$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: u8t57hqhIDqrXXF1iC8CVrRUvkt22msVxdJd1f+iy8g= Subject key identifier: B8:A6:95:E3:D9:D9:8B:0E:CD:0A:05:B0:D5:5C:8B:91:7D:3C:52:90 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0419 Signing time: Fri 25 Apr 2025 00:11:31 +0000 Manifest this update: Fri 25 Apr 2025 00:11:30 +0000 Manifest next update: Fri 02 May 2025 00:11:30 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: +XhG9SKMsV0bEykxAaPiADISphinuqceGCkdtn8zo/Q=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Apr 25 00:11:30 2025 GMT Not After : May 2 00:11:30 2025 GMT Subject: CN=680ad333-5c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:1c:e2:22:8a:29:3c:ce:5a:4b:4c:b7:78: ba:49:ab:40:f9:3a:6b:43:ff:b2:76:d8:d0:42:2a: 77:55:d2:44:9e:1d:e4:c6:f0:21:c8:80:bd:42:df: 13:1f:c8:f6:d2:57:1f:ea:aa:f9:5d:49:79:62:4e: 23:a9:71:0b:43:d0:96:c8:1c:65:d7:b3:d1:1d:27: 2e:ea:c5:96:98:f9:41:83:c6:84:cb:2e:9b:3f:3a: 13:b3:fe:1e:5f:1d:3a:d7:32:b0:45:72:9a:18:2a: 07:13:fd:2e:41:19:24:93:c9:fa:34:69:bd:af:11: d5:fc:c5:6e:89:e4:ae:64:e5:17:17:77:0a:77:6d: 97:30:a5:38:3e:82:9e:37:31:58:60:04:d4:11:59: 18:4a:de:ca:cf:cb:6c:00:d8:50:e8:d8:dd:93:86: c1:34:cf:f0:84:24:4a:c1:78:f7:ad:b8:9a:ad:63: ed:a8:47:02:b6:16:55:b4:1b:b2:73:69:6a:00:56: 4e:10:15:9d:55:ee:e1:01:36:51:bc:0d:dc:fa:56: 2b:b2:72:9f:21:99:1e:da:35:45:23:98:91:bc:92: 25:64:b9:27:7e:0a:3b:f3:3e:5d:97:68:48:38:b3: 50:e4:49:d4:e7:6b:5d:f9:20:1c:42:18:48:32:e0: db:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A6:95:E3:D9:D9:8B:0E:CD:0A:05:B0:D5:5C:8B:91:7D:3C:52:90 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:45:25:83:0a:b2:9d:26:b9:61:ff:05:ba:d3:97:15:b5:c2: 34:68:ef:05:79:ee:7f:8c:9e:a9:3f:22:69:49:3c:52:c1:ca: 4e:49:36:b5:ee:2e:46:03:a8:27:fc:c8:ec:55:5d:f4:7d:c9: 9d:25:e1:3e:ab:97:84:82:4b:4b:63:3b:81:a4:fb:2d:90:94: 50:1a:2f:c9:71:f9:3e:61:88:8f:c7:cc:e9:f4:18:75:bd:18: a3:6e:49:8d:9d:41:1c:85:c5:43:92:85:42:d8:46:98:4e:71: 3b:ac:46:80:7e:68:45:24:eb:eb:06:49:a4:67:fd:8a:8a:5c: 9c:48:1f:b5:36:46:37:db:80:90:c7:49:96:fc:18:48:24:46: 13:87:93:f4:8d:b3:6b:fb:6a:7e:de:e0:73:d1:f7:d5:c9:8b: d0:39:74:b5:e7:75:aa:96:22:0d:1c:66:89:15:25:b6:fa:9d: 69:d7:0c:b8:06:f3:a6:db:ab:63:67:c0:f3:14:c4:83:41:4a: f0:40:16:c2:9f:e8:ac:e5:29:2b:1e:9e:dc:5b:36:9d:a0:10: 5e:87:41:6c:33:81:e9:73:8f:ed:99:68:4b:11:3e:69:9d:fe: dd:54:89:9d:c6:7a:c4:09:e4:c9:b3:78:cb:40:be:95:b8:23: e4:46:38:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwNDI1MDAxMTMwWhcNMjUwNTAyMDAxMTMwWjAYMRYwFAYD VQQDEw02ODBhZDMzMy01YzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAcc4iKKKTzOWktMt3i6SatA+TprQ/+ydtjQQip3VdJEnh3kxvAhyIC9Qt8T H8j20lcf6qr5XUl5Yk4jqXELQ9CWyBxl17PRHScu6sWWmPlBg8aEyy6bPzoTs/4e Xx061zKwRXKaGCoHE/0uQRkkk8n6NGm9rxHV/MVuieSuZOUXF3cKd22XMKU4PoKe NzFYYATUEVkYSt7Kz8tsANhQ6Njdk4bBNM/whCRKwXj3rbiarWPtqEcCthZVtBuy c2lqAFZOEBWdVe7hATZRvA3c+lYrsnKfIZke2jVFI5iRvJIlZLknfgo78z5dl2hI OLNQ5EnU52td+SAcQhhIMuDbqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLimlePZ 2YsOzQoFsNVci5F9PFKQMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIRSWDCrKdJrlh/wW605cVtcI0aO8Fee5/jJ6pPyJpSTxSwcpOSTa1 7i5GA6gn/MjsVV30fcmdJeE+q5eEgktLYzuBpPstkJRQGi/Jcfk+YYiPx8zp9Bh1 vRijbkmNnUEchcVDkoVC2EaYTnE7rEaAfmhFJOvrBkmkZ/2KilycSB+1NkY324CQ x0mW/BhIJEYTh5P0jbNr+2p+3uBz0ffVyYvQOXS153WqliINHGaJFSW2+p1p1wy4 BvOm26tjZ8DzFMSDQUrwQBbCn+is5SkrHp7cWzadoBBeh0FsM4Hpc4/tmWhLET5p nf7dVImdxnrECeTJs3jLQL6VuCPkRjhg -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:01 2025 by rpki-client