$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: W83s+fqsVRuMykd9cBDzE0NOs6AiihJmcspHAh3TgZU= Subject key identifier: 2A:D2:3B:FB:EB:C7:86:3B:18:F8:CF:A5:E5:5A:38:37:EC:28:D1:D4 Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 018B Signing time: Sun 27 Apr 2025 02:32:54 +0000 Manifest this update: Sun 27 Apr 2025 02:32:54 +0000 Manifest next update: Sun 04 May 2025 02:32:54 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: V8xFY6DGRgwad7eQ4sbcofs1d47CQAy+L4N3Sp6Svms=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Apr 27 02:32:54 2025 GMT Not After : May 4 02:32:54 2025 GMT Subject: CN=680d9756-492c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9a:c7:76:0d:26:bd:ae:45:25:65:dd:14:da: 58:36:e5:27:ca:4a:8f:1b:f8:9d:cc:7e:bb:95:84: 3c:9c:8c:48:a7:bf:db:30:fa:b7:62:2d:6d:16:a2: 7b:6a:aa:da:0b:b6:45:54:1c:d9:6f:10:81:d1:ad: 1e:4f:40:5f:5e:0e:20:26:99:50:d5:66:7a:8f:cc: 80:b9:18:04:de:b3:6f:90:11:c4:07:8a:19:71:f8: b0:77:01:f5:2e:9e:dc:77:9d:73:49:b4:dd:f7:b7: 75:a2:a4:5d:1c:11:3a:00:97:03:69:e7:d6:be:80: 3e:bb:11:ee:12:f1:40:54:24:4b:e0:86:64:dc:fe: bf:f6:e1:93:2f:92:c8:3a:dd:cf:7e:51:06:17:b2: 22:c5:ce:48:fb:85:e9:8d:2a:02:f7:e4:e6:4a:20: 5e:e5:4d:38:07:bb:17:7c:9b:16:6b:03:8f:b8:5c: fb:4d:47:81:6b:6a:0f:1d:e8:5a:22:77:55:b2:30: 9a:71:c5:5a:e0:90:5f:49:0b:b0:11:41:2b:09:a5: a7:a7:9a:0e:e3:51:04:c9:eb:c7:b1:83:4b:5e:cb: f0:e1:bb:d5:ee:66:80:7c:bd:46:a0:54:6f:ab:18: d9:84:bf:12:70:72:c7:ed:9f:8a:c4:1b:82:18:28: db:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D2:3B:FB:EB:C7:86:3B:18:F8:CF:A5:E5:5A:38:37:EC:28:D1:D4 X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:39:3c:47:44:3f:9c:b1:aa:43:70:f2:04:a4:ba:7b:78:25: 8d:75:3f:33:bc:01:28:73:01:0b:11:89:70:aa:be:9c:20:13: fa:95:52:eb:1b:0b:44:76:d7:b3:e8:21:36:15:45:c8:69:42: 79:05:26:19:21:56:b0:20:ac:09:dd:d2:bb:88:18:e4:9b:3a: a5:e9:cd:e3:0e:03:31:74:09:61:b3:65:bf:44:04:90:74:39: c9:06:0f:5a:02:80:aa:4f:a9:dc:7f:f8:a7:5c:45:a9:5e:90: a1:dc:9c:2b:e4:c6:16:9e:94:2f:70:d6:66:39:80:1a:c0:8a: 33:84:9c:44:6f:3a:0d:8a:ec:01:47:fa:ba:ab:97:f9:c8:f3: 63:26:bb:ec:a5:56:b3:5a:aa:19:00:8b:f6:47:9c:21:8b:aa: fd:69:45:cd:ed:58:f2:96:00:09:16:dc:33:cd:db:15:bc:c4: f9:5a:bc:89:eb:1c:e3:2e:ca:ae:c0:3a:49:ae:d2:92:a8:57: 42:fd:db:47:d3:e0:46:56:58:b6:2c:f7:19:76:cb:4f:04:b6: 22:b2:62:97:6e:61:63:b9:2e:62:6b:72:f2:03:54:83:a1:96: 55:4b:80:4c:ad:19:3d:b8:bf:52:64:7d:88:78:ee:2c:18:f1: 46:77:6d:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUwNDI3MDIzMjU0WhcNMjUwNTA0MDIzMjU0WjAYMRYwFAYD VQQDEw02ODBkOTc1Ni00OTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5rHdg0mva5FJWXdFNpYNuUnykqPG/idzH67lYQ8nIxIp7/bMPq3Yi1tFqJ7 aqraC7ZFVBzZbxCB0a0eT0BfXg4gJplQ1WZ6j8yAuRgE3rNvkBHEB4oZcfiwdwH1 Lp7cd51zSbTd97d1oqRdHBE6AJcDaefWvoA+uxHuEvFAVCRL4IZk3P6/9uGTL5LI Ot3PflEGF7Iixc5I+4XpjSoC9+TmSiBe5U04B7sXfJsWawOPuFz7TUeBa2oPHeha IndVsjCaccVa4JBfSQuwEUErCaWnp5oO41EEyevHsYNLXsvw4bvV7maAfL1GoFRv qxjZhL8ScHLH7Z+KxBuCGCjbGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrSO/vr x4Y7GPjPpeVaODfsKNHUMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjOTxHRD+csapDcPIEpLp7eCWNdT8zvAEocwELEYlwqr6cIBP6lVLr GwtEdtez6CE2FUXIaUJ5BSYZIVawIKwJ3dK7iBjkmzql6c3jDgMxdAlhs2W/RASQ dDnJBg9aAoCqT6ncf/inXEWpXpCh3Jwr5MYWnpQvcNZmOYAawIozhJxEbzoNiuwB R/q6q5f5yPNjJrvspVazWqoZAIv2R5whi6r9aUXN7VjylgAJFtwzzdsVvMT5WryJ 6xzjLsquwDpJrtKSqFdC/dtH0+BGVli2LPcZdstPBLYismKXbmFjuS5ia3LyA1SD oZZVS4BMrRk9uL9SZH2IeO4sGPFGd20P -----END CERTIFICATE-----Generated at Tue Apr 29 00:33:50 2025 by rpki-client