$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft File: MJHb_j66tWY-h63G6ZX4gtOyZMo.mft (raw, json) Hash identifier: HtmJ7mRUzHqTeSpIPLsxeTPZL1890dPIxECHWYvejeU= Subject key identifier: 7B:63:60:23:1D:CA:A6:60:A7:BE:0C:7F:34:F0:58:4C:18:81:28:E1 Authority key identifier: 30:91:DB:FE:3E:BA:B5:66:3E:87:AD:C6:E9:95:F8:82:D3:B2:64:CA Certificate issuer: /CN=A91C1C49/serialNumber=3091DBFE3EBAB5663E87ADC6E995F882D3B264CA Certificate serial: 0C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft Manifest number: 4074 Signing time: Thu 24 Apr 2025 15:03:13 +0000 Manifest this update: Thu 24 Apr 2025 15:03:12 +0000 Manifest next update: Thu 01 May 2025 15:03:12 +0000 Files and hashes: 1: MJHb_j66tWY-h63G6ZX4gtOyZMo.crl (hash: tjlGxURekeefqYLlf/SG47pO8oGzPJ52NYRGBVOmkco=) 2: 8941689CB44911EA92F1F886C4F9AE02.roa (hash: 4Z25oEXKd2i0RXY7kF9Yj9e1Ufs0rVahsGX9EeBSaFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3078 (0xc06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=3091DBFE3EBAB5663E87ADC6E995F882D3B264CA Validity Not Before: Apr 24 15:03:12 2025 GMT Not After : May 1 15:03:12 2025 GMT Subject: CN=680a52b1-cbd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c3:6c:cc:bc:40:fb:a0:f0:4c:78:5d:ce:de: dc:14:89:0b:1d:3e:75:e5:d6:27:93:5a:52:1a:d6: 62:d3:f2:0e:50:52:57:2a:62:5a:ae:39:aa:ce:d0: f1:33:f5:a6:b6:a5:34:2a:c8:3b:53:2f:33:22:c2: db:3d:f4:64:ff:8d:11:11:72:95:6d:8a:09:22:38: 9a:d2:ba:22:6a:4a:c4:66:36:df:bb:c8:7f:37:33: 21:13:18:01:9c:8c:3f:a9:92:7a:95:f6:ae:1b:86: dc:03:b4:a6:0d:06:c3:c6:23:a0:b7:15:f1:c9:02: 98:fe:77:8c:ca:35:71:12:bc:71:aa:63:d8:d8:9f: 5c:a4:45:27:b9:da:3e:0c:8d:a7:e9:60:b0:cf:b1: 1f:50:72:b3:5a:d7:94:71:f4:67:08:6a:47:65:c2: 29:92:fc:42:27:6b:36:c7:67:d7:c5:26:82:cb:d2: a6:bd:2a:f3:37:c8:af:5f:ec:f3:41:7a:c8:3e:96: 70:16:cc:29:04:1b:c1:89:94:25:33:1d:b4:89:c8: 7b:42:dc:7c:45:8b:4d:c9:db:1b:e0:fd:93:a0:9a: 4b:14:31:ff:a4:18:d5:7d:7b:80:cb:bf:3e:17:a3: fb:b0:be:ee:2d:03:03:06:62:d7:75:ec:a2:3f:05: bb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:63:60:23:1D:CA:A6:60:A7:BE:0C:7F:34:F0:58:4C:18:81:28:E1 X509v3 Authority Key Identifier: keyid:30:91:DB:FE:3E:BA:B5:66:3E:87:AD:C6:E9:95:F8:82:D3:B2:64:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJHb_j66tWY-h63G6ZX4gtOyZMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/MJHb_j66tWY-h63G6ZX4gtOyZMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ea:26:d5:43:08:b8:6a:c9:bc:07:b7:29:bf:82:10:fb:b0: 