$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: 6DiTEm9ZTUEI2jv3YxMziPEgidor/z/kfeyw2+48aV4= Subject key identifier: 9B:E4:71:99:FD:A3:E1:F7:88:F6:0E:C7:F3:A3:C3:6E:4A:2A:43:B7 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 65 Signing time: Fri 25 Apr 2025 06:01:33 +0000 Manifest this update: Fri 25 Apr 2025 06:01:33 +0000 Manifest next update: Fri 02 May 2025 06:01:33 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: dBWuQnwu6cr67DTE7uKv6u2lysNuhtpz8idU5wS9RNA=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Apr 25 06:01:33 2025 GMT Not After : May 2 06:01:33 2025 GMT Subject: CN=680b253d-5db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6a:2f:24:34:8b:58:cd:0d:01:80:89:48:70: cf:74:d6:c2:ec:3e:12:bf:37:2d:9f:5e:3c:30:d8: d4:33:65:27:2f:ff:e5:c3:38:ce:b1:b8:70:24:1c: ae:84:ad:8d:1b:5f:e5:a2:15:95:f7:7c:36:79:2d: 20:19:4e:5a:ff:2d:e7:21:35:da:d2:b2:9a:39:32: 22:08:43:3a:02:4a:82:2d:15:45:63:c2:67:ba:9b: 0a:30:a5:8f:53:af:b8:62:49:5c:0c:d7:41:f3:7c: df:26:5d:bd:eb:f1:18:66:ef:4b:88:0f:fc:89:8f: 12:d4:18:68:3a:a5:4f:24:94:15:1c:f8:4e:f1:2b: e6:9b:67:e2:7f:6d:88:51:34:51:d5:96:73:93:cb: db:0e:cc:82:a2:d7:6d:c1:74:90:de:55:6c:d1:30: 8b:ba:2a:38:3d:85:96:5c:e6:5e:35:ca:76:9b:df: ec:c1:39:bd:f7:51:65:47:6b:15:2d:c2:af:c2:a6: 2e:db:8f:48:16:ca:da:b9:34:bb:af:bf:79:46:9a: 9e:8f:97:e9:51:06:7b:f5:73:c3:fe:41:b8:63:05: e0:74:7e:f3:30:9f:9e:b9:ed:21:bd:65:89:38:d2: 21:bd:96:f4:b6:d9:66:3b:3f:70:2f:fa:43:98:62: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E4:71:99:FD:A3:E1:F7:88:F6:0E:C7:F3:A3:C3:6E:4A:2A:43:B7 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:fa:88:0c:5f:c8:03:7b:05:63:a4:ef:52:b7:4d:03:48:da: f5:91:15:92:d2:dc:36:0c:ab:54:18:c6:08:15:2a:cd:05:00: 2f:26:d1:68:28:a1:15:76:66:bb:fc:1e:12:db:72:40:a3:ad: ab:63:0c:10:95:ac:ef:e3:fb:65:79:74:20:35:f2:5d:59:7c: 6f:e9:91:e3:5d:26:b5:32:23:64:8c:b6:0a:ac:db:ce:86:7b: 06:95:2f:8a:59:d4:d4:cd:2c:d2:16:ee:54:a6:d2:58:81:9e: 1f:7b:f5:fb:48:f9:b3:4c:aa:25:18:6b:87:4b:55:cb:ba:e2: c9:e1:64:c3:f4:9c:0f:2b:16:d9:bd:24:d6:8c:57:9f:95:8c: 3f:03:1a:63:04:08:c8:2d:61:7f:24:11:bf:9a:26:aa:f4:b2: 7c:d8:89:fa:b7:73:1e:15:16:7a:fe:a0:f4:31:b9:49:0d:21: 4d:fb:3b:b0:b1:55:c2:80:0b:18:9d:e4:d9:98:8c:53:98:5e: 97:ee:61:5a:90:40:51:2b:a4:6d:34:42:2b:67:49:a9:da:aa: 42:43:71:24:1b:81:c1:c3:c0:55:f3:d8:6f:18:1e:fa:1a:c8: 66:e9:01:f3:92:e7:16:f6:f1:f3:86:a5:03:e1:2b:1f:41:f8: 31:ee:df:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QURBRjExMC8GA1UEBRMoNjhDMkI1ODhEMTY4NUE1ODc0MkQ4QTJFMTg4ODY1REIz MTEwM0NGNzAeFw0yNTA0MjUwNjAxMzNaFw0yNTA1MDIwNjAxMzNaMBgxFjAUBgNV BAMTDTY4MGIyNTNkLTVkYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCai8kNItYzQ0BgIlIcM901sLsPhK/Ny2fXjww2NQzZScv/+XDOM6xuHAkHK6E rY0bX+WiFZX3fDZ5LSAZTlr/LechNdrSspo5MiIIQzoCSoItFUVjwme6mwowpY9T r7hiSVwM10HzfN8mXb3r8Rhm70uID/yJjxLUGGg6pU8klBUc+E7xK+abZ+J/bYhR NFHVlnOTy9sOzIKi123BdJDeVWzRMIu6Kjg9hZZc5l41ynab3+zBOb33UWVHaxUt wq/Cpi7bj0gWytq5NLuvv3lGmp6Pl+lRBnv1c8P+QbhjBeB0fvMwn5657SG9ZYk4 0iG9lvS22WY7P3Av+kOYYuWDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm+Rxmf2j 4feI9g7H86PDbkoqQ7cwHwYDVR0jBBgwFoAUaMK1iNFoWlh0LYouGIhl2zEQPPcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBREFGLzg3MTU5Qzk2OENG MzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU1LMWlORm9XbGgwTFlvdUdJaGwyekVRUFBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB REFGLzg3MTU5Qzk2OENGMzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xo MExZb3VHSWhsMnpFUVBQYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKb6iAxfyAN7BWOk71K3TQNI2vWRFZLS3DYMq1QYxggVKs0FAC8m0Wgo oRV2Zrv8HhLbckCjratjDBCVrO/j+2V5dCA18l1ZfG/pkeNdJrUyI2SMtgqs286G ewaVL4pZ1NTNLNIW7lSm0liBnh979ftI+bNMqiUYa4dLVcu64snhZMP0nA8rFtm9 JNaMV5+VjD8DGmMECMgtYX8kEb+aJqr0snzYifq3cx4VFnr+oPQxuUkNIU37O7Cx VcKACxid5NmYjFOYXpfuYVqQQFErpG00QitnSanaqkJDcSQbgcHDwFXz2G8YHvoa yGbpAfOS5xb28fOGpQPhKx9B+DHu370= -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:40 2025 by rpki-client