$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: lFN/dVkpAxDBVN1IbQPq+yIC1FUC74qgsGIWsEn3Mo8= Subject key identifier: 39:FD:7E:59:AB:C7:40:EB:68:A4:19:5C:21:D2:FB:E0:E6:E3:75:DC Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 108A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 1071 Signing time: Thu 24 Apr 2025 17:22:01 +0000 Manifest this update: Thu 24 Apr 2025 17:22:00 +0000 Manifest next update: Thu 01 May 2025 17:22:00 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: s8xcfYFGBMlN7uvVGzA3aMV3xA8fYlLjIKR3vg6AJGI=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4234 (0x108a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Apr 24 17:22:00 2025 GMT Not After : May 1 17:22:00 2025 GMT Subject: CN=680a7339-7858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:b2:e3:c0:db:49:9f:a2:b3:f1:25:2f:ad: ca:6d:9b:0b:fa:f5:83:9b:8e:b5:ca:8c:f3:93:51: cc:92:48:b0:21:c0:d1:02:8d:da:0f:22:61:2a:2a: ce:d2:95:f7:8d:ff:fd:a0:6c:59:7e:0d:89:1a:87: 8d:0a:9c:8e:68:7b:0a:a1:e2:02:e9:a5:86:5f:f7: 2e:d0:63:a1:b2:1c:53:80:50:ba:64:b7:aa:a6:fb: 1c:fe:d7:be:9b:56:4c:09:9f:79:d8:29:fd:1d:e9: 76:cc:31:6f:23:3f:82:d1:0f:0a:85:af:fa:96:ea: cc:4d:85:08:b5:0c:f8:5f:4a:6f:37:f0:ed:45:8a: 11:74:5b:ad:cc:a9:7e:4b:09:3e:8c:fe:f6:45:eb: 4a:b4:2b:6b:34:3d:60:e1:1d:0c:3a:e0:17:91:e9: 73:d8:00:8a:ce:b7:e7:d4:31:28:b7:af:ef:6a:c5: f5:6a:d4:5e:24:75:6c:3e:12:fd:69:39:ff:78:2a: be:2b:04:f9:f5:95:01:1b:37:3b:9f:43:e2:74:3f: 50:86:a7:a1:3b:28:37:c6:31:7b:ab:2f:02:5a:d2: cb:5f:80:4f:d4:70:62:02:0e:97:56:bf:18:25:35: c3:6d:8d:69:b4:b3:2c:99:c5:6f:41:3b:d9:8b:4c: ac:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FD:7E:59:AB:C7:40:EB:68:A4:19:5C:21:D2:FB:E0:E6:E3:75:DC X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:cd:86:83:71:0d:1f:98:14:c0:21:26:bc:d3:9a:09:f1:24: 0c:69:ef:78:15:11:c4:f4:f6:22:4b:66:5a:f2:96:14:16:92: ab:05:c6:c8:84:8e:6f:dd:a3:e2:1b:89:c5:ad:fc:8a:17:9b: 1e:2b:ac:7d:4c:79:5a:5d:95:cd:0b:9f:65:7e:94:b7:9f:e3: fa:f7:d8:f2:2a:b2:9c:7d:08:b3:73:f0:b6:a7:8e:05:97:56: d8:79:30:fd:c1:3e:cd:a0:e3:f4:b4:21:7b:75:30:aa:30:db: 87:d1:eb:07:d3:75:b7:24:0c:dd:69:32:7a:49:3f:20:f8:a8: e8:79:6b:cf:07:dc:46:8a:37:46:70:65:e9:f2:c0:19:9e:17: 10:c2:d7:b3:be:a0:b3:51:ad:a8:df:71:e4:4d:0d:1a:e5:d2: b7:f0:a9:ca:25:e1:23:08:82:2d:e7:71:06:32:00:fb:a6:5f: 70:b3:e7:1e:1f:5e:4d:15:55:4a:95:f0:6a:c9:a2:a0:51:7f: 5c:1d:d3:48:e1:67:2d:a7:9f:9c:af:58:35:a4:82:63:d3:5e: 98:95:ba:1e:97:a9:13:b1:4f:e9:f2:15:21:b4:96:fa:fc:ab: a6:ec:98:97:b3:9a:aa:cc:1d:93:8f:fe:cd:82:86:66:32:9a: 55:83:27:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUwNDI0MTcyMjAwWhcNMjUwNTAxMTcyMjAwWjAYMRYwFAYD VQQDEw02ODBhNzMzOS03ODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM+y48DbSZ+is/ElL63KbZsL+vWDm461yozzk1HMkkiwIcDRAo3aDyJhKirO 0pX3jf/9oGxZfg2JGoeNCpyOaHsKoeIC6aWGX/cu0GOhshxTgFC6ZLeqpvsc/te+ m1ZMCZ952Cn9Hel2zDFvIz+C0Q8Kha/6lurMTYUItQz4X0pvN/DtRYoRdFutzKl+ Swk+jP72RetKtCtrND1g4R0MOuAXkelz2ACKzrfn1DEot6/vasX1atReJHVsPhL9 aTn/eCq+KwT59ZUBGzc7n0PidD9QhqehOyg3xjF7qy8CWtLLX4BP1HBiAg6XVr8Y JTXDbY1ptLMsmcVvQTvZi0ysAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn9flmr x0DraKQZXCHS++Dm43XcMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEzYaDcQ0fmBTAISa805oJ8SQMae94FRHE9PYiS2Za8pYUFpKrBcbI hI5v3aPiG4nFrfyKF5seK6x9THlaXZXNC59lfpS3n+P699jyKrKcfQizc/C2p44F l1bYeTD9wT7NoOP0tCF7dTCqMNuH0esH03W3JAzdaTJ6ST8g+KjoeWvPB9xGijdG cGXp8sAZnhcQwtezvqCzUa2o33HkTQ0a5dK38KnKJeEjCIIt53EGMgD7pl9ws+ce H15NFVVKlfBqyaKgUX9cHdNI4Wctp5+cr1g1pIJj016Ylboel6kTsU/p8hUhtJb6 /Kum7JiXs5qqzB2Tj/7NgoZmMppVgydQ -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:01 2025 by rpki-client