$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: YEnCUdSsFXm+c2nadP1FGjYJYwKniyx77l037NucHg4= Subject key identifier: 57:DF:7F:30:D3:AC:73:D6:45:AA:A7:73:BB:A5:A9:38:42:44:31:88 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 40 Signing time: Fri 25 Apr 2025 06:27:01 +0000 Manifest this update: Fri 25 Apr 2025 06:27:00 +0000 Manifest next update: Fri 02 May 2025 06:27:00 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: buvqI1ec9oOQvyIjBvU764iDWApS6zbf7rr6EPpw2aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Apr 25 06:27:00 2025 GMT Not After : May 2 06:27:00 2025 GMT Subject: CN=680b2b34-0808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:36:2b:80:38:22:32:23:e2:3e:1f:58:71:b7: 83:49:11:f6:e7:61:ac:e0:55:47:92:c6:32:39:89: 80:5f:29:ee:cb:a7:92:70:5f:a3:42:10:4c:e1:ce: c7:06:01:70:91:ec:2e:74:9c:e3:57:40:35:c6:7f: a7:dc:22:c5:44:c1:69:7b:52:75:1d:1d:fc:d8:bc: ac:9e:d4:ae:46:1a:fb:22:f7:1e:1e:e4:04:14:8f: 88:0f:05:4b:18:e7:90:f2:85:fe:da:46:97:6d:5f: b2:e6:0f:52:b9:6e:01:99:32:bc:e1:8c:4b:14:5f: fa:2f:b9:04:5f:ba:b7:dd:c5:c2:40:5d:4d:25:ac: 5b:44:a5:c7:2a:14:c9:03:3d:0e:da:1b:49:c3:c5: e8:03:22:17:e1:16:48:79:6d:65:8d:1c:6d:a5:27: cb:db:f5:78:70:50:25:64:04:a6:0f:68:d6:5f:1d: 09:fb:b9:87:3e:2b:5f:84:1b:1c:82:8a:80:dd:1b: ac:47:78:4f:24:bb:73:c4:33:bb:f8:70:d3:66:38: be:b8:be:17:62:2e:ff:71:17:43:ff:8d:e1:96:31: c8:60:6e:c9:e0:dc:ec:2b:d4:76:90:f2:a7:9f:44: 68:52:87:46:a7:a7:13:bb:8d:d4:ea:f9:74:12:d3: 0e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DF:7F:30:D3:AC:73:D6:45:AA:A7:73:BB:A5:A9:38:42:44:31:88 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:6a:c9:33:46:4c:f5:be:91:f2:fa:1a:97:08:b5:18:12:1a: 7d:34:3e:04:09:39:1a:b5:7c:73:44:58:67:9b:31:aa:be:eb: 6e:4f:e2:a1:eb:40:04:2e:f0:44:18:3a:c6:dc:ee:7d:bf:1d: 52:eb:fa:2d:5e:b3:94:e4:4b:d8:e1:b3:d1:9b:ad:bf:2d:a1: b4:0a:49:d5:9d:cf:a0:94:cb:de:7a:7d:b9:1a:0c:ad:97:01: 03:6e:76:d2:84:eb:1d:fa:27:c9:26:66:f6:5a:61:db:34:6d: f8:98:15:85:c5:ef:58:54:b3:48:a2:82:b0:90:5c:de:17:b6: 25:9b:f7:ee:20:ac:f6:c1:ef:11:fc:8b:79:e7:a3:1f:65:53: 01:cb:95:ef:fd:7a:90:cd:f0:82:6c:b2:6c:38:7e:26:56:53: 0e:6f:de:a5:37:1c:a8:ad:8b:c8:df:8a:a4:a1:82:32:47:66: a2:ba:ac:ba:d7:d0:14:79:49:66:50:c5:c5:04:a7:08:79:44: ca:47:c3:96:55:e1:f4:df:e7:96:39:43:95:0b:b8:d9:0e:9d: a7:25:c3:52:e6:dc:0a:e6:0e:c2:a1:01:33:e0:a9:0d:28:62: 8d:ab:05:c5:2f:c3:49:c8:03:11:a1:e9:3c:24:df:85:56:3a: fe:09:49:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjIwNzExMC8GA1UEBRMoNzc3REI4OTc0NTcwRTlCNkMwNEUyNjU3RTZEMEE1MDM3 QzcxODg2QjAeFw0yNTA0MjUwNjI3MDBaFw0yNTA1MDIwNjI3MDBaMBgxFjAUBgNV BAMTDTY4MGIyYjM0LTA4MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnNiuAOCIyI+I+H1hxt4NJEfbnYazgVUeSxjI5iYBfKe7Lp5JwX6NCEEzhzscG AXCR7C50nONXQDXGf6fcIsVEwWl7UnUdHfzYvKye1K5GGvsi9x4e5AQUj4gPBUsY 55Dyhf7aRpdtX7LmD1K5bgGZMrzhjEsUX/ovuQRfurfdxcJAXU0lrFtEpccqFMkD PQ7aG0nDxegDIhfhFkh5bWWNHG2lJ8vb9XhwUCVkBKYPaNZfHQn7uYc+K1+EGxyC ioDdG6xHeE8ku3PEM7v4cNNmOL64vhdiLv9xF0P/jeGWMchgbsng3Owr1HaQ8qef RGhSh0anpxO7jdTq+XQS0w7TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV99/MNOs c9ZFqqdzu6WpOEJEMYgwHwYDVR0jBBgwFoAUd324l0Vw6bbATiZX5tClA3xxiGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMjA3L0I0ODg2MUM2QzIy ODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMyNGwwVnc2YmJBVGlaWDV0Q2xBM3h4aUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG MjA3L0I0ODg2MUM2QzIyODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJi QVRpWlg1dENsQTN4eGlHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADRqyTNGTPW+kfL6GpcItRgSGn00PgQJORq1fHNEWGebMaq+625P4qHr QAQu8EQYOsbc7n2/HVLr+i1es5TkS9jhs9Gbrb8tobQKSdWdz6CUy956fbkaDK2X AQNudtKE6x36J8kmZvZaYds0bfiYFYXF71hUs0iigrCQXN4XtiWb9+4grPbB7xH8 i3nnox9lUwHLle/9epDN8IJssmw4fiZWUw5v3qU3HKiti8jfiqShgjJHZqK6rLrX 0BR5SWZQxcUEpwh5RMpHw5ZV4fTf55Y5Q5ULuNkOnaclw1Lm3ArmDsKhATPgqQ0o Yo2rBcUvw0nIAxGh6Twk34VWOv4JSVo= -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:36 2025 by rpki-client