$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: uJVv6Qm5LcWAEFDaWSEf3UNTzIfnbOfiOOuCVDAkCUs= Subject key identifier: A1:2D:AF:FE:3B:92:6D:DC:87:08:CA:92:DA:C5:CA:EB:35:CF:9F:7F Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 082F Signing time: Thu 24 Apr 2025 20:40:18 +0000 Manifest this update: Thu 24 Apr 2025 20:40:17 +0000 Manifest next update: Thu 01 May 2025 20:40:17 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: hrrsYw1Fgxz91Kv8QgHC6MZ271nDEjbY/4bejNNxu24=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: d3qr5RqMQclwYYIrxTT2M2ZEqEhw3tr48jNwaXCY/ZQ=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Gf0OG44Gbrw/oSuWZaX2oN0pSzBlgivn+JOWWsA/Jy4=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: A3kThrVaT5oRwxsCsohgrMXC95qG/MeuK1hdFh/7ma0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Apr 24 20:40:17 2025 GMT Not After : May 1 20:40:17 2025 GMT Subject: CN=680aa1b2-f5c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ee:13:6f:f7:a6:e4:cd:79:15:11:f2:27:8f: c9:da:d5:cd:88:56:fc:d1:8f:6f:df:e6:01:fb:bf: 3d:8b:0b:02:75:dc:bb:b4:92:34:ac:43:9c:23:65: 94:24:0d:3c:ad:77:9b:a5:5c:9f:ed:58:62:7d:32: fe:ae:da:f0:9b:07:95:da:c7:ef:ab:09:d2:ba:d2: d3:7a:75:03:ae:19:ac:56:3d:d0:5f:05:b8:52:a2: f5:b5:e1:3a:70:39:60:af:39:f5:c4:c5:28:66:c8: 7c:60:33:5e:42:7c:d3:1c:21:3e:f6:1e:c4:6e:a2: 10:77:e6:52:98:63:5c:39:f4:6a:8b:bc:a9:f2:5a: 77:80:db:fe:5d:50:38:73:cb:8b:cf:bc:ac:63:3d: 49:a2:45:5f:43:53:9b:29:f4:a0:ec:9c:7d:5e:72: eb:1f:9d:ff:d3:34:f3:76:69:50:36:68:3d:8a:2f: 95:7e:03:e9:2f:e1:21:6c:d9:19:a5:69:71:a5:6a: 23:60:00:fe:52:4f:fa:28:46:45:2a:45:a2:65:77: 7a:7d:ee:c9:f1:f6:c6:bd:b4:3d:b9:14:97:2d:5f: f2:f4:fe:8b:f7:12:24:38:6f:63:4a:ab:7c:c2:af: 4a:2e:30:ba:c2:a6:ea:d6:ea:2a:2c:76:df:9c:70: 6e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2D:AF:FE:3B:92:6D:DC:87:08:CA:92:DA:C5:CA:EB:35:CF:9F:7F X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c1:e2:24:3f:f0:71:23:6d:39:8e:19:c1:40:21:eb:5a:5d: 4d:d7:88:64:90:a0:84:0d:a0:10:57:a5:67:b4:ec:c5:e1:42: 22:e1:95:e8:36:bd:37:ac:dd:84:d8:9d:eb:4d:16:a6:5f:b3: 23:16:7d:13:ed:bf:7b:79:eb:19:2a:c9:fa:b1:b3:2a:a9:85: 23:36:1e:06:d6:0d:d5:c5:62:44:e8:4d:6f:69:f2:d0:ab:d3: b7:a8:d3:55:98:72:70:b2:48:98:62:37:e8:48:08:f4:e4:c7: 43:e4:7e:d3:b7:2e:9e:2e:85:4a:49:51:d0:2c:52:cf:47:12: a2:f1:5d:4f:2c:ab:bb:6e:12:a1:14:7f:dd:65:de:f5:36:97: 19:55:f0:24:51:28:5b:31:86:ec:4c:1b:db:e5:0b:2e:85:50: 3e:e5:ad:52:d8:d1:1f:cd:52:bb:fa:3e:ba:df:e8:e0:d7:98: 0b:15:ba:3e:60:83:2d:81:3a:57:fc:29:26:51:b7:69:a5:10: 81:9f:9b:57:79:4e:b0:6d:dd:f4:98:c8:70:e9:eb:e9:17:1a: 93:4b:1a:bf:ec:ae:74:88:87:97:4f:a0:dd:b0:c0:64:84:5e: a4:aa:fd:9b:2c:b6:45:70:a7:ef:6f:95:b1:fd:8f:8b:9c:83: e4:69:e8:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNDI0MjA0MDE3WhcNMjUwNTAxMjA0MDE3WjAYMRYwFAYD VQQDEw02ODBhYTFiMi1mNWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAre4Tb/em5M15FRHyJ4/J2tXNiFb80Y9v3+YB+789iwsCddy7tJI0rEOcI2WU JA08rXebpVyf7VhifTL+rtrwmweV2sfvqwnSutLTenUDrhmsVj3QXwW4UqL1teE6 cDlgrzn1xMUoZsh8YDNeQnzTHCE+9h7EbqIQd+ZSmGNcOfRqi7yp8lp3gNv+XVA4 c8uLz7ysYz1JokVfQ1ObKfSg7Jx9XnLrH53/0zTzdmlQNmg9ii+VfgPpL+EhbNkZ pWlxpWojYAD+Uk/6KEZFKkWiZXd6fe7J8fbGvbQ9uRSXLV/y9P6L9xIkOG9jSqt8 wq9KLjC6wqbq1uoqLHbfnHBuuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEtr/47 km3chwjKktrFyus1z59/MB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0weIkP/BxI205jhnBQCHrWl1N14hkkKCEDaAQV6VntOzF4UIi4ZXo Nr03rN2E2J3rTRamX7MjFn0T7b97eesZKsn6sbMqqYUjNh4G1g3VxWJE6E1vafLQ q9O3qNNVmHJwskiYYjfoSAj05MdD5H7Tty6eLoVKSVHQLFLPRxKi8V1PLKu7bhKh FH/dZd71NpcZVfAkUShbMYbsTBvb5QsuhVA+5a1S2NEfzVK7+j663+jg15gLFbo+ YIMtgTpX/CkmUbdppRCBn5tXeU6wbd30mMhw6evpFxqTSxq/7K50iIeXT6DdsMBk hF6kqv2bLLZFcKfvb5Wx/Y+LnIPkaegd -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:41 2025 by rpki-client