$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: k0yBLmGQINGCJuT798RGawjAFhsS11dKyhDw1eKZmdI= Subject key identifier: 30:89:E3:07:D1:45:06:D1:D4:7F:38:B5:2A:0B:7C:19:A3:43:D2:2B Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 017F Signing time: Fri 25 Apr 2025 02:49:16 +0000 Manifest this update: Fri 25 Apr 2025 02:49:15 +0000 Manifest next update: Fri 02 May 2025 02:49:15 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: rdN0AEXR1RQ8SvxmhUBIC/seCrwFcfFgCx12c2rA26k=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: L46j7D5JqRMEtMeerHLvKLCnSiPpfI4fJUlK6SBHvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Apr 25 02:49:15 2025 GMT Not After : May 2 02:49:15 2025 GMT Subject: CN=680af82c-ea52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:4e:b2:6d:4c:70:be:9d:db:1f:3f:24:3a: 66:cc:99:14:97:9d:54:38:9b:6d:fc:ca:48:24:32: fc:67:11:60:2f:1a:73:d7:db:e8:ed:eb:c6:14:b3: 00:95:6c:f0:73:cc:ac:24:ee:2e:e4:0c:ec:dc:3f: 7a:3d:89:ff:ee:ba:70:2b:20:73:17:32:eb:cc:be: 2e:39:fa:62:03:d3:3b:4a:ae:03:dd:a7:af:e2:1e: 16:3c:21:1b:0b:f6:e3:b4:75:7b:c6:66:47:1a:f5: 9c:35:37:91:cf:44:2e:4c:a1:5e:b3:b5:f7:67:aa: ef:6b:f9:6d:7c:b4:c3:35:be:66:d4:8a:61:bc:50: 0e:60:33:d7:65:4f:2c:84:3f:12:a2:8e:8c:fa:67: 59:78:13:4b:8d:a0:87:af:6c:0f:0c:0c:5a:d0:17: f8:f2:fd:52:55:cc:14:db:d4:94:82:3a:04:80:ec: 6f:ae:3c:27:4b:24:b4:05:53:78:0a:5a:8d:29:d2: 63:31:a0:d0:9b:f2:ea:18:dc:cb:9f:0f:0b:65:f4: dc:3d:3e:09:ca:ff:79:05:2f:ba:d3:00:04:5d:f0: c5:a1:cf:ed:1d:0f:eb:5b:de:1c:41:b6:01:38:a3: 47:f2:f2:56:d9:78:33:fb:88:fa:b4:f5:d9:b0:0b: 69:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:89:E3:07:D1:45:06:D1:D4:7F:38:B5:2A:0B:7C:19:A3:43:D2:2B X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8f:e6:4e:47:ca:18:55:fc:29:8f:d4:ff:0b:0e:b4:4a:e1: 3c:79:d6:24:2b:78:f5:63:16:3e:ad:20:7f:ba:25:41:eb:4a: e9:09:e7:b5:b5:82:59:dc:3d:7d:1c:cb:1e:70:f3:c7:d7:a5: 56:50:d8:1c:8e:e8:b3:21:2d:91:57:45:0b:fb:52:cd:ac:e2: 65:1d:27:a2:f4:34:2f:4e:21:80:60:a7:14:54:ea:8e:cb:49: 8a:2e:34:83:77:7e:93:21:55:3b:4c:44:41:ed:3f:3b:58:04: 79:5f:83:78:53:eb:37:7a:e1:e4:7b:14:86:be:94:a4:ea:72: f9:26:2e:26:03:da:82:9f:b0:71:65:2e:2b:dc:65:1d:41:5d: df:b6:c6:87:51:b7:65:eb:f4:d4:ff:a3:b2:7b:57:bb:74:b7: c2:10:4f:b1:cf:e9:dc:45:8c:e2:c2:26:29:67:17:00:ca:d3: 24:8f:fe:b9:77:bf:8a:f3:0a:7a:1f:e2:4c:a0:a1:50:fe:54: 17:d6:fc:19:b2:93:d3:86:d8:64:de:f7:b2:fa:08:8b:23:67: 64:8c:be:00:84:de:d0:a3:4b:e1:af:72:25:43:bb:45:e7:75: 55:ff:a0:9e:ab:06:6e:17:06:71:9b:53:80:87:b7:36:58:5d: 3b:ff:dd:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNDI1MDI0OTE1WhcNMjUwNTAyMDI0OTE1WjAYMRYwFAYD VQQDEw02ODBhZjgyYy1lYTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO9Osm1McL6d2x8/JDpmzJkUl51UOJtt/MpIJDL8ZxFgLxpz19vo7evGFLMA lWzwc8ysJO4u5Azs3D96PYn/7rpwKyBzFzLrzL4uOfpiA9M7Sq4D3aev4h4WPCEb C/bjtHV7xmZHGvWcNTeRz0QuTKFes7X3Z6rva/ltfLTDNb5m1IphvFAOYDPXZU8s hD8Soo6M+mdZeBNLjaCHr2wPDAxa0Bf48v1SVcwU29SUgjoEgOxvrjwnSyS0BVN4 ClqNKdJjMaDQm/LqGNzLnw8LZfTcPT4Jyv95BS+60wAEXfDFoc/tHQ/rW94cQbYB OKNH8vJW2Xgz+4j6tPXZsAtpJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCJ4wfR RQbR1H84tSoLfBmjQ9IrMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAij+ZOR8oYVfwpj9T/Cw60SuE8edYkK3j1YxY+rSB/uiVB60rpCee1 tYJZ3D19HMsecPPH16VWUNgcjuizIS2RV0UL+1LNrOJlHSei9DQvTiGAYKcUVOqO y0mKLjSDd36TIVU7TERB7T87WAR5X4N4U+s3euHkexSGvpSk6nL5Ji4mA9qCn7Bx ZS4r3GUdQV3ftsaHUbdl6/TU/6Oye1e7dLfCEE+xz+ncRYziwiYpZxcAytMkj/65 d7+K8wp6H+JMoKFQ/lQX1vwZspPThthk3vey+giLI2dkjL4AhN7Qo0vhr3IlQ7tF 53VV/6CeqwZuFwZxm1OAh7c2WF07/93U -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:31 2025 by rpki-client