$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: ZN/B8X3KHEs4EDS95YSbXlwBClIWHz1oP+pOav7XKUI= Subject key identifier: 89:84:4E:AD:D9:F4:49:82:C2:79:3B:90:DB:29:36:E0:47:D3:45:81 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C32 Signing time: Thu 24 Apr 2025 18:24:56 +0000 Manifest this update: Thu 24 Apr 2025 18:24:55 +0000 Manifest next update: Thu 01 May 2025 18:24:55 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: nArrqdE4/yu+YOw0Jx6JDGQhfW3DMZ8vE+O3SKfmf+E=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Apr 24 18:24:55 2025 GMT Not After : May 1 18:24:55 2025 GMT Subject: CN=680a81f7-cf39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:c9:2e:a0:2c:b2:49:6e:75:a9:69:47:0e: 14:4d:7c:ec:df:9b:6d:84:4d:35:36:bb:66:39:97: 30:4c:ac:9d:6b:82:32:34:b0:a3:8a:02:13:20:3c: 4a:cf:e0:8e:51:12:98:d7:a4:12:29:b4:3f:68:13: 57:24:1a:af:63:25:cc:6c:46:cd:c2:d9:b1:0e:38: db:27:fc:db:4d:7c:b0:a2:0c:2e:66:7a:a8:e5:4a: 18:f9:c8:7c:ab:f2:7e:c0:dc:77:57:8a:c8:91:04: d4:05:f4:28:d3:df:df:48:0b:a5:d3:c4:a2:33:7c: 26:f9:3c:3c:6e:46:cb:39:c8:cb:8c:e9:12:31:06: cf:4f:b7:2d:5a:d4:b1:6e:b0:dd:4b:16:5c:2b:f3: 0f:ca:08:99:36:b1:c7:08:5a:4e:d4:b5:31:59:e0: ce:85:5f:4f:d2:bf:78:63:6e:f5:8a:b0:f8:2a:10: 3d:14:23:7c:1a:e5:3e:33:f3:bb:e1:03:7b:b8:97: 6a:7f:69:90:f8:a9:ce:b5:6a:40:a7:dc:b4:b6:03: 51:d4:d0:a6:46:d2:41:97:7d:23:d1:61:d9:c3:89: d8:75:3f:52:c7:33:40:b0:07:62:6c:84:aa:12:93: a4:7a:1a:6e:7a:d6:53:1d:21:1c:79:93:99:31:fd: 7d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:84:4E:AD:D9:F4:49:82:C2:79:3B:90:DB:29:36:E0:47:D3:45:81 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:44:79:72:ac:3f:c0:0a:1f:e0:1d:af:fe:17:04:8f:ca:2d: 6d:3b:54:28:10:e6:c6:72:10:4d:93:03:af:c3:04:0d:48:26: 69:1e:70:54:3f:f7:6f:4e:8a:ca:10:e5:27:97:c2:53:0a:0e: d5:3a:86:05:b6:c8:90:19:7c:80:7e:d6:a6:ec:61:f2:a2:6d: 05:da:af:e8:13:8b:75:78:d2:8f:d6:11:13:42:7d:7f:91:76: d8:5b:5c:b2:a6:69:a0:0b:8c:06:f0:fe:7e:26:2c:30:76:12: c5:5d:a5:9e:1c:42:ed:72:40:49:42:59:1f:36:37:f1:5c:1e: da:4f:49:6a:00:c2:1a:dd:b6:42:a1:27:ca:bc:bb:90:e4:ee: a1:f9:a7:33:ba:c6:80:a3:07:31:2d:c1:5e:af:82:19:a2:43: e3:09:7d:28:44:c2:11:41:ab:f6:74:c6:ef:2a:c3:b0:3e:bd: 09:11:47:6e:fb:d9:ad:6c:2f:8d:ab:8b:89:dc:5a:4f:b5:77: 25:95:60:4c:c2:41:ba:b6:31:41:83:c6:97:b2:f8:7c:2b:9b: 6c:92:59:4a:ea:d2:0a:b5:ec:fa:e7:fd:51:38:7a:f2:a9:8e: 7d:34:96:fd:c4:66:a4:47:6a:f3:04:98:b2:92:17:bb:35:34: fc:40:54:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNDI0MTgyNDU1WhcNMjUwNTAxMTgyNDU1WjAYMRYwFAYD VQQDEw02ODBhODFmNy1jZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhHJLqAsskludalpRw4UTXzs35tthE01NrtmOZcwTKyda4IyNLCjigITIDxK z+COURKY16QSKbQ/aBNXJBqvYyXMbEbNwtmxDjjbJ/zbTXywogwuZnqo5UoY+ch8 q/J+wNx3V4rIkQTUBfQo09/fSAul08SiM3wm+Tw8bkbLOcjLjOkSMQbPT7ctWtSx brDdSxZcK/MPygiZNrHHCFpO1LUxWeDOhV9P0r94Y271irD4KhA9FCN8GuU+M/O7 4QN7uJdqf2mQ+KnOtWpAp9y0tgNR1NCmRtJBl30j0WHZw4nYdT9SxzNAsAdibISq EpOkehpuetZTHSEceZOZMf194wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImETq3Z 9EmCwnk7kNspNuBH00WBMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlRHlyrD/ACh/gHa/+FwSPyi1tO1QoEObGchBNkwOvwwQNSCZpHnBU P/dvTorKEOUnl8JTCg7VOoYFtsiQGXyAftam7GHyom0F2q/oE4t1eNKP1hETQn1/ kXbYW1yypmmgC4wG8P5+JiwwdhLFXaWeHELtckBJQlkfNjfxXB7aT0lqAMIa3bZC oSfKvLuQ5O6h+aczusaAowcxLcFer4IZokPjCX0oRMIRQav2dMbvKsOwPr0JEUdu +9mtbC+Nq4uJ3FpPtXcllWBMwkG6tjFBg8aXsvh8K5tskllK6tIKtez65/1ROHry qY59NJb9xGakR2rzBJiykhe7NTT8QFQ/ -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:44 2025 by rpki-client