$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft File: whEvRNRFjxhc25rZqRr4KQZInMY.mft (raw, json) Hash identifier: xX4qPfAvCFiX5lUQw1Xy8Cr/W/qY+B0L+6UjdS6sKEc= Subject key identifier: D2:2F:26:FC:9E:D6:C8:F2:65:E4:D3:00:80:2C:5A:1D:0B:A9:E9:41 Authority key identifier: C2:11:2F:44:D4:45:8F:18:5C:DB:9A:D9:A9:1A:F8:29:06:48:9C:C6 Certificate issuer: /CN=A91C167F/serialNumber=C2112F44D4458F185CDB9AD9A91AF82906489CC6 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft Manifest number: E8 Signing time: Fri 25 Apr 2025 04:28:55 +0000 Manifest this update: Fri 25 Apr 2025 04:28:54 +0000 Manifest next update: Fri 02 May 2025 04:28:54 +0000 Files and hashes: 1: whEvRNRFjxhc25rZqRr4KQZInMY.crl (hash: RUkbnk5ctuC4r8hTgwRuFilq00KGTzCcpw5bnSpHpuE=) 2: 7FC75E34C4B211EEB684BF7FC4F9AE02.roa (hash: ENR1qEuttVnNRROdOyzWRsQ7bm7evUlkAyBRhI4KcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.crl rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C2112F44D4458F185CDB9AD9A91AF82906489CC6 Validity Not Before: Apr 25 04:28:54 2025 GMT Not After : May 2 04:28:54 2025 GMT Subject: CN=680b0f87-521f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:43:1a:d2:e0:a2:c8:f3:51:34:8c:ce:f0:c4: 73:aa:0d:cf:d8:fb:cb:b8:20:33:9b:7e:e6:0d:10: 77:7f:61:34:0d:b8:62:77:50:6f:d5:a2:4f:2c:5e: ee:d4:f4:53:7a:9a:e2:f4:63:3e:6d:13:90:a2:57: 82:2c:38:0e:a3:b8:2d:ad:44:ad:fc:e5:20:73:51: 26:4e:7b:b2:9f:58:82:25:7d:23:44:45:e8:4b:e7: 47:d8:07:28:bb:5f:44:1b:63:f7:4a:8c:a1:21:4b: 15:84:4f:7d:51:50:20:3e:56:6d:59:e2:dc:e5:96: 0c:b5:68:7d:fb:48:a5:a3:28:e1:fa:cf:91:23:ab: ae:b2:1b:91:a5:2b:d6:87:32:7e:8b:c6:3f:5c:33: a0:aa:ef:9b:b2:94:ab:c4:b4:1b:a6:8b:7b:55:4a: b3:2e:2c:f4:f3:d9:27:8e:e0:a5:34:81:51:12:d6: 07:b0:c8:de:20:72:44:14:ce:9e:6a:66:e3:50:ef: 35:cb:c6:43:33:12:7c:29:ea:fc:dd:81:b8:af:9e: d9:69:71:4c:e8:a7:ca:13:1e:19:8e:e6:bb:22:90: ed:e5:99:6c:50:5e:1e:92:66:9c:7c:03:01:81:a9: 46:19:29:18:93:b4:64:20:fc:bc:d0:ec:af:bb:45: 2f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2F:26:FC:9E:D6:C8:F2:65:E4:D3:00:80:2C:5A:1D:0B:A9:E9:41 X509v3 Authority Key Identifier: keyid:C2:11:2F:44:D4:45:8F:18:5C:DB:9A:D9:A9:1A:F8:29:06:48:9C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:dd:a2:64:cf:c6:1d:6d:79:5b:5f:e6:b2:66:73:99:c5:53: 