$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: 69ZHNhHkdid/VnyZ4q7jzM498Ogr6tRm8BsDVPR6mgo= Subject key identifier: 06:E2:66:4A:6E:B0:6C:5C:2E:38:60:62:C8:88:F8:CE:88:4F:CD:B3 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D34 Signing time: Thu 24 Apr 2025 17:58:30 +0000 Manifest this update: Thu 24 Apr 2025 17:58:30 +0000 Manifest next update: Thu 01 May 2025 17:58:30 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: +FAKwrS5Ua5wCUpy6JIO0PMSUnn6OwfIbB3+blXTCgU=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: 7fCnTjBep84sk9XgkMrT6eykdpGaMDHQzEZtybjm0AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3391 (0xd3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Apr 24 17:58:30 2025 GMT Not After : May 1 17:58:30 2025 GMT Subject: CN=680a7bc6-86b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0d:34:fe:7f:4d:b5:10:c5:47:5c:e3:3f:34: 56:7c:5a:53:80:ed:8a:0d:af:ee:ed:c5:4d:1f:7f: ab:4b:a1:fe:99:8a:48:f3:c3:7c:2d:8a:df:a2:80: 79:0b:47:9a:e3:5e:8a:e1:58:04:c8:32:2b:fc:c4: a9:25:25:8f:5c:d8:0d:f7:2f:a7:2b:c3:0a:8d:fe: 0c:80:c1:0e:f7:46:23:01:c1:2d:af:98:18:25:a8: 84:bf:13:ec:67:56:f1:55:01:50:55:15:11:5d:37: ad:5f:69:9e:e0:64:4b:8d:db:70:d6:ec:42:f1:57: aa:2d:cf:fb:a0:21:19:d7:56:8e:50:f2:a7:91:09: 49:80:13:f8:69:36:3d:a0:ad:f8:53:17:6a:46:05: de:a5:76:6a:59:5e:ae:82:a7:c2:73:39:9a:e0:f8: b8:97:f6:24:53:dc:39:91:dd:b4:2e:f9:bd:a8:c8: 57:e2:04:58:55:7d:71:ea:ba:2e:db:30:97:c3:9d: 01:0f:c1:86:81:7a:21:f2:9e:bd:0e:2e:13:52:ee: 68:53:b1:d3:f1:be:e5:19:e6:c5:dd:8f:01:76:2c: dc:18:94:8a:bc:9a:93:f2:e5:45:d6:cf:ed:6a:33: 7e:b3:61:65:52:4f:9e:27:98:6d:48:5e:d9:a5:74: fd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E2:66:4A:6E:B0:6C:5C:2E:38:60:62:C8:88:F8:CE:88:4F:CD:B3 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:88:0b:e8:d3:c9:2f:ae:37:29:3b:5f:9f:b5:2b:29:a8:32: f8:ee:00:2d:bd:23:37:3a:a2:5d:0a:ff:62:30:d6:79:e9:1a: 93:12:7a:4c:44:46:bb:40:c6:1c:70:30:fa:b4:46:4a:4c:5a: a6:f2:f9:c0:e3:de:71:02:9a:92:bb:70:db:7f:b9:26:b5:52: fb:69:94:e5:aa:72:22:9d:b6:47:a0:7a:20:29:6d:c2:4e:93: c2:a0:bf:a9:cf:7f:3e:82:5c:c3:03:db:48:f6:95:b5:9a:14: d9:44:69:3f:42:48:3a:ab:04:9f:fa:ad:78:31:52:e0:2d:33: 85:f4:28:44:68:44:0d:fb:5b:4c:00:aa:2f:ec:6c:55:84:19: 0f:69:a9:7c:8f:ca:e0:1a:bd:04:70:71:20:64:f3:d1:06:bc: 07:62:be:66:94:c5:70:35:a8:7d:ca:8f:8e:a8:cb:c6:eb:01: 80:49:84:7b:bd:7b:d4:70:68:9d:62:ce:c3:b6:40:35:30:fa: 2b:d1:06:78:1e:02:3e:d9:1c:05:61:d0:06:42:2f:aa:7a:e7: fc:ae:7d:f7:d1:ba:97:2c:ef:7b:35:e9:06:78:ff:ad:20:25: 53:9f:2f:fb:41:7e:0c:a9:8b:67:01:b5:9f:d0:d7:2f:ef:b5: 6e:2d:ed:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwNDI0MTc1ODMwWhcNMjUwNTAxMTc1ODMwWjAYMRYwFAYD VQQDEw02ODBhN2JjNi04NmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3w00/n9NtRDFR1zjPzRWfFpTgO2KDa/u7cVNH3+rS6H+mYpI88N8LYrfooB5 C0ea416K4VgEyDIr/MSpJSWPXNgN9y+nK8MKjf4MgMEO90YjAcEtr5gYJaiEvxPs Z1bxVQFQVRURXTetX2me4GRLjdtw1uxC8VeqLc/7oCEZ11aOUPKnkQlJgBP4aTY9 oK34UxdqRgXepXZqWV6ugqfCczma4Pi4l/YkU9w5kd20Lvm9qMhX4gRYVX1x6rou 2zCXw50BD8GGgXoh8p69Di4TUu5oU7HT8b7lGebF3Y8BdizcGJSKvJqT8uVF1s/t ajN+s2FlUk+eJ5htSF7ZpXT9OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbiZkpu sGxcLjhgYsiI+M6IT82zMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCViAvo08kvrjcpO1+ftSspqDL47gAtvSM3OqJdCv9iMNZ56RqTEnpM REa7QMYccDD6tEZKTFqm8vnA495xApqSu3Dbf7kmtVL7aZTlqnIinbZHoHogKW3C TpPCoL+pz38+glzDA9tI9pW1mhTZRGk/Qkg6qwSf+q14MVLgLTOF9ChEaEQN+1tM AKov7GxVhBkPaal8j8rgGr0EcHEgZPPRBrwHYr5mlMVwNah9yo+OqMvG6wGASYR7 vXvUcGidYs7DtkA1MPor0QZ4HgI+2RwFYdAGQi+qeuf8rn330bqXLO97NekGeP+t ICVTny/7QX4MqYtnAbWf0Ncv77VuLe3A -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:26 2025 by rpki-client