$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: VcCvsQ3VGwhT7oQB8/dPKK3lQWbGx2l82z4t3Aw92UY= Subject key identifier: 88:13:22:2F:56:B5:0F:2B:42:11:3D:FF:5F:13:5C:3E:40:5C:74:33 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 347F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3479 Signing time: Thu 24 Apr 2025 14:58:18 +0000 Manifest this update: Thu 24 Apr 2025 14:58:18 +0000 Manifest next update: Thu 01 May 2025 14:58:18 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: FjTPBJRdHhV6P/a0m0/MGxpSkOvpdqhA8bnRhKaVJ+Q=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13439 (0x347f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Apr 24 14:58:18 2025 GMT Not After : May 1 14:58:18 2025 GMT Subject: CN=680a518a-4ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b8:74:3e:65:dc:d6:f8:cd:e2:83:c1:31:25: 8f:c5:60:a6:c2:3c:84:d3:8f:f3:a1:16:41:bf:5e: 42:ce:e6:47:02:f1:c8:4d:d0:1c:f0:30:c5:f4:a8: 45:91:bd:eb:62:22:75:73:de:d7:e7:1e:d1:13:64: df:b5:39:8d:59:57:10:68:ec:6d:b1:00:de:4f:2d: 51:9f:19:bf:3c:4c:b1:d8:9d:05:b8:58:87:22:44: a3:ec:61:32:e5:9c:ab:12:ac:75:5a:64:51:0e:e8: 00:68:42:82:dd:88:0a:d9:0a:c1:f9:aa:65:77:fd: 58:47:23:bb:1c:34:e1:fa:18:47:b8:63:20:dc:cc: 97:89:47:53:db:0d:8e:df:e1:10:f9:4e:fe:45:a9: 1e:75:a1:31:6b:36:38:06:d3:1d:62:60:e6:a9:48: 66:40:36:e6:03:22:30:5a:72:7f:9d:6b:a8:5d:91: 08:81:4d:55:a5:3c:4a:26:72:9a:71:03:ac:f6:c2: d4:84:2c:ae:35:9f:ac:34:91:5b:15:f7:9e:80:cb: f7:fe:2a:41:26:92:bd:02:ef:c5:a0:f7:13:ee:12: 77:17:3c:6c:bd:62:88:b4:15:ef:a2:c1:44:89:d6: e8:88:f4:04:8c:03:dd:2a:f5:47:f2:a9:cd:bd:93: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:13:22:2F:56:B5:0F:2B:42:11:3D:FF:5F:13:5C:3E:40:5C:74:33 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:42:e6:9a:bb:4c:46:ff:18:6c:4d:94:9a:90:27:d9:b8:b4: ca:01:e3:e5:3a:9a:35:df:db:d6:3d:6b:37:b1:f8:23:16:7d: e0:50:6e:7c:7a:05:2f:4e:e1:56:73:2e:fb:c1:90:9a:8d:4f: ef:13:be:84:36:8e:32:6d:c6:a2:5e:bb:cc:5b:e9:7c:f4:a7: 7c:87:23:2b:63:97:05:09:88:57:9e:4f:37:a2:9f:19:f2:63: da:9d:a4:6a:e2:48:5d:38:5b:e9:e1:ff:27:ec:f1:fa:ad:1a: 03:fd:6b:a2:c0:ef:d5:40:2a:6e:e7:d3:4f:c7:c8:86:ce:fd: 2e:c7:9c:e1:a6:f1:b9:9d:16:af:18:05:3a:eb:20:d5:f3:ec: ed:75:d2:c9:34:90:42:c1:75:d3:0e:a2:58:fa:68:08:47:75: 39:3d:81:0b:d6:60:99:01:d8:3b:00:a4:7e:aa:b0:80:17:3d: ae:dd:5d:e4:b8:9e:19:9f:47:36:a8:4e:d2:16:2d:72:3f:c7: bd:6b:c8:27:24:2e:23:e8:42:5d:3e:2f:06:f9:11:71:f8:8c: 0c:89:56:51:2d:5b:ec:cf:d5:b7:5d:30:1e:6d:66:ee:9c:7c: 40:78:a0:4c:f3:ed:6c:9a:cb:0b:1b:b6:aa:b5:5d:b4:9d:1d: e0:84:a1:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwNDI0MTQ1ODE4WhcNMjUwNTAxMTQ1ODE4WjAYMRYwFAYD VQQDEw02ODBhNTE4YS00ZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rh0PmXc1vjN4oPBMSWPxWCmwjyE04/zoRZBv15CzuZHAvHITdAc8DDF9KhF kb3rYiJ1c97X5x7RE2TftTmNWVcQaOxtsQDeTy1Rnxm/PEyx2J0FuFiHIkSj7GEy 5ZyrEqx1WmRRDugAaEKC3YgK2QrB+apld/1YRyO7HDTh+hhHuGMg3MyXiUdT2w2O 3+EQ+U7+RakedaExazY4BtMdYmDmqUhmQDbmAyIwWnJ/nWuoXZEIgU1VpTxKJnKa cQOs9sLUhCyuNZ+sNJFbFfeegMv3/ipBJpK9Au/FoPcT7hJ3FzxsvWKItBXvosFE idboiPQEjAPdKvVH8qnNvZP55wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgTIi9W tQ8rQhE9/18TXD5AXHQzMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2Quaau0xG/xhsTZSakCfZuLTKAePlOpo139vWPWs3sfgjFn3gUG58 egUvTuFWcy77wZCajU/vE76ENo4ybcaiXrvMW+l89Kd8hyMrY5cFCYhXnk83op8Z 8mPanaRq4khdOFvp4f8n7PH6rRoD/WuiwO/VQCpu59NPx8iGzv0ux5zhpvG5nRav GAU66yDV8+ztddLJNJBCwXXTDqJY+mgIR3U5PYEL1mCZAdg7AKR+qrCAFz2u3V3k uJ4Zn0c2qE7SFi1yP8e9a8gnJC4j6EJdPi8G+RFx+IwMiVZRLVvsz9W3XTAebWbu nHxAeKBM8+1smssLG7aqtV20nR3ghKGF -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:13 2025 by rpki-client