$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: hffm7OxB9G5y65SS+K1zvNCaSXAo1OYCwSB82s6CMeg= Subject key identifier: 83:FD:FC:B2:07:85:34:DD:75:E5:50:C3:68:87:EB:5B:42:32:FC:E2 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 010F Signing time: Fri 25 Apr 2025 03:58:45 +0000 Manifest this update: Fri 25 Apr 2025 03:58:45 +0000 Manifest next update: Fri 02 May 2025 03:58:45 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: ZWGe57M67Ua4whzd0aJ+637aicb9l21oEcj8RmGx8no=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 6W6Gywd7YHiIdjjDyCFNskNZyB3wgY++Ir7hfO/X2TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Apr 25 03:58:45 2025 GMT Not After : May 2 03:58:45 2025 GMT Subject: CN=680b0875-ad59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f4:88:2f:13:18:54:bd:4e:c9:65:05:c0:4c: 4b:7c:a3:24:95:f9:22:e2:4e:d9:7f:08:73:72:73: c0:d3:19:48:cc:bf:be:72:f6:30:30:24:4a:53:d4: e6:29:3b:98:5d:83:4c:0a:96:0f:d1:22:61:0b:91: ba:c9:e2:05:37:fd:62:1d:f5:f4:f8:e2:5d:bc:e6: e0:fc:66:d7:f1:4e:50:99:82:d3:a7:40:f3:1e:61: d0:1a:a7:2d:46:14:1f:52:bb:ea:81:52:66:fd:b4: fc:26:3f:e4:c7:3d:ae:4b:c9:77:f3:57:bb:d5:73: e7:47:ea:f2:f1:83:18:d5:0a:ff:be:f4:e8:f4:44: 3d:a6:91:9b:e2:17:09:4d:40:c1:29:4e:9b:a1:ba: 84:b1:63:ae:e7:ef:de:6f:90:8e:03:2e:9b:9d:8a: 3e:1b:90:2b:61:40:dc:79:b3:75:5e:26:3c:2f:a5: 4b:66:21:45:70:99:80:7b:ee:79:ba:13:c6:4f:6a: 14:fe:db:0b:62:b9:74:f4:2a:fb:ab:10:c0:e5:19: 7e:cf:74:8f:19:f4:d0:76:36:f2:87:15:5e:92:9e: 30:9c:90:5b:43:91:5c:e4:47:d4:43:46:e6:0e:19: 19:b0:41:e5:f2:c2:b5:0b:73:3c:5e:84:df:39:0d: 45:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FD:FC:B2:07:85:34:DD:75:E5:50:C3:68:87:EB:5B:42:32:FC:E2 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:52:ba:d1:7c:84:90:fc:20:81:e0:01:f7:25:c7:23:b8:f7: 90:77:8d:50:2c:42:72:b1:3a:e2:cd:3a:c2:63:1f:d7:9f:44: 9f:c5:b8:c4:89:c3:8b:9b:21:af:49:bc:ef:6e:f5:c4:6e:a1: 6f:74:05:15:98:23:bd:ce:9f:16:5f:f1:82:f2:fa:42:9d:ea: 81:f0:14:55:cb:58:6c:1e:82:ff:2a:14:fe:5d:23:b6:9c:de: e3:8d:19:12:9a:eb:b5:90:20:15:61:9d:55:10:9e:db:fa:d9: 29:40:c1:ff:98:0b:87:6c:39:d4:8a:64:e8:06:14:fc:b6:11: 13:3c:29:f7:b9:4e:b9:4b:b5:e6:3a:ed:fe:9d:b2:f9:66:cf: 26:2b:91:3c:93:a2:fb:8f:3e:59:02:84:67:e7:8c:b8:3b:89: fd:a7:b4:15:5c:20:29:dd:04:7c:aa:67:7c:af:90:e3:80:52: 5f:43:98:c7:82:88:88:9e:2d:16:ea:94:59:5c:8a:6f:db:03: 49:2c:3a:e3:0f:2b:bc:68:a7:a9:23:b0:65:0a:f8:e4:01:5f: fc:2e:b2:20:6f:6d:ca:bf:f8:80:ad:7a:6f:a0:f7:c7:09:4e: 54:cb:83:67:c3:b1:a3:ef:a5:40:99:28:ac:e7:f2:d9:8a:52: 57:5a:43:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUwNDI1MDM1ODQ1WhcNMjUwNTAyMDM1ODQ1WjAYMRYwFAYD VQQDEw02ODBiMDg3NS1hZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/SILxMYVL1OyWUFwExLfKMklfki4k7ZfwhzcnPA0xlIzL++cvYwMCRKU9Tm KTuYXYNMCpYP0SJhC5G6yeIFN/1iHfX0+OJdvObg/GbX8U5QmYLTp0DzHmHQGqct RhQfUrvqgVJm/bT8Jj/kxz2uS8l381e71XPnR+ry8YMY1Qr/vvTo9EQ9ppGb4hcJ TUDBKU6bobqEsWOu5+/eb5COAy6bnYo+G5ArYUDcebN1XiY8L6VLZiFFcJmAe+55 uhPGT2oU/tsLYrl09Cr7qxDA5Rl+z3SPGfTQdjbyhxVekp4wnJBbQ5Fc5EfUQ0bm DhkZsEHl8sK1C3M8XoTfOQ1FXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIP9/LIH hTTddeVQw2iH61tCMvziMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAUrrRfISQ/CCB4AH3JccjuPeQd41QLEJysTrizTrCYx/Xn0SfxbjE icOLmyGvSbzvbvXEbqFvdAUVmCO9zp8WX/GC8vpCneqB8BRVy1hsHoL/KhT+XSO2 nN7jjRkSmuu1kCAVYZ1VEJ7b+tkpQMH/mAuHbDnUimToBhT8thETPCn3uU65S7Xm Ou3+nbL5Zs8mK5E8k6L7jz5ZAoRn54y4O4n9p7QVXCAp3QR8qmd8r5DjgFJfQ5jH goiIni0W6pRZXIpv2wNJLDrjDyu8aKepI7BlCvjkAV/8LrIgb23Kv/iArXpvoPfH CU5Uy4Nnw7Gj76VAmSis5/LZilJXWkOP -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:52 2025 by rpki-client