$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: lk+LLB4vTCpj/8gycjIr1mi3boU6d68LdsEGMJkZwkI= Subject key identifier: E4:7C:AC:20:29:20:78:62:BE:61:BE:E2:63:6C:40:4C:C1:E5:69:EB Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 0190 Signing time: Fri 25 Apr 2025 02:37:30 +0000 Manifest this update: Fri 25 Apr 2025 02:37:29 +0000 Manifest next update: Fri 02 May 2025 02:37:29 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: +Ca3+R7/hn0+kqAqhXJreQNPulge/1ZXR9bxZtmyzT0=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: ewiUnrO7XAgjqsA1wG//P3KoAbNdOVY4KG59Y9E54Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Apr 25 02:37:29 2025 GMT Not After : May 2 02:37:29 2025 GMT Subject: CN=680af56a-facf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:db:03:d1:1e:5c:03:d4:9e:90:2a:19:28: 9a:28:71:3c:95:29:a3:fb:52:82:33:27:6b:a3:9b: 4b:8d:40:7a:4c:ce:98:80:7e:aa:b5:91:05:b1:da: eb:0b:38:b8:35:02:b5:f1:5b:1e:39:35:8a:56:09: a5:18:9f:a4:b4:7d:fa:2f:22:33:10:06:26:db:5b: 5f:7e:6a:82:81:35:dd:e2:5a:70:65:49:da:08:30: d8:88:e7:8d:a6:31:d7:c0:bb:c0:1c:8f:b1:0d:f4: 88:7b:49:b8:de:e3:2f:9e:cc:0b:cf:ed:88:45:99: 48:61:bd:a2:04:e1:57:ed:95:ed:47:28:82:0f:72: d0:af:2b:d2:23:34:b0:52:b9:00:49:b0:de:98:8c: a2:c3:50:80:a9:e9:c5:d2:5d:80:7c:04:7b:91:ed: 47:a0:9a:72:5f:2b:8a:fd:3f:02:69:00:7c:70:aa: ee:21:61:64:86:f4:e3:32:7f:e5:13:3c:49:f9:4a: d0:84:13:58:86:b3:b4:aa:e9:64:9e:2f:dc:c4:f4: 7f:3c:8a:39:c2:ac:be:63:f7:de:8c:dd:f3:b8:14: 5e:f4:fe:08:dc:cf:02:5d:87:a3:1b:e9:35:81:ea: ae:8c:d7:a0:03:7d:51:8f:59:a4:1e:d4:43:1d:56: d6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7C:AC:20:29:20:78:62:BE:61:BE:E2:63:6C:40:4C:C1:E5:69:EB X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e8:15:27:20:42:1e:4f:5f:d3:98:6c:84:87:3e:12:03:b6: ef:2e:82:d2:70:26:0d:40:4e:86:63:2d:b5:b4:3b:6d:bb:14: b0:88:55:bd:68:3b:f8:09:37:7d:5d:c0:93:dc:4d:80:de:07: 01:5f:fe:c6:d7:e8:e9:e0:18:f1:4b:83:ab:5e:25:d7:d8:41: 21:67:b1:71:a4:3a:09:e6:39:3e:19:17:49:2d:83:d2:66:7f: 1b:3c:f6:cc:6b:dd:8a:09:1b:02:c4:92:af:ea:9a:21:1b:a6: 64:40:91:d4:d0:68:15:14:d2:31:b5:7e:d6:f8:df:2a:a1:00: 06:11:c6:cb:e4:8b:d8:ee:e2:3b:4d:a5:05:be:80:15:e3:fa: 95:98:b2:61:de:d0:1c:ea:63:f5:4c:37:31:7b:fb:46:44:8c: e5:2a:80:c3:57:d7:e0:11:7b:6e:d2:ea:70:82:d9:1b:1d:47: a8:18:07:f6:2a:e8:37:72:55:d9:37:85:eb:43:bd:1a:d6:09: 19:ea:79:cb:4d:2a:c7:ad:ca:36:6d:36:05:28:c0:b9:92:25: ab:ee:d2:20:54:3a:dd:6a:52:b5:4e:ee:24:d4:76:41:9c:b5: 27:32:8f:23:b1:0f:bc:39:b2:bd:50:07:c0:6a:2c:92:36:ee: eb:22:1b:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUwNDI1MDIzNzI5WhcNMjUwNTAyMDIzNzI5WjAYMRYwFAYD VQQDEw02ODBhZjU2YS1mYWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxLbA9EeXAPUnpAqGSiaKHE8lSmj+1KCMydro5tLjUB6TM6YgH6qtZEFsdrr Czi4NQK18VseOTWKVgmlGJ+ktH36LyIzEAYm21tffmqCgTXd4lpwZUnaCDDYiOeN pjHXwLvAHI+xDfSIe0m43uMvnswLz+2IRZlIYb2iBOFX7ZXtRyiCD3LQryvSIzSw UrkASbDemIyiw1CAqenF0l2AfAR7ke1HoJpyXyuK/T8CaQB8cKruIWFkhvTjMn/l EzxJ+UrQhBNYhrO0qulkni/cxPR/PIo5wqy+Y/fejN3zuBRe9P4I3M8CXYejG+k1 gequjNegA31Rj1mkHtRDHVbWdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOR8rCAp IHhivmG+4mNsQEzB5WnrMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd6BUnIEIeT1/TmGyEhz4SA7bvLoLScCYNQE6GYy21tDttuxSwiFW9 aDv4CTd9XcCT3E2A3gcBX/7G1+jp4BjxS4OrXiXX2EEhZ7FxpDoJ5jk+GRdJLYPS Zn8bPPbMa92KCRsCxJKv6pohG6ZkQJHU0GgVFNIxtX7W+N8qoQAGEcbL5IvY7uI7 TaUFvoAV4/qVmLJh3tAc6mP1TDcxe/tGRIzlKoDDV9fgEXtu0upwgtkbHUeoGAf2 Kug3clXZN4XrQ70a1gkZ6nnLTSrHrco2bTYFKMC5kiWr7tIgVDrdalK1Tu4k1HZB nLUnMo8jsQ+8ObK9UAfAaiySNu7rIhuE -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:35 2025 by rpki-client