$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft File: rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft (raw, json) Hash identifier: BGu8b0Rtc6jZ26G7/SnReXr7SZipoWnbURmPTmNairs= Subject key identifier: 26:CE:BF:60:4A:3C:5A:60:4B:A9:D2:62:3F:DB:F3:ED:C8:FD:92:30 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft Manifest number: 04A8 Signing time: Thu 24 Apr 2025 23:43:02 +0000 Manifest this update: Thu 24 Apr 2025 23:43:01 +0000 Manifest next update: Thu 01 May 2025 23:43:01 +0000 Files and hashes: 1: rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl (hash: 0Ll3l9/nBReOsGYjGLT/BkW7+VgCDacgRqZCCGB3glk=) 2: B016290E2CE211EC8664D47EC4F9AE02.roa (hash: N+v5XDTe3qGrc3Im5miqpHu358OzdQqGsyKCPQ1e/9E=) 3: 14172F4C264311EEB0342B45C4F9AE02.roa (hash: Ugkrxpmo+RhmzNNOs4CXnhFZe2ur3HMxWdH+GOY5OTg=) 4: 8C2F1C96367F11EEB689C243C4F9AE02.roa (hash: NMuBSgtK/HkuND8tStUDe+Ag9eP8OhZhvhWqets1kM8=) 5: AF91ADB42CE211EC8664D47EC4F9AE02.roa (hash: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI=) 6: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (hash: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Apr 24 23:43:01 2025 GMT Not After : May 1 23:43:01 2025 GMT Subject: CN=680acc85-1de9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2f:b0:7b:cd:d6:cc:f5:82:cb:bf:32:e5:17: e3:5c:35:74:52:a9:4f:02:9e:ff:20:d8:af:6b:c9: 74:45:2c:81:e6:d6:ec:f1:b3:bf:94:c1:3b:1e:3b: f4:30:67:44:2a:6c:f8:12:7c:62:b0:1e:40:b5:b6: a6:de:12:50:90:68:71:c3:77:06:63:52:99:83:58: 3c:b0:b9:c6:e9:4c:fe:1f:9f:0a:a6:29:df:c0:db: c3:ad:51:c9:3f:e4:4d:a2:33:97:a6:8a:4a:f3:21: 17:2e:4f:fb:a0:2c:5f:f5:ec:e8:ac:f4:01:e2:18: e2:66:ea:4b:7e:95:1e:1b:35:8d:6c:6e:3c:32:12: 2f:0b:5d:d5:a4:2e:5a:c3:f4:91:f6:de:ca:83:84: 86:81:4b:52:75:14:88:09:bb:b1:89:14:5b:96:de: ce:99:1b:90:33:de:a1:9e:96:16:14:1a:0a:e3:ec: df:86:5b:31:c3:e6:94:ec:ca:d6:a8:4f:9f:13:aa: fe:e8:3f:cb:7b:c2:dd:6f:92:e8:3a:b1:6a:de:83: 77:32:04:54:c3:9d:de:71:53:94:2f:9a:2c:78:83: aa:06:08:5b:4b:a9:f1:9b:8e:14:39:5c:8a:84:5b: 5b:e9:e7:aa:b6:f6:a2:96:3c:7b:04:ab:7f:f3:d1: 07:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:CE:BF:60:4A:3C:5A:60:4B:A9:D2:62:3F:DB:F3:ED:C8:FD:92:30 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2d:6f:25:7e:8c:c3:d6:ac:87:86:92:65:e8:fd:93:a9:23: 38:2f:8d:e7:ed:8f:15:94:0c:b4:78:c5:5f:57:2f:27:e4:7e: 8f:f8:e1:3a:e4:f7:e5:45:68:1c:85:2a:73:b4:6e:67:fb:c0: ab:a0:8c:27:aa:5e:a8:fe:c7:25:23:99:92:56:0d:9d:f2:1a: b2:20:2d:45:4f:30:12:b0:8b:e8:88:a1:ba:74:00:50:c2:64: e8:fe:7a:3f:24:bf:5a:12:2f:36:b4:93:bd:99:b4:3a:2a:35: d8:f4:c6:a8:83:aa:83:23:67:12:ff:7f:01:b9:cd:89:a0:bf: 23:0a:09:e9:26:21:40:98:5b:c4:d0:82:7a:1e:6d:87:16:80: 28:9d:f1:f5:ce:0c:c3:eb:2b:46:3a:99:fc:5c:c3:ae:6c:29: eb:d3:53:db:de:79:ea:d8:9c:b5:3c:13:bc:29:aa:b8:da:db: 9c:d0:fb:f7:bd:a5:dc:23:21:55:21:52:00:dd:10:d9:a2:45: b8:f2:34:ed:d8:07:5a:36:86:d5:94:41:cb:06:37:15:2f:61: 2f:66:df:81:ff:24:75:dc:d2:00:0c:29:8e:8e:0c:be:4c:a7: 6d:b5:6b:11:5d:86:f9:ae:6e:a6:2e:4a:49:a4:75:ec:a1:52: 0e:5a:fa:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwNDI0MjM0MzAxWhcNMjUwNTAxMjM0MzAxWjAYMRYwFAYD VQQDEw02ODBhY2M4NS0xZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4y+we83WzPWCy78y5RfjXDV0UqlPAp7/INiva8l0RSyB5tbs8bO/lME7Hjv0 MGdEKmz4EnxisB5Atbam3hJQkGhxw3cGY1KZg1g8sLnG6Uz+H58KpinfwNvDrVHJ P+RNojOXpopK8yEXLk/7oCxf9ezorPQB4hjiZupLfpUeGzWNbG48MhIvC13VpC5a w/SR9t7Kg4SGgUtSdRSICbuxiRRblt7OmRuQM96hnpYWFBoK4+zfhlsxw+aU7MrW qE+fE6r+6D/Le8Ldb5LoOrFq3oN3MgRUw53ecVOUL5oseIOqBghbS6nxm44UOVyK hFtb6eeqtvailjx7BKt/89EHLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbOv2BK PFpgS6nSYj/b8+3I/ZIwMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODVBOC9BNTMwODE0NjJDREUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBn RmVYOFZNdU00SUhVSk50TkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCLW8lfozD1qyHhpJl6P2TqSM4L43n7Y8VlAy0eMVfVy8n5H6P+OE6 5PflRWgchSpztG5n+8CroIwnql6o/sclI5mSVg2d8hqyIC1FTzASsIvoiKG6dABQ wmTo/no/JL9aEi82tJO9mbQ6KjXY9Maog6qDI2cS/38Buc2JoL8jCgnpJiFAmFvE 0IJ6Hm2HFoAonfH1zgzD6ytGOpn8XMOubCnr01Pb3nnq2Jy1PBO8Kaq42tuc0Pv3 vaXcIyFVIVIA3RDZokW48jTt2AdaNobVlEHLBjcVL2EvZt+B/yR13NIADCmOjgy+ TKdttWsRXYb5rm6mLkpJpHXsoVIOWvrI -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:04 2025 by rpki-client