$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: T5/XC3y/LDMBAsJvR79eeQ5xzex8G95o0gDyeqOgF8k= Subject key identifier: 5E:CB:85:26:9A:01:67:19:64:29:18:4E:67:D0:86:61:60:57:03:0F Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 1232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 121C Signing time: Thu 24 Apr 2025 17:09:37 +0000 Manifest this update: Thu 24 Apr 2025 17:09:37 +0000 Manifest next update: Thu 01 May 2025 17:09:37 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: Y0GnahZmJLdUW4HCdUTEWfLExPuvAhbK2lDEIySkLvc=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: VilJgVER7BycZHaWd4URO4KYACwZnY/x/nNDEK5obqE=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: OeaX4Y36BcWO+hpCFTJVXRa1o/dq7PQS00iGf5uCP9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4658 (0x1232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Apr 24 17:09:37 2025 GMT Not After : May 1 17:09:37 2025 GMT Subject: CN=680a7051-600b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3e:9b:c3:9d:8e:9b:b8:94:f5:2a:9d:79:ce: 3a:43:15:bd:05:7c:8e:fe:25:06:d0:be:da:a3:86: c4:bd:da:66:af:b4:f1:c4:a4:a7:8d:d9:92:79:77: 27:51:b4:45:58:bc:c4:51:9f:22:bb:f4:ae:23:c4: 9c:ae:7e:b2:d5:4e:4b:14:17:22:4e:49:6d:48:b4: 42:5f:59:6c:39:8e:58:7e:06:09:f8:0e:52:20:9f: 69:13:ab:51:62:75:df:6e:8a:a8:e9:b1:0f:da:73: e4:cd:2b:8f:42:18:56:77:46:7e:7a:5c:9d:f1:da: 91:74:06:40:1d:ef:84:74:f4:6b:74:86:fd:a6:fe: 13:06:b1:59:06:11:85:66:1f:b3:d2:bd:71:7f:41: ca:01:69:5c:52:c2:ac:fe:43:25:2d:02:2c:6b:93: 66:ff:1c:d7:4c:33:63:ae:6d:3b:5f:66:f0:09:fd: 1d:3b:c0:f3:b2:54:c9:6d:b0:b1:be:bc:5e:d3:da: 6e:5f:84:eb:b5:0d:e7:fe:0b:38:15:5d:8c:ff:ea: 74:42:8f:87:8f:3e:f2:b7:77:20:54:e6:08:4c:60: 58:97:fd:34:0d:14:5b:d6:b1:ef:43:76:bd:cd:df: 9e:a5:e5:bd:4b:b8:f5:aa:70:e4:21:65:6d:2d:6e: 4f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CB:85:26:9A:01:67:19:64:29:18:4E:67:D0:86:61:60:57:03:0F X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e5:f1:ab:a8:19:7b:cd:63:36:48:91:61:4b:3e:61:f5:a9: d3:e8:87:a0:13:01:c2:d9:03:0a:c7:dd:bf:f9:a8:0d:dc:38: 73:ab:f2:16:a2:0d:bb:29:e1:0a:b2:40:00:27:55:fe:50:58: 6f:5c:fe:f4:6f:01:62:95:01:2d:e3:c0:7a:3c:f3:cb:ab:47: 66:65:22:f3:dd:38:c4:6e:5e:6a:b1:4d:78:36:09:d9:ee:80: 5d:f6:70:5e:d4:66:6b:9b:18:c3:be:6c:66:2c:d8:bb:5b:d2: bf:82:8c:1e:42:6d:6d:a2:87:d5:41:8b:b4:4f:05:75:fe:53: c3:36:16:d7:ba:49:b9:52:e6:28:36:ef:56:f5:8d:49:d4:49: de:e2:6c:4e:0e:af:66:5e:c5:5e:e0:ce:2e:64:e1:05:1f:f9: c4:85:7d:86:a9:37:78:62:2d:66:5f:83:da:4f:00:c9:aa:ac: 5a:a1:ac:92:53:c4:c6:d5:f0:f1:ca:2d:f3:46:dc:06:ed:60: c3:ae:21:40:d7:4c:c6:97:12:14:a1:26:94:af:6e:57:fa:b1: 88:c0:84:12:b0:40:34:bd:50:87:01:a5:79:0e:7c:d8:76:ea: 2b:ac:d9:6a:47:42:02:ce:ca:3d:0d:f9:96:bc:c0:e3:12:b0: d8:b3:6b:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUwNDI0MTcwOTM3WhcNMjUwNTAxMTcwOTM3WjAYMRYwFAYD VQQDEw02ODBhNzA1MS02MDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqz6bw52Om7iU9Sqdec46QxW9BXyO/iUG0L7ao4bEvdpmr7TxxKSnjdmSeXcn UbRFWLzEUZ8iu/SuI8Scrn6y1U5LFBciTkltSLRCX1lsOY5YfgYJ+A5SIJ9pE6tR YnXfboqo6bEP2nPkzSuPQhhWd0Z+elyd8dqRdAZAHe+EdPRrdIb9pv4TBrFZBhGF Zh+z0r1xf0HKAWlcUsKs/kMlLQIsa5Nm/xzXTDNjrm07X2bwCf0dO8DzslTJbbCx vrxe09puX4TrtQ3n/gs4FV2M/+p0Qo+Hjz7yt3cgVOYITGBYl/00DRRb1rHvQ3a9 zd+epeW9S7j1qnDkIWVtLW5P2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7LhSaa AWcZZCkYTmfQhmFgVwMPMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp5fGrqBl7zWM2SJFhSz5h9anT6IegEwHC2QMKx92/+agN3Dhzq/IW og27KeEKskAAJ1X+UFhvXP70bwFilQEt48B6PPPLq0dmZSLz3TjEbl5qsU14NgnZ 7oBd9nBe1GZrmxjDvmxmLNi7W9K/goweQm1toofVQYu0TwV1/lPDNhbXukm5UuYo Nu9W9Y1J1Ene4mxODq9mXsVe4M4uZOEFH/nEhX2GqTd4Yi1mX4PaTwDJqqxaoayS U8TG1fDxyi3zRtwG7WDDriFA10zGlxIUoSaUr25X+rGIwIQSsEA0vVCHAaV5DnzY duorrNlqR0ICzso9DfmWvMDjErDYs2vL -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:41 2025 by rpki-client