$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: 1J6adNDQNU3o2zDmlbGiPdxyGDbObfQmsaEqymbt9bc= Subject key identifier: 2E:BE:36:B2:41:E3:B5:3A:DD:B3:55:57:C2:6D:2D:9D:B0:05:9A:8F Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 3F99 Signing time: Thu 24 Apr 2025 14:48:09 +0000 Manifest this update: Thu 24 Apr 2025 14:48:08 +0000 Manifest next update: Thu 01 May 2025 14:48:08 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: hsEnyyHkkXGQ6XD9FEMvca9eYj7gF2Yf07uB0tfkBFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Apr 24 14:48:08 2025 GMT Not After : May 1 14:48:08 2025 GMT Subject: CN=680a4f29-2f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4a:b8:c7:41:0d:85:28:05:8a:e6:4a:ec:7f: 80:01:12:b6:70:da:72:a9:30:9e:80:03:cc:1d:06: b1:13:a7:7a:0f:b3:52:9e:19:f6:ba:09:14:67:82: eb:1d:b6:7c:09:7b:f4:42:64:1d:ff:d3:f2:a5:c8: ea:9c:78:5f:ec:41:c6:dc:bb:05:55:c5:9e:b4:1d: 03:09:df:4d:91:ee:fa:6a:b7:8f:3f:e3:3a:7c:a6: 19:3a:cc:84:f3:b5:dc:e4:d6:ba:81:d5:2d:86:ab: 29:9f:75:65:16:db:7c:39:fd:4a:53:fb:a9:8a:32: 55:c0:a3:c7:86:97:fc:3c:a8:d9:2a:d3:8f:7f:e9: 05:a2:e6:c3:81:02:4a:03:e6:ce:d7:39:c2:55:97: b4:85:11:38:10:21:6b:e7:8e:97:40:b8:76:3b:7b: 0c:70:7b:02:ef:1a:81:f9:b5:93:af:b9:0a:2a:c5: 87:8e:16:fc:f7:d7:b2:27:db:93:50:7f:b4:67:27: ca:7e:5c:ba:a7:56:f2:3f:93:91:64:b5:b4:b6:d4: 6c:c1:af:15:d3:ce:0f:b6:4c:b7:a2:6c:7d:9b:3e: fd:25:dc:b8:fd:03:fb:6c:36:c3:c2:e7:03:ee:3e: 99:c7:4a:16:d6:3f:30:06:bb:f4:ad:98:2e:68:9a: c0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BE:36:B2:41:E3:B5:3A:DD:B3:55:57:C2:6D:2D:9D:B0:05:9A:8F X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:87:c6:f0:4c:7a:e0:f9:82:78:0c:ee:86:6b:b2:57:6c:d1: 9e:ca:67:23:33:6d:a1:a3:23:0a:62:8d:4a:64:a0:ee:22:7d: 7d:c8:ec:55:84:5e:9b:38:32:97:55:44:03:34:f9:16:82:1a: 59:4e:66:7e:0d:a8:88:f8:ef:3e:b0:78:a7:8d:10:23:f3:eb: 1e:33:69:48:39:22:24:c6:cf:f2:d3:72:f1:53:47:49:2d:40: 75:2c:4d:03:0b:25:3b:8d:89:55:f1:99:f8:5b:5c:ba:40:5a: 17:7f:da:aa:51:ab:03:ee:1f:f4:e3:a2:33:8b:6a:c5:5e:53: e9:22:7b:39:8f:41:6a:68:fa:5a:5b:8b:8b:9f:1b:8d:38:77: 0c:3d:99:e0:64:b3:69:1d:c3:08:8e:81:e5:58:0d:2c:66:bc: 2c:79:ce:f1:da:85:6f:89:e9:30:3c:6b:5d:23:1c:9b:0e:b1: 3e:53:d3:0b:a7:aa:77:c6:9a:73:19:d2:f2:02:ce:d9:66:33: 7a:0d:0c:5d:9e:87:91:86:3e:a2:b0:58:91:b2:c0:e7:cc:b9: 75:72:c1:85:40:57:48:e3:b7:0e:98:02:9c:a5:c5:34:e3:25: e6:44:62:fe:62:6d:fa:71:83:1c:24:72:52:2b:9e:5e:26:7e: 57:5e:e5:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUwNDI0MTQ0ODA4WhcNMjUwNTAxMTQ0ODA4WjAYMRYwFAYD VQQDEw02ODBhNGYyOS0yZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0q4x0ENhSgFiuZK7H+AARK2cNpyqTCegAPMHQaxE6d6D7NSnhn2ugkUZ4Lr HbZ8CXv0QmQd/9PypcjqnHhf7EHG3LsFVcWetB0DCd9Nke76arePP+M6fKYZOsyE 87Xc5Na6gdUthqspn3VlFtt8Of1KU/upijJVwKPHhpf8PKjZKtOPf+kFoubDgQJK A+bO1znCVZe0hRE4ECFr546XQLh2O3sMcHsC7xqB+bWTr7kKKsWHjhb899eyJ9uT UH+0ZyfKfly6p1byP5ORZLW0ttRswa8V084Ptky3omx9mz79Jdy4/QP7bDbDwucD 7j6Zx0oW1j8wBrv0rZguaJrARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6+NrJB 47U63bNVV8JtLZ2wBZqPMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbh8bwTHrg+YJ4DO6Ga7JXbNGeymcjM22hoyMKYo1KZKDuIn19yOxV hF6bODKXVUQDNPkWghpZTmZ+DaiI+O8+sHinjRAj8+seM2lIOSIkxs/y03LxU0dJ LUB1LE0DCyU7jYlV8Zn4W1y6QFoXf9qqUasD7h/046Izi2rFXlPpIns5j0FqaPpa W4uLnxuNOHcMPZngZLNpHcMIjoHlWA0sZrwsec7x2oVviekwPGtdIxybDrE+U9ML p6p3xppzGdLyAs7ZZjN6DQxdnoeRhj6isFiRssDnzLl1csGFQFdI47cOmAKcpcU0 4yXmRGL+Ym36cYMcJHJSK55eJn5XXuUp -----END CERTIFICATE-----Generated at Sat Apr 26 09:02:16 2025 by rpki-client