$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft File: -0q1qaTcN7vWXmHkKkJWz5UbjHM.mft (raw, json) Hash identifier: rsWgh4+Y4uwXC8Yui1z+UQ8S5ocs/UFoWHgP39Fidtg= Subject key identifier: 89:DA:66:F3:21:5D:9C:D1:01:1F:B6:C1:80:D0:B7:5B:25:1A:58:14 Authority key identifier: FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 Certificate issuer: /CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Certificate serial: 03B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft Manifest number: 03AD Signing time: Fri 25 Apr 2025 00:30:33 +0000 Manifest this update: Fri 25 Apr 2025 00:30:32 +0000 Manifest next update: Fri 02 May 2025 00:30:32 +0000 Files and hashes: 1: -0q1qaTcN7vWXmHkKkJWz5UbjHM.crl (hash: PL1u0Ui7CWOMk9mB41kZS16xfjDyt/jGdWpCNaqbB3M=) 2: B1B6929CCFD611ED8BEF6866C4F9AE02.roa (hash: 9DfUOxvFR13SpwnP9dE6JJ+qwtWuEZ4XB8tC3ndW1gI=) 3: C657777835BD11EEBBA15F71C4F9AE02.roa (hash: dBKzmRV5kLqxEgnT/9vEMvol4LmNVdPd79i3sVZVmJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE567, serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Validity Not Before: Apr 25 00:30:32 2025 GMT Not After : May 2 00:30:32 2025 GMT Subject: CN=680ad7a9-78c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:f6:85:1d:6f:05:54:cd:ae:8c:ee:6d:6c: 11:ff:49:5c:9c:e0:b8:bd:86:ac:5c:cd:cd:1c:38: e3:fa:6f:a7:a3:3b:1a:55:f6:f3:71:bc:37:14:a0: 6f:46:f9:c0:12:52:6c:e7:7d:b3:92:f2:a0:a1:b7: 6d:b4:9e:1c:89:3d:2c:43:25:88:4b:b4:88:e0:c9: 6c:01:6b:eb:11:94:dd:f2:b8:a8:95:b0:41:cb:2d: b0:60:c9:9a:62:ac:5e:88:c7:c3:1c:1a:e8:93:27: a1:73:73:93:ce:3d:83:1e:8f:86:ed:5a:36:53:cb: ba:2c:f7:a5:f0:4c:fc:19:96:f7:a5:70:bd:e7:67: ed:2a:a8:c3:25:77:7e:a9:a9:f5:52:46:62:fb:97: 82:b4:fd:71:9c:ee:90:05:f5:7b:06:dc:4e:dc:d8: 82:8c:39:b3:6e:e0:46:0a:41:6c:d1:d5:63:f2:c1: 05:73:50:c5:ec:95:f3:67:9b:1f:33:16:55:70:a8: 11:c3:a5:d5:b3:f3:da:34:54:d2:a6:00:aa:39:68: 2b:96:f5:2c:48:9f:ac:c5:e7:2a:27:84:65:3b:a6: 51:fc:04:46:60:08:3e:05:21:1b:e5:97:ea:ac:ba: f2:f0:b3:2e:a5:e9:65:48:3c:e9:98:3c:b6:a6:72: 4d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DA:66:F3:21:5D:9C:D1:01:1F:B6:C1:80:D0:B7:5B:25:1A:58:14 X509v3 Authority Key Identifier: keyid:FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4d:2e:34:81:66:38:15:c2:d9:71:99:91:2c:85:d6:ee:c1: 1e:e6:f6:3d:59:f3:6e:89:86:77:a2:b0:3f:98:df:ff:25:2f: d9:12:f9:48:43:64:3b:c4:d5:0e:d6:b1:01:41:5d:05:c4:02: fd:2c:4e:b5:a3:28:f9:07:e0:5d:79:8c:26:47:78:10:c7:9f: 43:d3:9a:d9:d7:75:19:9d:59:ed:c1:e3:d1:92:0f:fe:f7:c8: 47:b0:03:19:a2:cc:f8:3a:16:90:6c:be:c3:69:29:c6:12:5a: 57:06:0e:d2:10:25:a9:5c:b5:2f:f5:20:76:79:cc:a2:99:1a: 76:f0:7f:f7:b2:53:a6:95:3a:1f:10:e6:fb:90:c8:96:bb:db: 72:3c:ae:3f:08:7e:46:0a:0a:a3:be:c9:82:77:b6:df:71:28: 1d:fd:5d:1c:cf:ee:f1:73:bc:ae:6a:af:2e:b6:51:c3:c2:84: 3c:eb:5b:45:a0:c5:9a:66:f1:ff:be:e7:40:a0:19:f4:7d:40: d4:b3:fe:c6:c5:f0:1c:90:2c:c0:76:8c:de:e4:a8:60:d7:5b: c8:24:03:3e:d1:11:50:29:1f:0b:01:20:af:f1:09:ab:08:35: 94:e6:5d:e0:ae:65:42:9d:a4:a0:50:53:c0:28:fc:94:38:6b: 5d:af:ac:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU1NjcxMTAvBgNVBAUTKEZCNEFCNUE5QTREQzM3QkJENjVFNjFFNDJBNDI1NkNG OTUxQjhDNzMwHhcNMjUwNDI1MDAzMDMyWhcNMjUwNTAyMDAzMDMyWjAYMRYwFAYD VQQDEw02ODBhZDdhOS03OGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyb2hR1vBVTNrozubWwR/0lcnOC4vYasXM3NHDjj+m+nozsaVfbzcbw3FKBv RvnAElJs532zkvKgobdttJ4ciT0sQyWIS7SI4MlsAWvrEZTd8riolbBByy2wYMma YqxeiMfDHBrokyehc3OTzj2DHo+G7Vo2U8u6LPel8Ez8GZb3pXC952ftKqjDJXd+ qan1UkZi+5eCtP1xnO6QBfV7BtxO3NiCjDmzbuBGCkFs0dVj8sEFc1DF7JXzZ5sf MxZVcKgRw6XVs/PaNFTSpgCqOWgrlvUsSJ+sxecqJ4RlO6ZR/ARGYAg+BSEb5Zfq rLry8LMupellSDzpmDy2pnJNxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInaZvMh XZzRAR+2wYDQt1slGlgUMB8GA1UdIwQYMBaAFPtKtamk3De71l5h5CpCVs+VG4xz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTU2Ny9FNjc5OTRERThG RjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043dldYbUhrS2tKV3o1VWJq SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0wcTFxYVRjTjd2V1htSGtLa0pXejVVYmpITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTU2Ny9FNjc5OTRERThGRjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043 dldYbUhrS2tKV3o1VWJqSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbTS40gWY4FcLZcZmRLIXW7sEe5vY9WfNuiYZ3orA/mN//JS/ZEvlI Q2Q7xNUO1rEBQV0FxAL9LE61oyj5B+BdeYwmR3gQx59D05rZ13UZnVntwePRkg/+ 98hHsAMZosz4OhaQbL7DaSnGElpXBg7SECWpXLUv9SB2ecyimRp28H/3slOmlTof EOb7kMiWu9tyPK4/CH5GCgqjvsmCd7bfcSgd/V0cz+7xc7yuaq8utlHDwoQ861tF oMWaZvH/vudAoBn0fUDUs/7GxfAckCzAdoze5Khg11vIJAM+0RFQKR8LASCv8Qmr CDWU5l3grmVCnaSgUFPAKPyUOGtdr6zj -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:48 2025 by rpki-client