$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: l5SlP643xC1/fLCgjLEfTIxCj2HtDVr+Xk7p+MwfphU= Subject key identifier: 65:36:9D:75:70:F9:BD:CE:BF:76:96:C5:4B:87:8A:BA:47:76:05:34 Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 4F Signing time: Fri 25 Apr 2025 06:17:19 +0000 Manifest this update: Fri 25 Apr 2025 06:17:18 +0000 Manifest next update: Fri 02 May 2025 06:17:18 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: pX3xXkINc80AyoXOQJi5i3zfTNLJ7mFWNjOeDeeC76A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: Apr 25 06:17:18 2025 GMT Not After : May 2 06:17:18 2025 GMT Subject: CN=680b28ef-cc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1f:7d:9c:64:a4:ac:93:93:bb:1d:7e:42:8b: 8e:aa:83:f1:71:2e:1a:2d:e3:72:d5:0f:d5:cb:66: e6:df:6d:7f:5c:cd:cc:ea:0e:44:5a:58:5e:cc:54: da:8f:14:bf:ac:40:78:9c:27:c8:2b:bc:4a:b9:b2: 11:8e:bd:45:ca:ee:e5:b1:d1:b2:f7:f5:d7:03:12: 51:de:66:83:ca:a6:d6:2d:08:8f:21:a8:a5:fb:91: fe:1b:a6:97:a2:6f:5d:81:88:c7:2f:45:f3:9f:6c: 22:91:a4:04:9b:20:d2:1e:46:f5:ae:77:dd:dd:c0: 78:e0:1f:92:c7:14:58:aa:da:a3:e2:f4:73:e2:6c: 8a:a7:e0:f2:4f:0a:d6:6f:ca:7b:83:4e:cc:6e:dc: fc:10:73:f6:6e:41:47:43:63:cc:54:55:52:9e:1b: 32:e5:ab:c4:cf:32:77:86:71:d4:f8:3c:67:1f:1e: b9:6e:99:45:58:4e:62:a9:a6:33:91:2a:3b:fc:2e: 01:fe:26:c7:01:50:d5:af:10:1f:1f:c9:55:ed:b5: 82:85:5e:36:0c:18:15:b6:f4:7a:d6:6a:11:eb:c0: 78:25:c7:0c:93:77:e2:3b:02:b4:8f:df:35:aa:5c: e5:37:70:27:f1:d2:9d:a7:aa:56:0e:ae:a1:ce:59: f3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:36:9D:75:70:F9:BD:CE:BF:76:96:C5:4B:87:8A:BA:47:76:05:34 X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:d0:95:1f:15:e0:b3:3f:f9:65:95:8c:b5:e0:b0:49:f1:6e: f5:52:ce:99:3e:a0:65:f8:b8:55:59:f5:28:67:5d:0b:7a:86: 65:f1:77:64:0c:6f:eb:e9:7e:7f:e3:e1:dc:36:94:ed:20:8d: b1:31:bd:99:ef:91:17:32:4e:59:6f:35:eb:fc:0f:de:56:46: db:4b:97:7e:b4:d5:ff:95:5b:ce:a7:fe:34:4c:6b:38:2d:b1: bb:fc:38:f7:1d:c8:70:f5:64:4b:11:74:fe:8f:4c:b3:85:06: 0c:da:c3:38:88:51:62:58:00:7e:7c:7c:f6:02:6a:42:b5:8c: 78:b0:9c:dd:f7:08:50:a4:da:0d:69:53:49:93:54:1f:90:e0: 50:80:c7:3e:fb:cc:38:39:e1:07:b8:84:9b:c6:62:2f:60:d2: 0f:1b:dd:45:ac:20:fa:bf:c4:6b:91:f3:f8:cb:0f:f5:26:68: 12:be:45:86:82:0c:84:8f:da:12:84:6f:05:da:6d:a3:fd:2a: 39:d8:d7:3b:6e:02:ab:36:ea:18:d7:71:c2:17:b4:b3:9c:e7: e2:8a:da:9a:65:0d:93:70:23:e7:a5:b2:d9:93:22:76:02:fd: 57:aa:d3:2c:67:e2:72:4e:8b:05:0c:22:9b:dd:d4:b0:83:99: 25:cd:47:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUM3MzExMC8GA1UEBRMoRUI4OTg3QzUyMEFGRUNEQzI0RjQxQzg2RkM2QkFERDND MTZGQTYyQTAeFw0yNTA0MjUwNjE3MThaFw0yNTA1MDIwNjE3MThaMBgxFjAUBgNV BAMTDTY4MGIyOGVmLWNjMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLH32cZKSsk5O7HX5Ci46qg/FxLhot43LVD9XLZubfbX9czczqDkRaWF7MVNqP FL+sQHicJ8grvEq5shGOvUXK7uWx0bL39dcDElHeZoPKptYtCI8hqKX7kf4bppei b12BiMcvRfOfbCKRpASbINIeRvWud93dwHjgH5LHFFiq2qPi9HPibIqn4PJPCtZv ynuDTsxu3PwQc/ZuQUdDY8xUVVKeGzLlq8TPMneGcdT4PGcfHrlumUVYTmKppjOR Kjv8LgH+JscBUNWvEB8fyVXttYKFXjYMGBW29HrWahHrwHglxwyTd+I7ArSP3zWq XOU3cCfx0p2nqlYOrqHOWfNRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZTaddXD5 vc6/dpbFS4eKukd2BTQwHwYDVR0jBBgwFoAU64mHxSCv7Nwk9ByG/Gut08Fvpiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQzczL0M0OTFCQTRFQUMw RDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjRtSHhTQ3Y3TndrOUJ5R19HdXQwOEZ2cGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QzczL0M0OTFCQTRFQUMwRDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053 azlCeUdfR3V0MDhGdnBpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLQlR8V4LM/+WWVjLXgsEnxbvVSzpk+oGX4uFVZ9ShnXQt6hmXxd2QM b+vpfn/j4dw2lO0gjbExvZnvkRcyTllvNev8D95WRttLl3601f+VW86n/jRMazgt sbv8OPcdyHD1ZEsRdP6PTLOFBgzawziIUWJYAH58fPYCakK1jHiwnN33CFCk2g1p U0mTVB+Q4FCAxz77zDg54Qe4hJvGYi9g0g8b3UWsIPq/xGuR8/jLD/UmaBK+RYaC DISP2hKEbwXabaP9KjnY1ztuAqs26hjXccIXtLOc5+KK2pplDZNwI+elstmTInYC /Veq0yxn4nJOiwUMIpvd1LCDmSXNR/Q= -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:29 2025 by rpki-client