$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: n0FJZzbcxhrCDU3uaO/7xqcBtFfYZd+AT4iMzK5xUwg= Subject key identifier: B2:2D:59:A1:94:B1:10:1D:12:1B:1F:1A:F4:00:5F:93:99:BF:1D:67 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 1A Signing time: Fri 25 Apr 2025 07:00:01 +0000 Manifest this update: Fri 25 Apr 2025 07:00:00 +0000 Manifest next update: Fri 02 May 2025 07:00:00 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: bTM8g7lYQdtbCH294z0rcZH9ewEvjM5EQiTlkHSF4us=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Apr 25 07:00:00 2025 GMT Not After : May 2 07:00:00 2025 GMT Subject: CN=680b32f1-059d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:76:2d:b3:b9:bc:1c:9e:61:c6:87:7b:dd: e3:01:3b:e9:e0:ea:0a:c5:91:ab:39:ba:90:f6:34: b7:c6:ad:6f:3d:84:f1:25:4a:22:9a:2f:ae:f1:8a: 5b:23:8a:5c:75:4c:02:d8:0a:48:ab:29:73:b6:3c: cf:09:c6:90:36:58:5d:09:8a:9f:5c:76:17:93:3c: 7e:a8:ac:97:37:64:33:16:7c:da:54:1f:55:78:ad: 3f:29:a1:76:fd:92:8e:3b:df:e0:50:1e:cf:bb:1b: 1d:3d:82:02:96:0c:0a:b8:e5:c8:ae:47:5e:2f:8e: 2d:3f:fe:82:fd:4b:3a:ca:e8:28:32:0b:6f:45:ec: f1:9f:82:67:8c:63:ff:14:b8:ed:30:6a:02:a9:f7: 21:5c:59:ec:8f:28:e9:f9:fc:5a:ea:b6:66:8e:c5: 11:a2:0c:b2:3a:e2:c6:a5:30:af:cd:bf:e9:b1:81: be:4b:7d:07:c2:ef:99:9a:e0:7b:e1:06:2a:ad:cc: f3:81:59:d2:54:96:13:0f:07:86:77:31:ef:90:bf: 56:1e:20:e2:1b:b3:c2:60:1f:38:db:26:a9:69:17: 8e:70:eb:7c:99:ef:02:df:1f:7c:a7:b3:40:4d:ad: 81:40:60:20:b2:ee:83:01:af:22:a1:28:4e:0c:ef: 03:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2D:59:A1:94:B1:10:1D:12:1B:1F:1A:F4:00:5F:93:99:BF:1D:67 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:67:c1:54:23:cf:80:bc:1a:94:b7:31:6a:bb:c4:e2:68:8e: 96:5b:8a:23:4c:ad:33:d4:a7:4a:1c:5f:be:78:76:31:dc:9e: f0:54:4f:91:e6:1c:ff:2c:ce:70:db:1c:67:39:61:54:f5:05: dd:8a:e1:6f:f3:2e:5d:dd:68:fb:37:5d:e9:0c:ef:b4:45:0c: 75:c4:5d:8a:0c:b2:0d:4e:7e:0f:95:c8:33:99:b3:20:33:14: 05:07:8a:91:d8:43:2b:4c:e1:20:0c:9b:eb:43:f4:86:c1:a8: dd:51:e7:bd:3a:1c:11:7b:2c:6c:da:42:29:4e:35:ca:3f:0f: 40:40:e9:3e:51:4d:42:1b:4a:0d:da:7e:64:34:19:48:43:69: e6:bb:e0:c7:52:56:ba:fe:2d:bd:31:bd:0f:38:a2:82:f4:2e: 40:34:16:5d:90:17:02:6d:45:f5:c9:07:50:1f:71:b0:cf:46: e0:7e:85:dd:01:5a:d7:9d:10:ac:6a:25:6f:bb:77:ec:70:f0: f2:f3:12:57:d0:56:70:45:45:a5:64:de:86:a1:e9:cc:5e:5a: 28:00:02:e3:68:39:e8:e7:9c:61:02:32:79:8f:ee:96:9d:4c: ef:75:fb:77:1d:45:66:7f:c6:5c:e6:ac:00:be:81:e6:8d:8f: 99:a1:ad:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA0MjUwNzAwMDBaFw0yNTA1MDIwNzAwMDBaMBgxFjAUBgNV BAMTDTY4MGIzMmYxLTA1OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJM3Yts7m8HJ5hxod73eMBO+ng6grFkas5upD2NLfGrW89hPElSiKaL67xilsj ilx1TALYCkirKXO2PM8JxpA2WF0Jip9cdheTPH6orJc3ZDMWfNpUH1V4rT8poXb9 ko473+BQHs+7Gx09ggKWDAq45ciuR14vji0//oL9SzrK6CgyC29F7PGfgmeMY/8U uO0wagKp9yFcWeyPKOn5/FrqtmaOxRGiDLI64salMK/Nv+mxgb5LfQfC75ma4Hvh BiqtzPOBWdJUlhMPB4Z3Me+Qv1YeIOIbs8JgHzjbJqlpF45w63yZ7wLfH3yns0BN rYFAYCCy7oMBryKhKE4M7wP3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsi1ZoZSx EB0SGx8a9ABfk5m/HWcwHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL9nwVQjz4C8GpS3MWq7xOJojpZbiiNMrTPUp0ocX754djHcnvBUT5Hm HP8sznDbHGc5YVT1Bd2K4W/zLl3daPs3XekM77RFDHXEXYoMsg1Ofg+VyDOZsyAz FAUHipHYQytM4SAMm+tD9IbBqN1R5706HBF7LGzaQilONco/D0BA6T5RTUIbSg3a fmQ0GUhDaea74MdSVrr+Lb0xvQ84ooL0LkA0Fl2QFwJtRfXJB1AfcbDPRuB+hd0B WtedEKxqJW+7d+xw8PLzElfQVnBFRaVk3oah6cxeWigAAuNoOejnnGECMnmP7pad TO91+3cdRWZ/xlzmrAC+geaNj5mhrbA= -----END CERTIFICATE-----Generated at Sat Apr 26 03:45:30 2025 by rpki-client