$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: qYE1J3tzA/AVTeS9fybevBlKrm6BMGgmxQHWTaRSHDM= Subject key identifier: 58:23:F3:BE:F8:C4:63:FD:5A:15:E9:77:12:00:A4:8D:E9:FC:F4:2F Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B0D Signing time: Thu 24 Apr 2025 19:10:05 +0000 Manifest this update: Thu 24 Apr 2025 19:10:05 +0000 Manifest next update: Thu 01 May 2025 19:10:05 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: 8LQke4c2Vg9dojIsEtUihfk1OT/0WaIH49PEA+enRTY=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Apr 24 19:10:05 2025 GMT Not After : May 1 19:10:05 2025 GMT Subject: CN=680a8c8d-c091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:45:63:93:09:cf:b8:e8:f5:96:ea:da:21:03: be:11:c6:27:61:17:36:17:8e:cc:b6:d0:1c:f6:82: 29:63:dc:b8:e3:f7:a1:56:7f:64:dd:d0:5b:0b:e4: 7f:de:88:ca:46:b2:72:e4:33:9c:12:cf:ab:3f:df: 42:9b:e8:09:91:00:01:4e:0f:fe:f9:6e:de:ee:bc: ad:91:35:8a:bf:13:52:fa:46:13:08:2e:1c:b1:80: af:d8:f6:94:96:1d:e4:7d:75:11:85:b0:f3:6e:bd: c3:91:56:e4:85:ac:73:d7:1f:3c:13:b5:04:67:7d: 3f:0c:76:6c:7c:72:7a:10:ee:bf:6c:36:87:e7:13: f2:5d:86:69:20:7c:ea:f4:30:a4:9a:13:4b:1b:35: ad:b4:1e:33:53:68:b3:1a:d5:d2:51:85:2b:c4:84: f3:ad:ee:c6:b3:63:90:7c:4d:3b:01:dd:40:e4:0a: 77:bc:dd:50:85:c9:71:81:16:cf:98:90:26:cb:af: 63:b9:e2:18:c4:88:a8:4d:ef:72:36:9f:c2:3c:02: ab:68:5a:ae:91:1b:c7:f7:c0:1a:64:75:99:1f:4b: ca:9a:27:21:8e:e4:f9:f1:bb:73:01:f2:c0:ab:24: 0a:b9:8d:01:b4:cc:3d:af:02:19:4f:5d:8e:f7:e4: 47:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:23:F3:BE:F8:C4:63:FD:5A:15:E9:77:12:00:A4:8D:E9:FC:F4:2F X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:31:eb:12:b4:ba:a4:a2:15:e1:c3:67:ed:34:22:6b:ce:84: 45:a2:63:92:12:b2:07:37:24:6c:9f:a2:2f:af:ba:70:3e:84: 52:ee:a7:40:e4:da:92:e6:80:b2:20:25:23:58:35:35:c2:27: 19:8f:eb:a3:d6:54:ba:4a:ca:dc:bd:d7:8a:9c:26:c8:a5:ae: 56:1b:6d:95:dc:ef:e0:f5:b1:44:74:f3:f9:6a:b3:99:6f:81: d0:c3:7f:5e:ef:0a:9a:07:98:84:bb:01:1c:7e:a5:4b:25:1e: 6b:24:27:c7:64:ae:ba:44:42:c1:ff:4e:f1:3c:48:b7:48:01: 41:5c:fa:44:69:a7:51:f7:2b:1d:59:1e:25:e1:5d:ea:be:5c: d8:07:f1:19:07:31:cc:8e:0c:4c:7d:cf:a9:ba:58:7f:5c:9b: 9e:12:de:95:c3:2f:5d:3b:d9:0e:f4:29:6e:0e:4e:e9:1d:52: 50:b6:33:a2:a9:ea:9f:c5:71:22:46:4a:ae:72:e6:b9:96:4c: 65:5f:5e:f4:56:e0:42:24:23:70:b4:91:72:fe:52:39:d1:2a: bf:0d:48:96:02:7a:26:a0:7c:64:17:ee:8e:21:6a:29:82:ea: ba:be:35:61:0c:03:b8:aa:96:a9:40:51:4e:dc:6f:7e:a9:36: 1d:c5:e9:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNDI0MTkxMDA1WhcNMjUwNTAxMTkxMDA1WjAYMRYwFAYD VQQDEw02ODBhOGM4ZC1jMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEVjkwnPuOj1luraIQO+EcYnYRc2F47MttAc9oIpY9y44/ehVn9k3dBbC+R/ 3ojKRrJy5DOcEs+rP99Cm+gJkQABTg/++W7e7rytkTWKvxNS+kYTCC4csYCv2PaU lh3kfXURhbDzbr3DkVbkhaxz1x88E7UEZ30/DHZsfHJ6EO6/bDaH5xPyXYZpIHzq 9DCkmhNLGzWttB4zU2izGtXSUYUrxITzre7Gs2OQfE07Ad1A5Ap3vN1QhclxgRbP mJAmy69jueIYxIioTe9yNp/CPAKraFqukRvH98AaZHWZH0vKmichjuT58btzAfLA qyQKuY0BtMw9rwIZT12O9+RHzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgj8774 xGP9WhXpdxIApI3p/PQvMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7MesStLqkohXhw2ftNCJrzoRFomOSErIHNyRsn6Ivr7pwPoRS7qdA 5NqS5oCyICUjWDU1wicZj+uj1lS6SsrcvdeKnCbIpa5WG22V3O/g9bFEdPP5arOZ b4HQw39e7wqaB5iEuwEcfqVLJR5rJCfHZK66RELB/07xPEi3SAFBXPpEaadR9ysd WR4l4V3qvlzYB/EZBzHMjgxMfc+pulh/XJueEt6Vwy9dO9kO9CluDk7pHVJQtjOi qeqfxXEiRkqucua5lkxlX170VuBCJCNwtJFy/lI50Sq/DUiWAnomoHxkF+6OIWop guq6vjVhDAO4qpapQFFO3G9+qTYdxeme -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:22 2025 by rpki-client