79:2e:ee:2a:58:80:a8:83:4d:0b:1e:f2:e6:e5:ad:87:9d:0a: d8:fb:cb:5e:38:dd:0b:a5:9a:60:ef:3a:17:6b:38:47:64:88: 66:d1:f3:61:07:f1:e2:b5:bb:46:cf:ac:10:c5:60:ac:fa:a2: ff:f6:ec:c8:0c:e5:f0:e3:cc:86:60:d9:0e:b2:30:25:ac:f1: bd:52:4e:ee:c5:9d:44:4b:eb:81:b6:4a:25:9c:da:86:b3:0a: 4c:47:f3:4a:79:5c:4a:ab:2e:e8:e8:72:3f:ff:9b:31:67:7a: e6:0c:75:05:ac:20:b1:c0:a5:06:ef:b8:05:c3:6d:e9:3b:13: e2:cf:7e:d5:63:be:d9:86:cf:7c:3a:80:d6:f8:82:bf:cc:e2: 3e:a2:52:25:90:e2:da:d8:e0:9a:88:e1:90:5c:0f:b4:92:36: b7:eb:c9:80:d0:ee:c7:03:23:89:83:15:92:a1:ac:90:75:62: a9:28:15:69:86:44:83:c2:41:81:57:8f:f2:80:c0:52:cf:4a: 2d:dd:17:68:33:ec:09:a1:1f:3f:8e:e0:e7:50:86:de:b6:9f: af:18:f0:ef:2e:a0:98:cc:3e:84:2a:bc:54:22:f4:02:fe:d7: 54:8d:b1:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEMyMTEyRjQ0RDQ0NThGMTg1Q0RCOUFEOUE5MUFGODI5 MDY0ODlDQzYwHhcNMjUwNDI1MDQyODU0WhcNMjUwNTAyMDQyODU0WjAYMRYwFAYD VQQDEw02ODBiMGY4Ny01MjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEMa0uCiyPNRNIzO8MRzqg3P2PvLuCAzm37mDRB3f2E0Dbhid1Bv1aJPLF7u 1PRTepri9GM+bROQoleCLDgOo7gtrUSt/OUgc1EmTnuyn1iCJX0jREXoS+dH2Aco u19EG2P3SoyhIUsVhE99UVAgPlZtWeLc5ZYMtWh9+0iloyjh+s+RI6uushuRpSvW hzJ+i8Y/XDOgqu+bspSrxLQbpot7VUqzLiz089knjuClNIFREtYHsMjeIHJEFM6e ambjUO81y8ZDMxJ8Ker83YG4r57ZaXFM6KfKEx4Zjua7IpDt5ZlsUF4ekmacfAMB galGGSkYk7RkIPy80Oyvu0UvywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIvJvye 1sjyZeTTAIAsWh0LqelBMB8GA1UdIwQYMBaAFMIRL0TURY8YXNua2aka+CkGSJzG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri84N0MzNDU0Q0M0 NUYxMUVFODI4MUNDN0RDNEY5QUUwMi93aEV2Uk5SRmp4aGMyNXJacVJyNEtRWklu TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3doRXZSTlJGanhoYzI1clpxUnI0S1FaSW5NWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri84N0MzNDU0Q0M0NUYxMUVFODI4MUNDN0RDNEY5QUUwMi93aEV2Uk5SRmp4 aGMyNXJacVJyNEtRWkluTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp3aJkz8YdbXlbX+ayZnOZxVN5Lu4qWICog00LHvLm5a2HnQrY+8te ON0LpZpg7zoXazhHZIhm0fNhB/HitbtGz6wQxWCs+qL/9uzIDOXw48yGYNkOsjAl rPG9Uk7uxZ1ES+uBtkolnNqGswpMR/NKeVxKqy7o6HI//5sxZ3rmDHUFrCCxwKUG 77gFw23pOxPiz37VY77Zhs98OoDW+IK/zOI+olIlkOLa2OCaiOGQXA+0kja368mA 0O7HAyOJgxWSoayQdWKpKBVphkSDwkGBV4/ygMBSz0ot3RdoM+wJoR8/juDnUIbe tp+vGPDvLqCYzD6EKrxUIvQC/tdUjbFw -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:40 2025 by rpki-client