13:56:51:de:7c:13:76:32:b7:4b:32:2a:e6:4f:48:49:f4:4d: de:77:91:cb:cf:f9:44:de:1c:a6:0c:af:dd:da:a3:22:99:1b: bc:df:ea:96:94:f9:7b:ae:75:95:0c:71:0e:57:c3:ae:3c:39: 25:52:08:3e:88:10:bd:aa:6e:61:7a:aa:3e:3d:25:65:f5:f9: 00:bc:4f:42:8f:b3:2f:4c:f1:cc:c3:11:f8:ab:b6:21:ba:c6: 0b:68:ba:f3:d6:05:c5:0b:04:36:a2:b9:32:d7:46:b9:f8:1e: 10:56:98:b5:c7:d2:1e:1b:7f:a2:f8:b0:bc:6b:59:4f:b3:6c: 9d:e5:3f:24:0e:49:01:47:fb:71:55:59:68:a0:c1:7b:b9:82: 4c:04:9a:ce:54:19:9c:3c:44:8f:d8:d7:82:2f:86:2d:d0:f1: 5b:b8:97:6c:ba:b5:24:6a:a5:e7:e8:fe:af:9a:b7:79:e3:55: 95:7a:d0:85:ae:44:66:b3:14:c5:cc:95:87:3f:3d:c0:b2:12: a2:b8:b0:47:64:0c:04:f5:cd:e4:ae:e0:81:82:4d:24:31:a8: e5:63:11:23:83:e2:90:36:1c:e9:29:4d:ab:6a:df:6c:dd:9f: 47:8c:9e:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDMwOTFEQkZFM0VCQUI1NjYzRTg3QURDNkU5OTVGODgy RDNCMjY0Q0EwHhcNMjUwNDI0MTUwMzEyWhcNMjUwNTAxMTUwMzEyWjAYMRYwFAYD VQQDEw02ODBhNTJiMS1jYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcNszLxA+6DwTHhdzt7cFIkLHT515dYnk1pSGtZi0/IOUFJXKmJarjmqztDx M/WmtqU0Ksg7Uy8zIsLbPfRk/40REXKVbYoJIjia0roiakrEZjbfu8h/NzMhExgB nIw/qZJ6lfauG4bcA7SmDQbDxiOgtxXxyQKY/neMyjVxErxxqmPY2J9cpEUnudo+ DI2n6WCwz7EfUHKzWteUcfRnCGpHZcIpkvxCJ2s2x2fXxSaCy9KmvSrzN8ivX+zz QXrIPpZwFswpBBvBiZQlMx20ich7Qtx8RYtNydsb4P2ToJpLFDH/pBjVfXuAy78+ F6P7sL7uLQMDBmLXdeyiPwW78QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtjYCMd yqZgp74MfzTwWEwYgSjhMB8GA1UdIwQYMBaAFDCR2/4+urVmPoetxumV+ILTsmTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9NSkhiX2o2NnRXWS1oNjNHNlpYNGd0T3la TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KSGJfajY2dFdZLWg2M0c2Wlg0Z3RPeVpNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9NSkhiX2o2NnRX WS1oNjNHNlpYNGd0T3laTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw6ibVQwi4asm8B7cpv4IQ+7ATVlHefBN2MrdLMirmT0hJ9E3ed5HL z/lE3hymDK/d2qMimRu83+qWlPl7rnWVDHEOV8OuPDklUgg+iBC9qm5heqo+PSVl 9fkAvE9Cj7MvTPHMwxH4q7YhusYLaLrz1gXFCwQ2orky10a5+B4QVpi1x9IeG3+i +LC8a1lPs2yd5T8kDkkBR/txVVlooMF7uYJMBJrOVBmcPESP2NeCL4Yt0PFbuJds urUkaqXn6P6vmrd541WVetCFrkRmsxTFzJWHPz3AshKiuLBHZAwE9c3kruCBgk0k MajlYxEjg+KQNhzpKU2rat9s3Z9HjJ7o -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:52 2025 by rpki-client