$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft File: 83-esXYeax0_fqbWxvyluZc5FKs.mft (raw, json) Hash identifier: ZrAvmJJN/wIeVcFFGPaVkr6cF4d+7VQCAVwylix6xFQ= Subject key identifier: CC:DD:EF:73:ED:6F:7E:73:B0:59:64:D5:C9:19:0C:DC:82:3B:E4:26 Authority key identifier: F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB Certificate issuer: /CN=A91B8FA2/serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Certificate serial: 0414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft Manifest number: 040F Signing time: Fri 25 Apr 2025 00:13:08 +0000 Manifest this update: Fri 25 Apr 2025 00:13:07 +0000 Manifest next update: Fri 02 May 2025 00:13:07 +0000 Files and hashes: 1: 83-esXYeax0_fqbWxvyluZc5FKs.crl (hash: +7FF26KbCB3DrJC52tPp0jCDBrobbm5ISdNeDqofxc0=) 2: FEDE0F2066C611EC93A73A3DC4F9AE02.roa (hash: OrbaAoDN+OT8Q5oOwIoJmcxxZsgOvnH47cr4vwyZT3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8FA2, serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Validity Not Before: Apr 25 00:13:07 2025 GMT Not After : May 2 00:13:07 2025 GMT Subject: CN=680ad394-d5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:d4:5d:c6:3d:23:ff:78:10:70:c3:78:b7: 4f:2a:90:e6:69:56:cc:f0:ea:42:e1:68:95:b8:8b: 24:e3:bc:21:1a:a5:6c:6b:be:7b:f9:1f:53:9b:07: 0d:4a:08:91:92:d1:2f:95:8c:d9:b4:17:3e:13:64: f9:9b:95:76:a5:a8:29:41:50:e3:a2:3c:24:05:fd: 73:58:fb:db:15:d4:9e:44:ea:34:2a:28:f3:7e:69: 72:7b:8d:24:b3:3b:88:ef:28:77:d5:3f:19:61:e5: 7d:5f:89:11:1a:d8:10:6b:d4:2a:8b:c8:9b:af:d3: de:13:00:4c:11:f7:a2:8d:30:6c:5d:60:c5:57:9f: d2:99:69:4e:f5:42:18:90:4b:4c:7f:7e:f5:36:09: e4:7d:07:48:ae:88:a6:54:50:c9:b2:f5:09:f7:bb: be:1d:7c:69:36:23:59:e3:2f:68:6a:59:bb:2b:48: ae:ad:e5:89:0c:d8:3d:43:a4:1e:6c:f3:05:3d:51: b5:37:5e:5d:2d:00:34:27:fc:68:9c:ca:b2:d8:e5: 7d:9e:c5:b8:2d:70:3b:25:ad:d4:b3:ad:52:0f:e6: a6:7f:51:20:31:e9:4e:71:58:d2:d0:44:1e:2a:cc: 98:48:78:42:31:34:98:e7:74:a3:1e:cf:1f:b6:c9: 3b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DD:EF:73:ED:6F:7E:73:B0:59:64:D5:C9:19:0C:DC:82:3B:E4:26 X509v3 Authority Key Identifier: keyid:F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6a:2b:1a:9b:84:de:ed:0d:1d:d5:97:46:ad:87:36:77:1f: 46:4d:7c:21:29:2f:c2:30:ea:12:ac:73:46:8c:cf:f7:fd:4e: d2:4e:0e:a9:1c:59:1a:c1:2c:aa:f6:ac:aa:ba:b4:c9:fa:11: 16:ee:7b:4a:17:2b:15:bf:8e:7a:d5:00:c8:46:44:39:4a:cc: d8:9f:7e:db:c7:12:09:ed:a4:8a:6d:d7:bf:b5:79:ae:ed:4d: 8d:53:d1:c7:2c:90:bf:17:a8:c9:48:8a:09:f9:6d:bd:0b:4b: 62:a6:ff:59:35:1d:b8:14:27:cd:d6:5f:18:3a:0f:4f:45:9b: e1:90:db:31:d7:8d:b9:93:e4:6e:bf:0d:36:0a:f9:70:e5:5e: e4:ba:0b:8c:72:4c:24:4f:42:27:b4:76:3f:c2:2a:57:39:ff: 81:b2:66:2c:17:c3:97:85:7d:ef:32:e7:1a:17:94:48:bc:0a: e3:16:24:39:a4:8b:96:78:6d:f6:1f:27:e2:3d:c2:82:0d:60: 25:6d:70:44:84:e0:89:d6:28:b4:d4:8b:cb:24:4d:da:a7:91: 86:76:10:e9:e7:ea:9a:03:c3:42:66:76:45:a4:2d:3a:88:16: 08:90:01:9f:bf:84:65:dc:c4:eb:18:3b:bc:71:c3:fb:b7:9e: ad:23:d0:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhGQTIxMTAvBgNVBAUTKEYzN0Y5RUIxNzYxRTZCMUQzRjdFQTZENkM2RkNBNUI5 OTczOTE0QUIwHhcNMjUwNDI1MDAxMzA3WhcNMjUwNTAyMDAxMzA3WjAYMRYwFAYD VQQDEw02ODBhZDM5NC1kNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBXUXcY9I/94EHDDeLdPKpDmaVbM8OpC4WiVuIsk47whGqVsa757+R9TmwcN SgiRktEvlYzZtBc+E2T5m5V2pagpQVDjojwkBf1zWPvbFdSeROo0Kijzfmlye40k szuI7yh31T8ZYeV9X4kRGtgQa9Qqi8ibr9PeEwBMEfeijTBsXWDFV5/SmWlO9UIY kEtMf371NgnkfQdIroimVFDJsvUJ97u+HXxpNiNZ4y9oalm7K0iureWJDNg9Q6Qe bPMFPVG1N15dLQA0J/xonMqy2OV9nsW4LXA7Ja3Us61SD+amf1EgMelOcVjS0EQe KsyYSHhCMTSY53SjHs8ftsk7kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzd73Pt b35zsFlk1ckZDNyCO+QmMB8GA1UdIwQYMBaAFPN/nrF2HmsdP36m1sb8pbmXORSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEZBMi85MUI3REY0QzY2 QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4MF9mcWJXeHZ5bHVaYzVG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzLWVzWFllYXgwX2ZxYld4dnlsdVpjNUZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEZBMi85MUI3REY0QzY2QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4 MF9mcWJXeHZ5bHVaYzVGS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkaisam4Te7Q0d1ZdGrYc2dx9GTXwhKS/CMOoSrHNGjM/3/U7STg6p HFkawSyq9qyqurTJ+hEW7ntKFysVv4561QDIRkQ5SszYn37bxxIJ7aSKbde/tXmu 7U2NU9HHLJC/F6jJSIoJ+W29C0tipv9ZNR24FCfN1l8YOg9PRZvhkNsx1425k+Ru vw02Cvlw5V7kuguMckwkT0IntHY/wipXOf+BsmYsF8OXhX3vMucaF5RIvArjFiQ5 pIuWeG32HyfiPcKCDWAlbXBEhOCJ1ii01IvLJE3ap5GGdhDp5+qaA8NCZnZFpC06 iBYIkAGfv4Rl3MTrGDu8ccP7t56tI9AU -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:24 2025 by rpki-client