$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft File: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft (raw, json) Hash identifier: 2QWTY5LmzLby9okJ3BoiUsD9xTMec2OyduOh7py7lE0= Subject key identifier: A2:43:1F:3A:D6:74:85:8E:7E:9C:A1:35:64:35:E8:72:26:43:9F:85 Authority key identifier: EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 Certificate issuer: /CN=A91BCB3A/serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft Manifest number: 0AFB Signing time: Thu 24 Apr 2025 19:16:35 +0000 Manifest this update: Thu 24 Apr 2025 19:16:34 +0000 Manifest next update: Thu 01 May 2025 19:16:34 +0000 Files and hashes: 1: 7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl (hash: eq8lpjN3lvRqgUDno9RF+etFvAQU87dxHDrZXJfgbGk=) 2: 34492F3A13A011F0B2541067C4F9AE02.roa (hash: CB9T3Z9Kr+65LPAMP9ETCGEmFvpN7j5O01tRCMGo/Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCB3A, serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Validity Not Before: Apr 24 19:16:34 2025 GMT Not After : May 1 19:16:34 2025 GMT Subject: CN=680a8e13-0607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:53:ce:28:b8:d6:de:56:48:6d:5b:b7:8a:5d: c1:94:a0:3a:ae:fc:57:24:4f:18:c3:9d:07:11:1c: dd:db:86:be:cf:6d:a7:f5:8c:e4:c2:ea:16:35:cb: 34:bd:d8:41:0a:45:35:08:62:d7:6d:fd:45:ac:c2: 1c:7d:2e:3c:11:1c:aa:9a:0b:25:7e:f1:84:d8:37: 33:dd:75:dd:78:d8:25:04:f1:60:e7:f4:91:9a:6b: 64:62:df:ca:46:bd:09:9f:b1:24:08:e1:b7:6c:93: ec:74:66:a7:21:bc:31:cc:43:7b:74:9f:30:3f:1f: ad:16:f9:40:7d:b5:5f:a8:26:7f:c9:e9:16:a3:dd: 85:93:78:b5:c6:41:c1:11:78:69:62:53:62:37:7d: 46:20:c4:05:df:c0:5e:81:b6:93:36:db:f4:f3:e9: 8f:69:6e:be:45:7d:fe:50:32:14:44:02:ea:98:8c: e9:cc:6d:0a:6d:1d:f0:58:ec:05:55:aa:3e:c8:05: 91:17:f7:79:f7:01:33:cc:61:53:d4:d9:43:c5:de: 57:7d:f8:12:5a:cd:ea:04:9e:50:9f:48:e4:9d:74: 4d:9c:fa:47:38:ed:bd:5b:8c:42:39:f1:2a:bf:33: 0f:87:e0:ca:5f:be:91:9b:09:a1:53:f3:92:12:a8: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:43:1F:3A:D6:74:85:8E:7E:9C:A1:35:64:35:E8:72:26:43:9F:85 X509v3 Authority Key Identifier: keyid:EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:80:d3:90:2f:4a:6e:1a:da:09:6e:22:c1:f7:1f:c2:27:b7: b1:50:20:2f:e5:ec:50:8a:90:0f:49:1d:e7:76:ab:b6:63:49: de:50:42:e0:84:74:ea:43:79:f3:bb:3c:f9:08:19:5c:c5:26: f1:ed:a6:86:94:15:a0:4d:ea:29:f2:24:56:6d:aa:25:96:e0: 36:98:18:2c:25:1d:c4:a9:5c:a5:86:a5:94:a4:d9:49:7d:81: a1:b3:db:9d:7a:3d:ba:fd:0d:8f:cc:cb:f3:3c:d6:f4:d5:a8: d8:73:aa:30:8a:4d:89:f4:91:0c:0c:86:eb:6a:36:94:fa:80: 49:72:c4:11:9c:bc:d2:58:3c:de:25:7c:6a:f5:3a:8a:aa:65: db:16:6f:64:29:e2:48:2f:87:12:bd:73:b9:0c:4a:8e:2e:d7: 38:8c:b9:9c:6d:2b:5d:ce:69:60:88:d1:54:67:29:29:24:94: 14:4b:a3:02:c7:41:6b:2a:72:06:5a:5a:e3:88:c5:c8:34:9b: 31:13:2c:a2:f6:19:47:82:2e:4f:1f:45:13:af:4f:e2:1f:40: 6c:b6:e7:d6:e3:d3:9c:e6:96:cf:fd:c7:ac:80:e5:67:9c:80: af:4c:09:8d:36:35:ec:c6:0c:ae:d6:dc:6a:ec:6d:b0:83:e1: 34:dc:d9:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNCM0ExMTAvBgNVBAUTKEVFNUVDMzdGM0QzQkM1NzU5OUYzQzczQzUyMjI2RTdF RTA1MEJGOTYwHhcNMjUwNDI0MTkxNjM0WhcNMjUwNTAxMTkxNjM0WjAYMRYwFAYD VQQDEw02ODBhOGUxMy0wNjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lPOKLjW3lZIbVu3il3BlKA6rvxXJE8Yw50HERzd24a+z22n9YzkwuoWNcs0 vdhBCkU1CGLXbf1FrMIcfS48ERyqmgslfvGE2Dcz3XXdeNglBPFg5/SRmmtkYt/K Rr0Jn7EkCOG3bJPsdGanIbwxzEN7dJ8wPx+tFvlAfbVfqCZ/yekWo92Fk3i1xkHB EXhpYlNiN31GIMQF38BegbaTNtv08+mPaW6+RX3+UDIURALqmIzpzG0KbR3wWOwF Vao+yAWRF/d59wEzzGFT1NlDxd5XffgSWs3qBJ5Qn0jknXRNnPpHOO29W4xCOfEq vzMPh+DKX76RmwmhU/OSEqhTUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJDHzrW dIWOfpyhNWQ16HImQ5+FMB8GA1UdIwQYMBaAFO5ew389O8V1mfPHPFIibn7gUL+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0IzQS85QUQ2QzVCODQ1 ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hYV1o4OGM4VWlKdWZ1QlF2 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsN0RmejA3eFhXWjg4YzhVaUp1ZnVCUXY1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0IzQS85QUQ2QzVCODQ1ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hY V1o4OGM4VWlKdWZ1QlF2NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAgNOQL0puGtoJbiLB9x/CJ7exUCAv5exQipAPSR3ndqu2Y0neUELg hHTqQ3nzuzz5CBlcxSbx7aaGlBWgTeop8iRWbaolluA2mBgsJR3EqVylhqWUpNlJ fYGhs9udej26/Q2PzMvzPNb01ajYc6owik2J9JEMDIbrajaU+oBJcsQRnLzSWDze JXxq9TqKqmXbFm9kKeJIL4cSvXO5DEqOLtc4jLmcbStdzmlgiNFUZykpJJQUS6MC x0FrKnIGWlrjiMXINJsxEyyi9hlHgi5PH0UTr0/iH0BstufW49Oc5pbP/cesgOVn nICvTAmNNjXsxgyu1txq7G2wg+E03Nmf -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:01 2025 by rpki-client