$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: yHOugAiv3NUN+rLmsuGIVotS232gFjtHNqNwQkAKccY= Subject key identifier: 6B:24:28:E9:20:58:88:C3:1C:59:6A:07:0E:A6:A0:64:E3:5A:21:77 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 0263 Signing time: Fri 25 Apr 2025 01:31:43 +0000 Manifest this update: Fri 25 Apr 2025 01:31:42 +0000 Manifest next update: Fri 02 May 2025 01:31:42 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: vCF2p3/Kfrc7aHrH3PDGaLq9FWKr6Iqp2e8iPAnrjwk=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Apr 25 01:31:42 2025 GMT Not After : May 2 01:31:42 2025 GMT Subject: CN=680ae5ff-be76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f8:81:c8:8d:ad:b4:a1:0a:2e:eb:a2:aa:82: f3:28:f5:e7:17:c4:ca:94:eb:7d:5a:39:2e:95:7a: a6:f1:57:1d:8e:01:e4:25:a2:e3:34:fc:27:91:0b: 3f:11:c5:e7:41:2f:f4:80:5d:e1:cd:6c:20:6a:82: aa:55:fd:81:cf:17:b3:c6:66:e8:36:54:f4:b1:45: ac:33:b8:1b:13:cf:0c:68:69:4b:1e:bd:1a:59:e1: d8:2b:d6:9e:a8:c0:60:49:9a:4e:ad:17:25:1b:ed: e0:5b:5d:b9:e0:6c:24:01:ca:17:00:9b:0b:eb:0a: 45:60:89:c7:b8:72:f2:f7:9e:14:8b:79:01:1f:34: a7:52:ca:3a:f0:72:2e:eb:40:b2:63:2b:32:5d:f3: 28:59:c1:4b:dc:a3:51:18:7a:af:34:de:ca:62:50: 3e:6b:f4:45:51:cd:dd:7a:c6:03:06:4d:b3:ab:80: 86:7a:be:b9:1b:74:b0:fa:a0:6c:cf:0d:df:77:70: 97:d2:92:9a:4f:01:cd:ae:fa:80:ee:69:86:f0:76: e9:10:e2:b5:09:47:50:90:7f:2e:a5:4a:19:1d:f6: 80:92:f6:3b:a3:58:97:13:c0:ce:5d:9a:f0:a6:42: be:9d:26:d2:7c:6c:6a:3c:8c:1b:10:5a:96:d8:7f: 41:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:24:28:E9:20:58:88:C3:1C:59:6A:07:0E:A6:A0:64:E3:5A:21:77 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:93:8d:91:46:ba:36:d9:b6:28:ed:e2:24:ec:6e:4a:8a:e5: 8b:bd:9c:b0:50:58:8d:42:df:cf:6f:e7:be:c4:82:d0:92:0a: cf:df:db:8d:8b:c6:ab:89:a7:c8:01:9d:86:9b:48:64:39:29: d7:bf:42:98:37:7e:f0:ec:d6:74:ce:63:6f:77:46:81:00:50: 98:6e:3a:af:b8:1b:9d:36:ba:9b:20:d3:55:99:33:d5:3c:87: fa:23:3f:4c:61:fd:6d:10:65:65:c2:6e:fb:6f:0f:96:74:d0: 27:f7:bd:3f:8e:b0:3d:62:c1:83:63:2d:eb:ab:6c:ed:ff:29: 64:dc:71:65:bf:04:a8:7a:9e:05:1c:05:4c:1f:07:0f:be:d7: a8:bf:94:05:18:94:e3:8e:96:bb:9f:3b:2b:8d:00:31:ae:6b: eb:11:0a:bb:f6:c7:49:22:af:0c:a4:f3:6c:a9:00:d4:50:46: 67:70:4e:7c:1f:26:9f:77:ba:5c:e5:3c:d2:2e:19:5f:75:76: b7:1d:8e:a7:f2:e2:08:8c:fa:78:4b:c9:32:6f:06:f7:94:22: a5:fe:69:37:2e:65:2d:46:1c:a1:88:b1:95:33:12:c1:21:2a: 86:54:5f:9a:a8:7d:12:a9:f5:64:35:04:bb:e7:3d:be:97:c1: 26:ce:81:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwNDI1MDEzMTQyWhcNMjUwNTAyMDEzMTQyWjAYMRYwFAYD VQQDEw02ODBhZTVmZi1iZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApviByI2ttKEKLuuiqoLzKPXnF8TKlOt9WjkulXqm8VcdjgHkJaLjNPwnkQs/ EcXnQS/0gF3hzWwgaoKqVf2BzxezxmboNlT0sUWsM7gbE88MaGlLHr0aWeHYK9ae qMBgSZpOrRclG+3gW1254GwkAcoXAJsL6wpFYInHuHLy954Ui3kBHzSnUso68HIu 60CyYysyXfMoWcFL3KNRGHqvNN7KYlA+a/RFUc3desYDBk2zq4CGer65G3Sw+qBs zw3fd3CX0pKaTwHNrvqA7mmG8HbpEOK1CUdQkH8upUoZHfaAkvY7o1iXE8DOXZrw pkK+nSbSfGxqPIwbEFqW2H9BrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGskKOkg WIjDHFlqBw6moGTjWiF3MB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHk42RRro22bYo7eIk7G5KiuWLvZywUFiNQt/Pb+e+xILQkgrP39uN i8ariafIAZ2Gm0hkOSnXv0KYN37w7NZ0zmNvd0aBAFCYbjqvuBudNrqbINNVmTPV PIf6Iz9MYf1tEGVlwm77bw+WdNAn970/jrA9YsGDYy3rq2zt/ylk3HFlvwSoep4F HAVMHwcPvteov5QFGJTjjpa7nzsrjQAxrmvrEQq79sdJIq8MpPNsqQDUUEZncE58 Hyafd7pc5TzSLhlfdXa3HY6n8uIIjPp4S8kybwb3lCKl/mk3LmUtRhyhiLGVMxLB ISqGVF+aqH0SqfVkNQS75z2+l8EmzoGC -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:34 2025 by rpki-client