$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: B92XEWMTyR8nwsUI6c7pFEjBQYub2ynd4rn9Zvq5hNI= Subject key identifier: 98:8E:77:B8:12:6E:21:0F:3B:F0:3E:05:48:A1:4C:4F:D7:12:55:F2 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 037E Signing time: Fri 25 Apr 2025 00:38:23 +0000 Manifest this update: Fri 25 Apr 2025 00:38:22 +0000 Manifest next update: Fri 02 May 2025 00:38:22 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: I3S9adLWJuWIsbb5nclb2EYFfkqqy8u+bYPNIv3J5oo=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: KeGUlxiblyObJWylXKCmQlAzDIkOWbFTSQRBaia1TDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Apr 25 00:38:22 2025 GMT Not After : May 2 00:38:22 2025 GMT Subject: CN=680ad97e-4728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:27:6b:c6:c9:43:84:0c:1d:ca:15:5e:73: d5:a4:10:6b:ee:18:cf:dd:54:8f:a4:70:7a:8f:b7: 62:ab:76:45:cb:5e:cd:c6:c7:e0:99:40:46:06:5f: 6a:3e:38:06:02:27:15:33:ec:ad:4b:1a:b6:5c:d5: fc:14:8a:e6:10:9d:2d:b0:4d:60:cb:a1:69:70:ad: 9c:a1:fb:32:6d:e3:99:0c:26:c2:c5:56:84:a9:0c: ef:3b:d5:e7:1e:df:4e:3b:5c:c3:66:45:51:52:1d: 8b:4c:e4:04:64:2c:d7:05:0a:f5:9f:41:55:5a:f2: fc:2a:db:b6:d0:ab:63:79:12:87:e1:dd:6a:b0:16: 9e:11:1a:4a:94:b5:41:b4:65:f2:27:eb:85:98:dd: 39:23:b6:cd:e2:5c:2c:8c:1c:ab:02:72:50:8e:1e: 2b:61:8c:bf:be:74:84:dd:84:0d:fb:8d:e3:7d:e1: 91:c0:27:38:d3:23:f2:a1:6b:a8:23:58:b0:74:c3: 0d:21:eb:f0:68:e6:72:d2:21:9b:13:35:51:d6:5a: 8b:14:b1:18:80:2f:91:0d:c5:74:83:2b:5f:14:64: 00:97:f3:fd:f9:e8:de:4d:3d:b9:e6:53:f3:89:d0: a8:67:6b:8f:ec:83:9f:ff:75:ab:ca:a3:86:48:2e: 6c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8E:77:B8:12:6E:21:0F:3B:F0:3E:05:48:A1:4C:4F:D7:12:55:F2 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:30:be:90:dd:fc:76:e9:d8:bc:56:26:be:35:e4:51:1c:32: ca:55:26:6b:59:46:42:40:77:fa:85:f8:b7:84:a8:07:53:8e: b1:39:ff:c6:59:b8:a3:46:05:67:94:5f:eb:fc:a9:9b:32:06: d3:b1:24:90:f5:b7:35:8f:15:43:fe:66:d5:64:d8:ce:af:06: 9d:2f:b8:fb:4b:03:cb:52:2d:05:1e:cb:e1:7b:10:37:21:ac: ad:41:11:03:c7:3a:64:94:e4:11:fd:86:15:8d:0b:b2:39:4a: 1a:82:66:ad:c5:4f:ce:ad:3c:fa:8e:b0:aa:b7:ba:25:a9:c5: 33:26:48:58:12:48:cd:cd:dd:49:57:8d:3b:03:19:f7:78:67: 01:55:f4:b4:cf:be:c5:cc:bc:a6:05:98:58:67:1c:d6:7b:9d: 48:3d:b5:38:29:ff:e8:77:b8:8d:32:38:a2:ce:d2:0c:68:5a: 9e:2d:12:1f:45:17:25:04:00:bd:86:f1:1e:84:a7:8b:c5:dc: 77:30:c2:b1:66:de:f4:64:db:28:29:b8:d3:3d:a7:db:74:9a: 9b:5f:00:dc:95:b6:90:09:93:3f:b7:5b:68:ca:88:a2:74:4f: bc:e3:ed:d6:a2:6d:d1:a2:ef:4c:b3:cd:62:43:cd:39:d5:8f: 0f:18:cb:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNDI1MDAzODIyWhcNMjUwNTAyMDAzODIyWjAYMRYwFAYD VQQDEw02ODBhZDk3ZS00NzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEEna8bJQ4QMHcoVXnPVpBBr7hjP3VSPpHB6j7diq3ZFy17NxsfgmUBGBl9q PjgGAicVM+ytSxq2XNX8FIrmEJ0tsE1gy6FpcK2cofsybeOZDCbCxVaEqQzvO9Xn Ht9OO1zDZkVRUh2LTOQEZCzXBQr1n0FVWvL8Ktu20KtjeRKH4d1qsBaeERpKlLVB tGXyJ+uFmN05I7bN4lwsjByrAnJQjh4rYYy/vnSE3YQN+43jfeGRwCc40yPyoWuo I1iwdMMNIevwaOZy0iGbEzVR1lqLFLEYgC+RDcV0gytfFGQAl/P9+ejeTT255lPz idCoZ2uP7IOf/3WryqOGSC5s+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiOd7gS biEPO/A+BUihTE/XElXyMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaML6Q3fx26di8Via+NeRRHDLKVSZrWUZCQHf6hfi3hKgHU46xOf/G WbijRgVnlF/r/KmbMgbTsSSQ9bc1jxVD/mbVZNjOrwadL7j7SwPLUi0FHsvhexA3 IaytQREDxzpklOQR/YYVjQuyOUoagmatxU/OrTz6jrCqt7olqcUzJkhYEkjNzd1J V407Axn3eGcBVfS0z77FzLymBZhYZxzWe51IPbU4Kf/od7iNMjiiztIMaFqeLRIf RRclBAC9hvEehKeLxdx3MMKxZt70ZNsoKbjTPafbdJqbXwDclbaQCZM/t1toyoii dE+84+3Wom3Rou9Ms81iQ8051Y8PGMtj -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:02 2025 by rpki-client