$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: iuwPthld8ARU5aWfbzy70HCa6eWJ8xl3t8pjpX8Ba6Q= Subject key identifier: 1E:B6:BD:0A:63:94:48:EE:BA:29:E7:74:53:66:11:92:CA:30:D1:50 Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: 2D Signing time: Fri 25 Apr 2025 06:41:44 +0000 Manifest this update: Fri 25 Apr 2025 06:41:43 +0000 Manifest next update: Fri 02 May 2025 06:41:43 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: 1FbRMoUTKEli5drqd+aG6laJvdfKWSgcSZbtqcuCMmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Apr 25 06:41:43 2025 GMT Not After : May 2 06:41:43 2025 GMT Subject: CN=680b2ea7-9755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c3:8d:24:f6:f8:d1:52:52:f7:aa:61:6a:30: b8:10:96:4e:a1:92:ee:38:e6:74:e2:f1:e1:82:c5: a1:fb:c8:b3:b1:33:9b:5f:00:03:7f:85:65:7c:9d: 20:88:06:99:46:de:40:9b:d5:f3:2f:59:10:d8:0e: 7e:be:b3:d9:93:dd:fc:e8:f4:75:4f:6a:3e:f8:41: 73:6b:73:bb:f7:1c:20:d5:2e:d9:c2:21:1f:8b:19: e9:f7:a6:37:a7:a9:02:82:7f:65:c7:20:18:f3:54: fa:54:4f:85:0e:38:82:35:40:65:58:5e:44:c8:18: 56:19:ce:b3:8c:85:13:6c:08:57:11:67:88:79:07: 6e:10:3d:f4:34:72:45:64:6b:71:54:c9:9d:0f:93: 73:02:d4:de:66:17:89:de:99:31:0a:01:8f:67:1c: 8f:3f:98:94:d3:d4:e8:65:89:97:b1:34:13:5a:20: 49:da:c2:bf:60:ba:f2:6c:c8:e1:58:5e:8f:de:56: 1f:6b:16:e7:45:9d:c0:2b:c4:9a:43:e4:14:ee:d4: 44:7b:88:6f:ec:ec:8e:65:ca:4b:bb:7a:4e:0a:55: cc:6d:a4:6e:f9:a4:bd:29:9b:24:f3:89:fe:a9:76: f6:f0:3a:fc:be:14:89:72:c1:15:0e:57:28:9d:40: 05:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B6:BD:0A:63:94:48:EE:BA:29:E7:74:53:66:11:92:CA:30:D1:50 X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:95:88:c5:e2:6e:fe:31:b4:17:42:6d:4a:85:52:f3:30:41: 19:8c:32:13:5d:ef:eb:22:82:aa:74:cb:b1:2f:9e:b8:16:fb: 4e:f1:51:a3:fb:1e:45:f8:0e:d3:37:b7:b6:51:24:46:4a:8b: b2:1c:39:a2:3a:0b:b5:4a:3f:17:c9:5e:df:61:82:24:70:03: 55:39:41:a8:1a:3f:9e:d9:f6:de:38:db:89:cb:f5:a8:12:d4: 91:6b:8f:0d:b2:e1:0d:9a:b3:a3:df:fb:3b:89:1a:ff:30:aa: 3d:9c:d8:02:00:71:e3:77:80:fd:81:61:04:f4:e9:79:8d:d8: f8:21:c6:62:1b:e5:af:1a:d7:b0:5b:c4:4d:3d:9a:49:19:ea: b0:3f:09:23:c7:6e:84:ff:a4:c9:74:35:54:99:0e:59:e0:25: 3a:12:2b:d9:31:70:24:92:9a:0d:d5:ef:ec:d8:31:a4:67:e9: 34:4e:dd:c9:db:42:f8:72:46:d8:65:5d:d9:cc:f1:57:dd:cd: 64:61:78:54:b3:bb:78:12:1f:33:2d:9e:6d:28:97:89:9e:ad: 14:9d:f5:1e:2b:2f:34:2c:ac:c9:6e:b4:31:a0:84:3c:ec:be: 3a:da:b3:77:98:75:89:90:56:f1:e5:e9:d9:96:10:99:4e:27: d9:19:5f:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDlFQTExMC8GA1UEBRMoMDBGRDMxRkQwNkI0MjA0QzNERENCNjM1MDcxODk1MzM3 NzhDQ0NGODAeFw0yNTA0MjUwNjQxNDNaFw0yNTA1MDIwNjQxNDNaMBgxFjAUBgNV BAMTDTY4MGIyZWE3LTk3NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHw40k9vjRUlL3qmFqMLgQlk6hku445nTi8eGCxaH7yLOxM5tfAAN/hWV8nSCI BplG3kCb1fMvWRDYDn6+s9mT3fzo9HVPaj74QXNrc7v3HCDVLtnCIR+LGen3pjen qQKCf2XHIBjzVPpUT4UOOII1QGVYXkTIGFYZzrOMhRNsCFcRZ4h5B24QPfQ0ckVk a3FUyZ0Pk3MC1N5mF4nemTEKAY9nHI8/mJTT1OhliZexNBNaIEnawr9guvJsyOFY Xo/eVh9rFudFncArxJpD5BTu1ER7iG/s7I5lyku7ek4KVcxtpG75pL0pmyTzif6p dvbwOvy+FIlywRUOVyidQAVJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHra9CmOU SO66Ked0U2YRksow0VAwHwYDVR0jBBgwFoAUAP0x/Qa0IEw93LY1BxiVM3eMzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwOUVBLzhDNTkxMkZFRTEz QjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQVAweF9RYTBJRXc5M0xZMUJ4aVZNM2VNelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw OUVBLzhDNTkxMkZFRTEzQjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3 OTNMWTFCeGlWTTNlTXpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABuViMXibv4xtBdCbUqFUvMwQRmMMhNd7+sigqp0y7EvnrgW+07xUaP7 HkX4DtM3t7ZRJEZKi7IcOaI6C7VKPxfJXt9hgiRwA1U5QagaP57Z9t4424nL9agS 1JFrjw2y4Q2as6Pf+zuJGv8wqj2c2AIAceN3gP2BYQT06XmN2PghxmIb5a8a17Bb xE09mkkZ6rA/CSPHboT/pMl0NVSZDlngJToSK9kxcCSSmg3V7+zYMaRn6TRO3cnb QvhyRthlXdnM8VfdzWRheFSzu3gSHzMtnm0ol4merRSd9R4rLzQsrMlutDGghDzs vjras3eYdYmQVvHl6dmWEJlOJ9kZX0A= -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:11 2025 by rpki-client