f1:9e:c9:52:b4:9d:cc:e4:43:d9:cd:34:4b: 2d:4b:6d:01:be:09:d8:05:66:db:8a:61:9f:59:89:22:19:a7: d3:3b:7d:4c:31:4c:cc:d3:7c:32:48:8f:0b:15:88:76:df:b4: 3e:0b:46:34:80:00:ee:ca:77:16:98:99:af:e8:16:50:ab:33: 52:b4:89:78:08:b3:d3:ac:7c:ee:38:58:9e:fb:ec:3d:27:c6: f9:05:00:e4:34:c4:fc:9e:2c:b6:b1:92:64:19:98:5f:81:45: 27:1b:8d:e1:91:9c:60:5a:f0:a9:82:c7:3a:7b:e0:3e:f4:95: 26:f8:ea:86:9c:7d:36:58:62:fb:46:12:f6:66:27:cf:e4:1e: 4e:d1:f6:96:48:0a:98:0b:20:24:20:f9:68:fa:be:b8:7b:66: f6:8e:83:40:31:c5:2f:11:52:d3:c8:55:46:a5:68:cc:e4:83: 3e:92:9b:37:a4:33:97:76:07:c1:e2:a6:bc:ce:c7:fc:6f:f8: 43:b5:13:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwNDI0MjEwNDIxWhcNMjUwNTAxMjEwNDIxWjAYMRYwFAYD VQQDEw02ODBhYTc1Ni1iZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX4c2+1xHM4ftPoQezfs6YkaEYAVnh6ROZA3G80BalXCYV+Ktz6mIKAIXfEV Ui0h8UMAOhMjXX/4+7kQ9cKNt6yZMuevwJ6xFLGgmwzNJRKKrD0QX/G0FsezI9vY W3P6/D4l/ezM+o1IhMfIl3guATxcHZ7F8nUxuXuRXCLxye27Cp4K538HVzSTKOpQ a1vBR8wQZC53aQjiLZm2AJ+FM1cl6Vbt9PYeE9YeHk2SOtor769STSIp4us+0Zlx uGHWQg1ctlG2erfMrvJu+dFd9kvZN131AVvKMSV4pv4Auw2w7kOCSca4haDlR+/t 2q1QoIGKDWwrBP3lsh20SoASDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO9QISJ sS9zlAOIwxPbdBHoLOvYMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/NyY8L8yyMAOMakmwKpeO5kxnHk7PjcYDKZYeHQl02f03J0neYYKX 8EdfdfP2fu093i1Rtqb3ZNWaqvGeyVK0nczkQ9nNNEstS20BvgnYBWbbimGfWYki GafTO31MMUzM03wySI8LFYh237Q+C0Y0gADuyncWmJmv6BZQqzNStIl4CLPTrHzu OFie++w9J8b5BQDkNMT8niy2sZJkGZhfgUUnG43hkZxgWvCpgsc6e+A+9JUm+OqG nH02WGL7RhL2ZifP5B5O0faWSAqYCyAkIPlo+r64e2b2joNAMcUvEVLTyFVGpWjM 5IM+kps3pDOXdgfB4qa8zsf8b/hDtRO9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:23 2025 by rpki-client