$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft File: 7AffwfGIh38OvP3gtIHMAiw0NrI.mft (raw, json) Hash identifier: 9jEkeLdg5ps5Zu0MtewJxgt8SU4arrPX2qqZIEtbppY= Subject key identifier: B2:E7:55:6A:1B:C2:B4:2B:58:49:37:97:D2:1C:00:90:EF:CD:3A:B9 Authority key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 Certificate issuer: /CN=A91BEE1D/serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft Manifest number: 3D Signing time: Fri 25 Apr 2025 06:28:47 +0000 Manifest this update: Fri 25 Apr 2025 06:28:46 +0000 Manifest next update: Fri 02 May 2025 06:28:46 +0000 Files and hashes: 1: 7AffwfGIh38OvP3gtIHMAiw0NrI.crl (hash: GaenGeX+316IGz7h9nWqkw8SHke9bUnxyvbpixf8LX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Validity Not Before: Apr 25 06:28:46 2025 GMT Not After : May 2 06:28:46 2025 GMT Subject: CN=680b2b9f-01d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ab:a7:32:ad:61:c1:fb:48:48:19:24:19:7e: 2a:c9:8d:0e:9c:6e:ca:e3:8b:3b:3a:6a:f7:19:88: 31:58:04:94:4a:26:98:0a:af:82:19:b3:26:c6:15: ee:cd:c7:2a:23:50:2d:63:eb:7b:ee:10:6a:a3:b8: b9:35:3c:72:39:0e:b0:84:a7:58:c8:8b:77:e6:91: e2:cb:64:0a:74:75:4a:0c:05:27:3d:c6:03:8d:7e: 61:b2:74:f2:54:55:b9:b0:00:67:44:58:09:d3:1a: cd:32:bf:16:28:91:cc:bc:74:e6:a5:e1:e3:28:fc: 91:aa:3e:2d:20:16:a3:62:5b:2e:f1:68:11:0d:c2: a4:f3:91:89:15:d6:bb:b9:70:3e:50:d0:6f:ab:74: e6:b2:4f:52:a6:73:eb:28:9b:44:6f:5d:e2:5b:51: 1c:d8:35:5f:ca:32:cd:bb:10:df:b9:29:dd:ed:15: c9:44:d7:37:08:c0:a8:22:97:09:92:ce:5f:7e:0e: b1:0f:5d:f1:30:7b:29:b6:7b:85:35:dd:a6:0b:b8: 0f:37:40:78:bb:26:f0:32:f2:16:e2:97:26:e6:c3: ff:36:a3:c7:2f:77:87:97:35:5a:84:bf:29:3e:b8: b1:de:61:72:0b:34:68:cc:42:f6:01:20:57:ab:00: b0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E7:55:6A:1B:C2:B4:2B:58:49:37:97:D2:1C:00:90:EF:CD:3A:B9 X509v3 Authority Key Identifier: keyid:EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:9f:72:be:cf:64:79:ff:80:4a:8a:0d:d2:cb:b2:95:76:c4: f5:e2:4e:41:bf:8a:b9:41:3e:2d:e0:94:2c:e5:4f:f7:00:4f: b0:ce:01:c0:2b:b7:1b:8d:1d:90:46:34:83:7a:5b:f1:4f:ff: f0:6d:e4:ba:50:af:40:44:bb:6e:9e:c7:f3:e2:cc:65:96:ab: 04:ed:ef:be:d6:e0:54:35:38:95:31:30:cd:9b:fc:57:02:5f: a5:75:ee:ad:ac:36:1f:e5:65:8b:b7:8f:55:a8:c9:9e:4d:6d: 01:3c:31:70:04:47:22:97:8c:1a:15:1b:3d:d1:29:14:da:a1: 59:fa:48:6a:79:82:f5:b8:af:91:be:eb:36:09:b4:a0:74:29: 12:d0:19:22:60:bc:c7:c5:c2:da:bf:72:08:f8:b2:27:d7:14: 19:27:27:4b:fa:d9:93:db:b6:d9:00:b7:5a:c3:6e:39:db:66: 62:b2:f8:48:f8:b1:ff:3d:c1:5c:e9:91:75:b2:70:70:2f:e2: a7:95:55:09:09:9c:52:9d:ba:d7:ec:52:69:63:e8:06:26:bb: 85:aa:4e:d1:94:48:f9:40:ca:52:c4:8d:65:3f:2b:46:0f:91: aa:4b:6e:83:75:43:a1:81:c4:26:9a:d6:d9:37:a4:48:27:96: f2:b4:0b:c1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoRUMwN0RGQzFGMTg4ODc3RjBFQkNGREUwQjQ4MUNDMDIy QzM0MzZCMjAeFw0yNTA0MjUwNjI4NDZaFw0yNTA1MDIwNjI4NDZaMBgxFjAUBgNV BAMTDTY4MGIyYjlmLTAxZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2q6cyrWHB+0hIGSQZfirJjQ6cbsrjizs6avcZiDFYBJRKJpgKr4IZsybGFe7N xyojUC1j63vuEGqjuLk1PHI5DrCEp1jIi3fmkeLLZAp0dUoMBSc9xgONfmGydPJU VbmwAGdEWAnTGs0yvxYokcy8dOal4eMo/JGqPi0gFqNiWy7xaBENwqTzkYkV1ru5 cD5Q0G+rdOayT1Kmc+som0RvXeJbURzYNV/KMs27EN+5Kd3tFclE1zcIwKgilwmS zl9+DrEPXfEweym2e4U13aYLuA83QHi7JvAy8hbilybmw/82o8cvd4eXNVqEvyk+ uLHeYXILNGjMQvYBIFerALCTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsudVahvC tCtYSTeX0hwAkO/NOrkwHwYDVR0jBBgwFoAU7AffwfGIh38OvP3gtIHMAiw0NrIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzkyNzgyMjM0Qzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyLzdBZmZ3ZkdJaDM4T3ZQM2d0SUhNQWl3ME5y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0FmZndmR0loMzhPdlAzZ3RJSE1BaXcwTnJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzkyNzgyMjM0QzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyLzdBZmZ3ZkdJaDM4 T3ZQM2d0SUhNQWl3ME5ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMWfcr7PZHn/gEqKDdLLspV2xPXiTkG/irlBPi3glCzlT/cAT7DOAcAr txuNHZBGNIN6W/FP//Bt5LpQr0BEu26ex/PizGWWqwTt777W4FQ1OJUxMM2b/FcC X6V17q2sNh/lZYu3j1WoyZ5NbQE8MXAERyKXjBoVGz3RKRTaoVn6SGp5gvW4r5G+ 6zYJtKB0KRLQGSJgvMfFwtq/cgj4sifXFBknJ0v62ZPbttkAt1rDbjnbZmKy+Ej4 sf89wVzpkXWycHAv4qeVVQkJnFKdutfsUmlj6AYmu4WqTtGUSPlAylLEjWU/K0YP kapLboN1Q6GBxCaa1tk3pEgnlvK0C8E= -----END CERTIFICATE-----Generated at Sat Apr 26 17:10:38 2025 by rpki-client