$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: rcjuG3RwGJPFlq12SHzogUBCB0wUPR+bvLbG5KgJMmE= Subject key identifier: 42:8D:2B:70:8A:53:84:82:B8:31:17:37:6B:4B:EC:83:69:BA:70:AC Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 01DA Signing time: Tue 29 Apr 2025 02:50:30 +0000 Manifest this update: Tue 29 Apr 2025 02:50:30 +0000 Manifest next update: Tue 06 May 2025 02:50:30 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: kqlefOajN3tGkvaxeHXEtWHMVFAHOKzJnnctNscasbU=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ezVuFYLFE5nPFWmkFpb3o3Zc1r5CWJVIlBRAQm/fLig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 02:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Apr 29 02:50:30 2025 GMT Not After : May 6 02:50:30 2025 GMT Subject: CN=68103e76-cb6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:08:16:1c:b5:81:b4:23:de:47:02:86:ec: e8:82:77:16:e8:71:92:7b:20:d2:1c:5c:bf:eb:a8: f8:33:f4:03:96:04:d2:ed:a2:92:7c:49:89:cf:96: 81:ce:82:f9:fa:f2:e3:59:b1:a1:c6:c5:f3:6b:28: 00:a2:5a:27:06:57:ab:f4:d9:92:b5:4d:a8:d5:09: 56:fd:14:84:64:f5:0c:e7:b3:d5:4c:f7:e0:24:3b: 5b:4b:ec:52:46:27:7d:94:f7:3f:30:5e:e3:43:0c: 00:26:2c:64:ab:b7:f8:4c:b3:15:e7:d6:80:63:9a: 47:c6:78:21:35:56:99:f9:67:f9:76:10:21:6d:c1: 3b:57:32:80:e5:b5:44:3e:5a:c1:56:ba:61:b8:cf: 71:1e:26:d3:02:29:72:a3:74:ed:51:fb:16:03:ea: ec:96:18:0b:1a:3b:f8:ab:ad:93:44:3e:14:e0:c3: 1f:f0:da:55:ea:43:a9:67:c6:3d:11:18:ba:00:0c: 88:ed:65:09:9c:72:b6:57:71:19:fd:f7:be:f8:77: 61:60:30:f8:62:ea:1a:7a:eb:50:f0:14:1e:45:70: 3c:01:21:0d:5d:8c:ff:42:05:f0:22:15:6c:41:dc: 32:61:c6:65:90:41:9f:d7:99:77:1e:30:34:0b:35: e6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8D:2B:70:8A:53:84:82:B8:31:17:37:6B:4B:EC:83:69:BA:70:AC X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:bc:06:a8:65:c7:f7:7d:62:e0:14:7c:f8:13:82:9f:5b:ff: a6:79:51:ee:a5:4f:3e:a6:de:5a:68:0f:91:2f:97:78:1c:ff: cf:0f:a6:e8:f1:5d:c5:c1:08:2c:e4:bf:aa:dc:29:fc:ec:4f: 33:41:5c:66:4e:9b:63:b6:59:be:04:f7:db:7d:07:73:aa:94: c6:9b:c5:d6:4c:01:b6:0f:b8:c1:23:b2:70:0d:1d:33:a9:4a: 83:63:10:f7:9f:60:54:c9:c8:8d:1f:11:ff:19:9d:f7:f0:60: 9e:3c:c6:ea:26:1f:54:4a:14:d1:34:61:ef:e1:21:a5:a1:d7: 25:73:4d:ae:51:20:27:e9:91:f6:53:da:1d:8c:01:30:e3:e5: d2:17:ab:cb:4a:da:18:69:23:16:76:85:76:56:cf:f6:37:9d: c4:7a:39:2d:38:a8:89:40:8b:0b:6f:a8:dd:de:cd:4b:da:53: 6e:1b:b3:9a:46:31:38:2f:ba:7d:81:d9:83:ce:c6:b0:f5:cd: da:c7:7c:c9:d6:2e:72:1f:31:84:53:b2:19:47:42:02:24:1a: ce:b4:1e:e4:b8:fd:b7:05:43:d3:66:f2:de:bf:df:84:c8:d4: 44:e2:51:38:1e:2f:37:c9:7b:70:f1:fa:c2:a4:51:e7:ac:5b: 17:5b:f7:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUwNDI5MDI1MDMwWhcNMjUwNTA2MDI1MDMwWjAYMRYwFAYD VQQDEw02ODEwM2U3Ni1jYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMUIFhy1gbQj3kcChuzogncW6HGSeyDSHFy/66j4M/QDlgTS7aKSfEmJz5aB zoL5+vLjWbGhxsXzaygAolonBler9NmStU2o1QlW/RSEZPUM57PVTPfgJDtbS+xS Rid9lPc/MF7jQwwAJixkq7f4TLMV59aAY5pHxnghNVaZ+Wf5dhAhbcE7VzKA5bVE PlrBVrphuM9xHibTAilyo3TtUfsWA+rslhgLGjv4q62TRD4U4MMf8NpV6kOpZ8Y9 ERi6AAyI7WUJnHK2V3EZ/fe++HdhYDD4YuoaeutQ8BQeRXA8ASENXYz/QgXwIhVs QdwyYcZlkEGf15l3HjA0CzXmtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKNK3CK U4SCuDEXN2tL7INpunCsMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsvAaoZcf3fWLgFHz4E4KfW/+meVHupU8+pt5aaA+RL5d4HP/PD6bo 8V3FwQgs5L+q3Cn87E8zQVxmTptjtlm+BPfbfQdzqpTGm8XWTAG2D7jBI7JwDR0z qUqDYxD3n2BUyciNHxH/GZ338GCePMbqJh9UShTRNGHv4SGlodclc02uUSAn6ZH2 U9odjAEw4+XSF6vLStoYaSMWdoV2Vs/2N53EejktOKiJQIsLb6jd3s1L2lNuG7Oa RjE4L7p9gdmDzsaw9c3ax3zJ1i5yHzGEU7IZR0ICJBrOtB7kuP23BUPTZvLev9+E yNRE4lE4Hi83yXtw8frCpFHnrFsXW/fU -----END CERTIFICATE-----Generated at Tue Apr 29 19:29:52 2025 by rpki-client