$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft File: rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft (raw, json) Hash identifier: aZA3rEa6qvKSVzfaqvzZoitdFblAWSwGvCyxB5LZcgY= Subject key identifier: FE:4A:4B:FB:4D:A9:A7:FD:38:2B:6E:EA:AF:82:82:2D:63:7C:E5:C0 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft Manifest number: 04AA Signing time: Tue 29 Apr 2025 00:29:49 +0000 Manifest this update: Tue 29 Apr 2025 00:29:49 +0000 Manifest next update: Tue 06 May 2025 00:29:49 +0000 Files and hashes: 1: rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl (hash: LB2QIQPjcOfdLIbjosd5ifUhqSAvOWwOMYGj8o/rEgI=) 2: B016290E2CE211EC8664D47EC4F9AE02.roa (hash: N+v5XDTe3qGrc3Im5miqpHu358OzdQqGsyKCPQ1e/9E=) 3: 14172F4C264311EEB0342B45C4F9AE02.roa (hash: Ugkrxpmo+RhmzNNOs4CXnhFZe2ur3HMxWdH+GOY5OTg=) 4: 8C2F1C96367F11EEB689C243C4F9AE02.roa (hash: NMuBSgtK/HkuND8tStUDe+Ag9eP8OhZhvhWqets1kM8=) 5: AF91ADB42CE211EC8664D47EC4F9AE02.roa (hash: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI=) 6: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (hash: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 00:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Apr 29 00:29:49 2025 GMT Not After : May 6 00:29:49 2025 GMT Subject: CN=68101d7d-045e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:b8:36:43:de:77:79:45:30:d4:70:86:24:a5: 8d:7f:dc:69:47:3e:d5:fc:3f:b1:3a:fa:70:57:46: f0:12:a1:ab:3b:b7:de:21:34:3f:f9:bd:03:35:03: 16:35:19:c3:02:17:90:b8:1a:df:d2:d2:f3:31:fc: 87:77:4a:26:1f:e1:84:a0:66:3f:72:a1:94:94:66: 8d:bf:33:e1:d5:c8:e4:88:76:11:a2:ad:73:98:c2: 62:22:9f:93:5c:ed:da:e6:52:12:f0:a6:12:b6:e3: 5e:a4:fd:89:02:f3:e2:b4:a8:18:36:3e:2c:d5:6e: 51:09:58:a2:00:80:9c:25:de:f8:2f:8c:db:8c:02: 75:c2:81:59:53:01:a6:74:b2:60:af:05:66:f3:54: fb:62:65:52:db:48:81:be:40:1b:e1:cf:3d:e8:d5: de:8d:cb:88:06:ce:2a:23:51:6a:5a:45:28:f4:36: 11:f0:f7:93:ef:72:82:f3:50:2f:70:19:77:15:9c: 29:ed:8c:64:69:c5:f2:d3:70:db:e1:a0:7b:c0:86: 00:7b:86:46:2c:dd:e5:c0:1f:b5:9c:0c:9c:79:37: 26:bd:2b:39:02:c9:f7:5e:f1:bc:7f:bd:5c:0c:77: bd:00:b1:a0:ba:d1:37:a6:50:80:21:ea:89:8b:0f: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4A:4B:FB:4D:A9:A7:FD:38:2B:6E:EA:AF:82:82:2D:63:7C:E5:C0 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f3:3d:9b:ca:36:30:1a:6e:36:ee:f7:ff:6e:26:1e:a9:59: 8a:87:ee:77:26:c6:5b:bc:3d:d5:f8:59:50:c8:f0:44:76:41: a6:fe:51:3b:d6:4a:35:7e:09:f6:8d:df:e3:87:a1:1f:39:73: bd:c8:73:2b:e6:b2:30:0a:12:ac:fd:70:09:00:95:5d:75:c0: bb:73:92:cb:59:6e:6a:63:e5:60:ae:84:d5:6a:d6:3c:6d:a3: f5:49:21:69:77:c6:a3:a2:cf:60:bf:fe:aa:a0:c5:52:b6:c9: 60:f2:6b:fe:c9:1e:bf:71:f8:84:2d:9c:fe:fb:a2:50:f9:4a: 86:fd:56:8f:4a:68:6a:1c:09:22:bf:c2:ac:3d:6c:85:15:a6: 78:f0:9d:d1:3a:be:ef:a4:f0:42:18:25:7f:2b:01:af:97:f4: 0a:d0:26:24:76:0e:c1:4b:3a:a1:bb:bb:13:d0:74:08:36:26: 56:a8:44:74:3a:c1:fd:f5:44:62:0d:ae:62:5f:f3:c8:ac:ed: ee:d5:7e:e3:b4:5e:b2:26:84:81:9c:08:f6:97:1b:4f:3a:b0: f5:cc:ea:fb:d9:c7:b1:35:b3:a5:ad:9f:fa:67:cc:c6:3a:dc: e0:5f:88:3d:46:72:dd:5d:6c:2e:07:a5:db:0e:34:c7:fa:53: 0e:a5:74:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwNDI5MDAyOTQ5WhcNMjUwNTA2MDAyOTQ5WjAYMRYwFAYD VQQDEw02ODEwMWQ3ZC0wNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9rg2Q953eUUw1HCGJKWNf9xpRz7V/D+xOvpwV0bwEqGrO7feITQ/+b0DNQMW NRnDAheQuBrf0tLzMfyHd0omH+GEoGY/cqGUlGaNvzPh1cjkiHYRoq1zmMJiIp+T XO3a5lIS8KYStuNepP2JAvPitKgYNj4s1W5RCViiAICcJd74L4zbjAJ1woFZUwGm dLJgrwVm81T7YmVS20iBvkAb4c896NXejcuIBs4qI1FqWkUo9DYR8PeT73KC81Av cBl3FZwp7YxkacXy03Db4aB7wIYAe4ZGLN3lwB+1nAyceTcmvSs5Asn3XvG8f71c DHe9ALGgutE3plCAIeqJiw8A5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5KS/tN qaf9OCtu6q+Cgi1jfOXAMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODVBOC9BNTMwODE0NjJDREUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBn RmVYOFZNdU00SUhVSk50TkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz8z2byjYwGm427vf/biYeqVmKh+53JsZbvD3V+FlQyPBEdkGm/lE7 1ko1fgn2jd/jh6EfOXO9yHMr5rIwChKs/XAJAJVddcC7c5LLWW5qY+VgroTVatY8 baP1SSFpd8ajos9gv/6qoMVStslg8mv+yR6/cfiELZz++6JQ+UqG/VaPSmhqHAki v8KsPWyFFaZ48J3ROr7vpPBCGCV/KwGvl/QK0CYkdg7BSzqhu7sT0HQINiZWqER0 OsH99URiDa5iX/PIrO3u1X7jtF6yJoSBnAj2lxtPOrD1zOr72cexNbOlrZ/6Z8zG OtzgX4g9RnLdXWwuB6XbDjTH+lMOpXRe -----END CERTIFICATE-----Generated at Wed Apr 30 00:51:32 2025 by rpki-client