$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: BfGVU+9fOvNZVe94rFGZs0dZ2DHtldMxp/OuxUnuVUE= Subject key identifier: E9:57:77:47:16:C3:89:7D:69:5D:FA:BF:72:6B:51:11:74:92:0C:EB Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 01CA Signing time: Fri 25 Apr 2025 02:10:49 +0000 Manifest this update: Fri 25 Apr 2025 02:10:48 +0000 Manifest next update: Fri 02 May 2025 02:10:48 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: RVcM5rr8e0NmKCMHN1SCZvm/PRM1NN1h/T7KEg3lTQs=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Apr 25 02:10:48 2025 GMT Not After : May 2 02:10:48 2025 GMT Subject: CN=680aef29-d740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:32:16:28:33:a3:a7:b1:5d:b7:ab:66:28:f9: 5e:79:25:05:c5:f2:56:24:2b:44:1e:1a:0c:81:60: 93:73:28:8c:b0:64:48:e2:86:8a:d7:0b:f0:b1:53: 4a:cd:a9:33:18:0d:93:37:e5:8a:97:5f:dc:81:90: e1:13:e9:28:0a:a9:2a:4a:c9:1d:32:e9:bb:46:d5: 5d:22:a0:b6:22:39:06:54:25:cb:ba:54:3f:55:6d: 85:64:56:20:52:14:03:1b:7f:9b:4d:25:3f:4b:20: 4e:7e:ce:ff:82:39:07:a6:ef:62:98:55:df:0e:d1: 08:a1:b3:d4:7e:9d:4d:90:6a:54:01:d6:ec:18:c6: 27:f7:91:da:7b:5a:b6:8a:a4:25:19:3a:78:11:44: 95:a6:78:21:f7:9a:64:6a:df:f1:3d:5f:ab:92:fa: f2:0e:ac:e8:b2:67:2c:38:9e:88:87:27:2c:94:21: 2e:3d:b2:6f:d8:55:8e:72:4f:51:31:3c:6b:17:98: ae:a8:ad:3d:76:1c:97:e3:f1:55:7d:08:65:cf:68: db:bf:33:10:ba:30:56:71:cf:ab:07:40:6b:d6:8c: 48:ad:93:9f:98:0f:de:2f:8e:45:cf:53:c3:ad:f5: 06:fc:45:17:f0:4b:df:b8:bd:94:86:46:9c:ba:7b: 9d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:57:77:47:16:C3:89:7D:69:5D:FA:BF:72:6B:51:11:74:92:0C:EB X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:9d:ee:b7:a6:bf:a1:04:06:1a:85:29:82:97:63:d1:ea:14: 29:d5:a2:4a:14:7b:da:16:4a:86:8b:d1:32:50:42:71:75:39: ef:02:5c:fa:d2:9c:06:90:54:ff:3b:b1:a9:66:db:6e:da:40: 66:c2:76:9a:da:68:99:1d:a9:19:c7:e8:dd:f3:d5:c4:1a:c1: 3a:05:f5:51:ef:67:38:c5:cd:51:b7:3f:57:38:6e:53:ca:c5: 0d:bf:a0:f1:71:bc:a8:8e:d2:b5:58:1d:60:6f:6a:64:a1:18: 95:d7:45:5b:de:ba:83:89:b3:2c:b0:1f:43:f0:0d:89:e9:4c: 5c:14:7f:96:b6:fb:a5:73:10:3b:15:55:a9:2e:8f:39:14:e1: 43:6e:26:0f:93:4b:42:71:8f:38:85:3f:7b:8b:43:9b:0f:c5: 0e:82:a8:56:bf:e3:d1:df:90:88:e5:ce:d1:2b:09:c4:7c:52: d3:2b:05:a1:a8:b5:8c:cf:a7:32:4e:6f:ef:ff:f5:1d:fe:bb: 20:f8:bc:42:c3:0f:96:e8:09:61:6b:2f:9c:f5:f6:47:ce:c2: 51:6b:cd:03:92:10:c8:46:47:e0:af:20:86:b8:d0:0c:40:79: 47:88:ff:fb:fe:90:3f:2c:1a:36:f0:81:d1:47:27:7e:30:91: 1b:1d:9c:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwNDI1MDIxMDQ4WhcNMjUwNTAyMDIxMDQ4WjAYMRYwFAYD VQQDEw02ODBhZWYyOS1kNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTIWKDOjp7Fdt6tmKPleeSUFxfJWJCtEHhoMgWCTcyiMsGRI4oaK1wvwsVNK zakzGA2TN+WKl1/cgZDhE+koCqkqSskdMum7RtVdIqC2IjkGVCXLulQ/VW2FZFYg UhQDG3+bTSU/SyBOfs7/gjkHpu9imFXfDtEIobPUfp1NkGpUAdbsGMYn95Hae1q2 iqQlGTp4EUSVpngh95pkat/xPV+rkvryDqzosmcsOJ6IhycslCEuPbJv2FWOck9R MTxrF5iuqK09dhyX4/FVfQhlz2jbvzMQujBWcc+rB0Br1oxIrZOfmA/eL45Fz1PD rfUG/EUX8EvfuL2UhkacunudswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlXd0cW w4l9aV36v3JrURF0kgzrMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZne63pr+hBAYahSmCl2PR6hQp1aJKFHvaFkqGi9EyUEJxdTnvAlz6 0pwGkFT/O7GpZttu2kBmwnaa2miZHakZx+jd89XEGsE6BfVR72c4xc1Rtz9XOG5T ysUNv6DxcbyojtK1WB1gb2pkoRiV10Vb3rqDibMssB9D8A2J6UxcFH+WtvulcxA7 FVWpLo85FOFDbiYPk0tCcY84hT97i0ObD8UOgqhWv+PR35CI5c7RKwnEfFLTKwWh qLWMz6cyTm/v//Ud/rsg+LxCww+W6Alhay+c9fZHzsJRa80DkhDIRkfgryCGuNAM QHlHiP/7/pA/LBo28IHRRyd+MJEbHZyP -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:27 2025 by rpki-client