$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: C52fk4GjutocPXsXA+oR7J5n4RWo6+4jF5sJKBrZNjo= Subject key identifier: F6:AE:C8:94:7D:99:02:1F:C0:86:18:99:AA:42:DB:02:6C:75:5D:FE Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D32 Signing time: Thu 24 Apr 2025 15:31:37 +0000 Manifest this update: Thu 24 Apr 2025 15:31:36 +0000 Manifest next update: Thu 01 May 2025 15:31:36 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: j1W/Xllb7YuRWqr9ea01asdKKm+RomQStw9prD/u/dY=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: bLM4hecBjp4+kZrFBYpUYh3+T8MNWN7sNl7r7CCqW6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11606 (0x2d56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Apr 24 15:31:36 2025 GMT Not After : May 1 15:31:36 2025 GMT Subject: CN=680a5959-26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:6a:42:df:6c:d7:5b:d0:bc:31:92:dd:f1: 64:29:fa:e5:ca:e7:cd:c0:45:62:5a:28:b9:21:7c: 57:c5:75:ac:49:0a:89:ac:69:7b:0c:d7:e3:c8:eb: 19:ab:73:5c:52:12:6d:4e:75:94:45:8d:05:4d:ab: 59:4c:aa:dc:b6:82:99:55:49:f7:92:15:66:13:98: 1d:cf:45:63:72:09:ac:5b:27:3f:18:4d:05:dc:ce: 63:6f:b3:4c:47:bf:4d:48:c2:f2:4d:41:8e:7e:19: 66:29:cf:94:66:53:42:e2:ed:62:04:11:46:40:07: 94:91:f0:e7:c8:aa:f6:b2:6d:ee:34:36:29:a1:ce: 0a:b9:83:7f:f7:ce:18:64:a3:08:f6:ca:a2:bf:a4: 02:f6:ea:43:bf:82:5a:fb:55:4a:24:69:85:7c:a2: 48:9e:6d:e2:7d:10:05:77:a6:85:ad:69:f6:da:34: 14:5d:b6:e3:34:d0:1d:4a:7a:3b:06:8f:0e:92:00: 78:81:18:c6:1d:1c:af:59:f8:86:ec:d5:56:17:b5: 44:1b:d5:93:55:65:e6:13:56:12:c7:1a:de:ae:73: 41:8c:de:97:32:9c:44:41:ed:f8:5a:5a:b5:4b:5a: d6:b1:66:cc:09:c5:47:28:a9:67:02:68:43:44:ed: 73:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AE:C8:94:7D:99:02:1F:C0:86:18:99:AA:42:DB:02:6C:75:5D:FE X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:91:f1:f8:65:8f:bd:bf:76:66:38:5b:37:85:33:17:ba:d6: 78:f9:4b:8d:0e:b0:7b:2b:61:88:f3:9f:ba:bf:59:39:9f:2c: ff:93:76:e9:bf:2a:8e:0e:a8:06:5a:83:cb:e9:55:d0:ec:be: 03:e8:0b:04:dc:fd:6e:f8:cf:c6:39:e9:13:13:b5:1d:32:f9: 40:02:44:23:6e:0c:ae:d5:73:90:e4:e4:a1:0d:57:b3:3a:b7: a3:bb:98:4d:80:a1:c6:d5:e6:94:25:c8:fd:31:6e:b0:e8:9e: 55:a1:1d:50:0a:9b:19:f8:c4:e1:63:1d:57:b1:90:c8:0d:be: fe:e5:12:9c:97:56:67:00:b5:c3:1e:57:5b:f7:ed:76:7b:58: bb:6a:26:5f:6c:34:b4:7b:7c:97:43:1d:a3:76:3e:e1:4a:86: 6c:30:7a:e0:63:67:e1:c8:cb:dc:e5:f8:aa:c9:44:cc:c7:d2: 54:6a:6d:7e:0f:83:bf:33:a7:d8:33:92:8c:9c:a4:84:63:b6: a7:1c:4c:07:7d:b0:37:a3:ae:e4:e1:d5:46:87:58:bf:24:d8: fd:03:d0:16:60:ba:eb:8b:16:94:58:f1:47:1d:ad:ed:75:25: 21:9a:40:e3:09:0c:a7:54:f2:9e:9d:11:60:96:f8:1c:65:68: 82:44:8e:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwNDI0MTUzMTM2WhcNMjUwNTAxMTUzMTM2WjAYMRYwFAYD VQQDEw02ODBhNTk1OS0yNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaRqQt9s11vQvDGS3fFkKfrlyufNwEViWii5IXxXxXWsSQqJrGl7DNfjyOsZ q3NcUhJtTnWURY0FTatZTKrctoKZVUn3khVmE5gdz0VjcgmsWyc/GE0F3M5jb7NM R79NSMLyTUGOfhlmKc+UZlNC4u1iBBFGQAeUkfDnyKr2sm3uNDYpoc4KuYN/984Y ZKMI9sqiv6QC9upDv4Ja+1VKJGmFfKJInm3ifRAFd6aFrWn22jQUXbbjNNAdSno7 Bo8OkgB4gRjGHRyvWfiG7NVWF7VEG9WTVWXmE1YSxxrernNBjN6XMpxEQe34Wlq1 S1rWsWbMCcVHKKlnAmhDRO1zCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPauyJR9 mQIfwIYYmapC2wJsdV3+MB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvkfH4ZY+9v3ZmOFs3hTMXutZ4+UuNDrB7K2GI85+6v1k5nyz/k3bp vyqODqgGWoPL6VXQ7L4D6AsE3P1u+M/GOekTE7UdMvlAAkQjbgyu1XOQ5OShDVez Oreju5hNgKHG1eaUJcj9MW6w6J5VoR1QCpsZ+MThYx1XsZDIDb7+5RKcl1ZnALXD Hldb9+12e1i7aiZfbDS0e3yXQx2jdj7hSoZsMHrgY2fhyMvc5fiqyUTMx9JUam1+ D4O/M6fYM5KMnKSEY7anHEwHfbA3o67k4dVGh1i/JNj9A9AWYLrrixaUWPFHHa3t dSUhmkDjCQynVPKenRFglvgcZWiCRI4A -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:01 2025 by rpki-client