$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: gR2vPYuWRu1IS/XcESGdDh1a3KVLvMD+8eS/o6Pmw3s= Subject key identifier: 8D:33:16:83:C2:CD:5B:5C:AA:A6:3A:1C:FC:F5:C6:C5:9D:A4:AC:9E Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 3473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 3473 Signing time: Thu 24 Apr 2025 15:05:53 +0000 Manifest this update: Thu 24 Apr 2025 15:05:53 +0000 Manifest next update: Thu 01 May 2025 15:05:53 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: 5Ty8ZC1Aryfbldnkosd3XqBVYpUbH06X6k61rsJutJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13427 (0x3473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Apr 24 15:05:53 2025 GMT Not After : May 1 15:05:53 2025 GMT Subject: CN=680a5351-54d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:bf:75:35:5c:bc:67:24:1e:a6:9d:d6:8b: 44:0f:f2:aa:69:9a:fa:ea:29:c5:a4:d3:6c:5d:81: b4:42:23:26:99:4c:38:fb:90:ce:64:23:db:ef:c9: f6:0f:0f:aa:53:44:31:41:3a:1a:fc:aa:73:84:a5: 58:af:56:c4:f2:59:ae:b6:9f:48:8b:03:4d:e9:bb: 29:ab:3a:fc:34:5e:0c:9f:e1:75:a0:d6:03:d2:13: 25:ca:1b:74:52:be:50:5c:48:6e:b7:a3:82:6b:cd: ab:f7:b0:5e:a4:24:9e:cb:5c:48:fb:42:03:6c:f4: 61:3d:63:88:93:c4:73:15:22:fe:ca:b2:fa:c3:fb: ad:76:f1:60:a8:30:d7:86:35:b1:36:99:d1:c3:75: 3f:b5:f8:6d:f3:24:02:ea:2f:1f:14:28:b0:ac:0f: 2e:f6:20:be:cf:c9:0c:44:67:23:88:90:69:2a:72: e8:ce:57:4f:c2:db:0b:50:e1:f5:39:dc:1d:d0:4d: 9f:d1:d0:92:c8:a5:ca:47:4a:e8:bf:0b:13:de:ed: e2:37:13:45:fe:d9:ce:76:15:18:9f:8b:18:1d:02: 25:b6:26:fd:82:06:bb:9f:8c:3f:2e:e8:b1:c1:68: 79:9a:d5:bf:b9:06:7a:fb:08:bb:7a:89:27:2f:9a: 0c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:33:16:83:C2:CD:5B:5C:AA:A6:3A:1C:FC:F5:C6:C5:9D:A4:AC:9E X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:10:e7:12:19:20:34:c1:18:48:8e:41:d0:ac:fc:cb:7f:b5: 9f:b4:a1:cd:2a:58:03:4a:9b:9e:82:be:4b:2f:f2:96:5f:92: 1e:fd:ca:2b:8c:b2:30:9c:ec:03:96:fa:90:22:b1:9e:87:1e: 28:bc:1e:46:e8:4a:33:bf:78:76:fe:59:44:d2:9e:2a:ec:2a: 08:0f:2b:f8:28:d9:97:7b:b8:99:20:07:f5:c0:e1:ec:d4:68: be:79:5e:7b:c8:70:3e:e8:07:2c:c4:b4:f0:d0:25:20:a2:81: 51:1a:9f:9d:95:a7:1f:b5:81:2e:9e:70:34:14:ca:a8:58:e1: 07:4a:e3:1b:99:20:4b:a7:20:37:06:6b:13:6f:13:12:01:94: 36:9a:0d:77:ae:14:3e:f1:ee:9f:7d:6e:71:73:e3:be:6d:dd: 11:22:ee:a2:fd:5a:08:ff:91:28:09:5d:b7:af:f5:66:85:10: 90:31:e2:a0:f8:21:8b:dc:ef:83:8c:95:01:9d:f3:2f:4e:49: 70:8e:87:6c:c7:aa:d5:65:23:c0:a3:30:06:90:00:56:f9:bd: dd:b1:34:67:37:36:73:9b:70:16:c3:c4:a5:bc:3a:be:b5:5c: 8c:9b:b7:24:89:17:fa:c2:f1:af:d0:8d:6b:8f:5a:d6:ac:08: ea:c6:a6:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwNDI0MTUwNTUzWhcNMjUwNTAxMTUwNTUzWjAYMRYwFAYD VQQDEw02ODBhNTM1MS01NGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oW/dTVcvGckHqad1otED/KqaZr66inFpNNsXYG0QiMmmUw4+5DOZCPb78n2 Dw+qU0QxQToa/KpzhKVYr1bE8lmutp9IiwNN6bspqzr8NF4Mn+F1oNYD0hMlyht0 Ur5QXEhut6OCa82r97BepCSey1xI+0IDbPRhPWOIk8RzFSL+yrL6w/utdvFgqDDX hjWxNpnRw3U/tfht8yQC6i8fFCiwrA8u9iC+z8kMRGcjiJBpKnLozldPwtsLUOH1 Odwd0E2f0dCSyKXKR0rovwsT3u3iNxNF/tnOdhUYn4sYHQIltib9gga7n4w/Luix wWh5mtW/uQZ6+wi7eoknL5oM0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0zFoPC zVtcqqY6HPz1xsWdpKyeMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6EOcSGSA0wRhIjkHQrPzLf7WftKHNKlgDSpuegr5LL/KWX5Ie/cor jLIwnOwDlvqQIrGehx4ovB5G6Eozv3h2/llE0p4q7CoIDyv4KNmXe7iZIAf1wOHs 1Gi+eV57yHA+6AcsxLTw0CUgooFRGp+dlacftYEunnA0FMqoWOEHSuMbmSBLpyA3 BmsTbxMSAZQ2mg13rhQ+8e6ffW5xc+O+bd0RIu6i/VoI/5EoCV23r/VmhRCQMeKg +CGL3O+DjJUBnfMvTklwjodsx6rVZSPAozAGkABW+b3dsTRnNzZzm3AWw8SlvDq+ tVyMm7ckiRf6wvGv0I1rj1rWrAjqxqZ5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:05 2025 by rpki-client