$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: 4P0ceuLbu4Xere00dfgUWAcxRtI9fALqORFSqeNCVK8= Subject key identifier: 7E:5F:F1:C2:52:26:BD:5C:DA:75:7F:10:C8:97:07:6F:78:E7:DB:6E Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 07B1 Signing time: Thu 24 Apr 2025 20:59:46 +0000 Manifest this update: Thu 24 Apr 2025 20:59:45 +0000 Manifest next update: Thu 01 May 2025 20:59:45 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: U6WAkfgf26l1B9Myf5kZ2Tu/Gt4rTX0Ud1FoXX/4nms=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Apr 24 20:59:45 2025 GMT Not After : May 1 20:59:45 2025 GMT Subject: CN=680aa642-e8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cf:1e:b4:45:12:80:48:8a:a3:29:32:a7:ad: c3:96:a9:14:52:14:29:31:a0:48:37:e0:40:ce:cb: df:f7:17:c4:c4:3f:97:b3:92:f4:34:c5:56:1b:23: f6:45:6d:b4:e2:8c:24:ce:18:57:09:8d:35:df:3d: d3:23:de:11:b8:e8:23:f1:e8:da:49:60:68:b5:ac: 33:2d:dd:8c:31:f6:39:bd:f4:fd:5e:35:32:55:26: 33:30:2e:6e:63:39:30:14:d0:82:6e:17:7c:34:7c: 6e:63:9f:8f:25:0c:8d:aa:13:02:07:17:2a:00:c2: 12:d6:3d:f2:3f:09:31:68:d4:2e:51:27:27:1c:6e: af:4e:07:3c:87:55:60:32:1c:75:71:ea:17:fd:48: 11:83:42:af:e7:e1:5b:40:2d:83:4d:c9:28:c4:f7: 26:46:06:6c:6c:0b:8e:8b:00:78:24:6a:a2:70:66: b5:e3:43:26:68:d7:b5:82:76:77:6b:28:35:b7:29: 88:5e:05:a2:3d:ad:f9:b6:60:90:2d:aa:16:5f:fd: 3b:98:2a:5c:ca:08:51:cc:ce:dd:ca:57:18:80:88: e3:99:8f:e1:0f:57:df:25:f0:c7:7f:8b:3f:f8:d6: a8:ff:f9:71:97:9f:08:a3:74:6c:2b:c3:cb:03:a0: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5F:F1:C2:52:26:BD:5C:DA:75:7F:10:C8:97:07:6F:78:E7:DB:6E X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:24:48:43:4a:4a:ef:61:8f:b6:df:c8:d4:f8:5c:e1:97:61: 24:48:01:70:74:27:24:b6:2e:00:aa:62:69:87:e8:d3:d4:22: 5e:eb:49:b8:43:2e:3e:86:40:46:7e:7f:9d:f0:c7:f0:54:48: b2:a8:31:c9:d3:89:6a:0a:b8:97:17:0e:83:29:78:4b:06:9a: 2f:bc:b2:0d:51:d6:42:e3:e2:c3:3b:ca:6b:2f:b7:c3:18:f3: d0:f4:b8:58:af:ac:49:4e:9d:63:93:74:fd:5b:5a:54:b9:d4: 56:59:ae:9d:54:e0:3a:c8:c6:01:2a:8a:ad:b9:14:f8:5b:a6: 26:3b:28:1c:f5:94:aa:88:e9:3d:5f:ad:10:01:33:4d:2d:5b: 54:99:f5:41:df:a9:66:0a:18:0c:c3:e1:79:5f:70:fc:a0:c6: 6b:20:d1:61:13:63:e6:b3:0b:b2:95:fd:28:54:b2:b3:03:24: 10:bc:64:47:93:47:21:84:80:d2:be:41:d7:39:ae:c2:cf:eb: fd:50:49:03:42:c3:1d:6f:32:51:c4:15:83:42:3d:08:86:31: 3a:bf:91:eb:7a:46:a3:a6:f1:4d:71:c8:76:b1:0f:08:5d:8e: e7:4d:c2:c7:d3:40:68:78:53:e5:62:f1:91:8d:fa:f3:99:f6: 79:81:0a:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUwNDI0MjA1OTQ1WhcNMjUwNTAxMjA1OTQ1WjAYMRYwFAYD VQQDEw02ODBhYTY0Mi1lOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm88etEUSgEiKoykyp63DlqkUUhQpMaBIN+BAzsvf9xfExD+Xs5L0NMVWGyP2 RW204owkzhhXCY013z3TI94RuOgj8ejaSWBotawzLd2MMfY5vfT9XjUyVSYzMC5u YzkwFNCCbhd8NHxuY5+PJQyNqhMCBxcqAMIS1j3yPwkxaNQuUScnHG6vTgc8h1Vg Mhx1ceoX/UgRg0Kv5+FbQC2DTckoxPcmRgZsbAuOiwB4JGqicGa140MmaNe1gnZ3 ayg1tymIXgWiPa35tmCQLaoWX/07mCpcyghRzM7dylcYgIjjmY/hD1ffJfDHf4s/ +Nao//lxl58Io3RsK8PLA6CSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5f8cJS Jr1c2nV/EMiXB29459tuMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQJEhDSkrvYY+238jU+Fzhl2EkSAFwdCckti4AqmJph+jT1CJe60m4 Qy4+hkBGfn+d8MfwVEiyqDHJ04lqCriXFw6DKXhLBpovvLINUdZC4+LDO8prL7fD GPPQ9LhYr6xJTp1jk3T9W1pUudRWWa6dVOA6yMYBKoqtuRT4W6YmOygc9ZSqiOk9 X60QATNNLVtUmfVB36lmChgMw+F5X3D8oMZrINFhE2Pmswuylf0oVLKzAyQQvGRH k0chhIDSvkHXOa7Cz+v9UEkDQsMdbzJRxBWDQj0IhjE6v5HrekajpvFNcch2sQ8I XY7nTcLH00BoeFPlYvGRjfrzmfZ5gQp9 -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:22 2025 by rpki-client