$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: 8oyfniVdiR1bCqu9H1WVo/RhZjxxuJH4dshG0CYgDsQ= Subject key identifier: CF:DA:36:73:3C:C3:54:25:96:E3:9F:FF:E3:8C:9F:96:DB:ED:0C:6E Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 0697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 0690 Signing time: Thu 24 Apr 2025 22:23:00 +0000 Manifest this update: Thu 24 Apr 2025 22:22:59 +0000 Manifest next update: Thu 01 May 2025 22:22:59 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: xLh1zR4lsH/tL3fgRk1XpLwPMn6Iz6gLKJqOnXwRipI=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Apr 24 22:22:59 2025 GMT Not After : May 1 22:22:59 2025 GMT Subject: CN=680ab9c3-8721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:4f:25:93:07:fc:b5:5b:44:24:2d:62:0a: d4:fe:fb:10:5c:73:a8:31:8c:3d:d8:0a:9c:cc:11: 2a:1f:8e:2d:1d:d5:2d:96:bc:e8:78:8c:95:92:30: 67:11:48:e7:a4:91:36:a5:14:c0:77:55:43:8d:64: 07:45:06:3a:1f:a8:b6:5f:88:83:c6:66:8e:e5:88: 5f:a7:92:1d:43:49:5d:58:ed:f0:6e:a6:53:36:0e: 3a:7a:4b:64:f8:77:11:dd:e8:7d:25:c0:20:49:49: 45:5e:d1:21:25:fd:b6:f8:a1:f3:3e:bd:69:f9:65: 67:4b:a3:95:f4:da:9f:09:c5:75:9c:f9:b4:f4:99: ab:7f:62:07:47:0d:cb:7e:b5:85:8b:65:ee:6d:9c: 96:71:6e:47:f0:71:17:43:60:a8:d9:ce:d1:f5:84: b7:3c:0f:ec:58:af:bf:eb:c2:fc:3f:f2:d7:2e:45: 92:6d:2e:37:c0:e2:30:43:d1:74:4b:84:0d:81:ce: fe:c5:cd:90:42:a8:fe:14:c0:5e:bd:82:6a:15:13: 26:1b:30:f9:a6:86:8f:6e:a7:85:bd:7d:49:68:8b: 7a:bf:86:40:b0:58:95:6e:11:81:93:c5:57:77:e8: 45:fc:2b:6f:3b:1f:76:8d:9d:b4:67:55:e0:5b:f6: 76:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DA:36:73:3C:C3:54:25:96:E3:9F:FF:E3:8C:9F:96:DB:ED:0C:6E X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:66:1d:d9:16:44:f5:78:04:b9:e1:e2:e3:0f:a0:3d:54:d8: 51:2f:b8:18:aa:41:da:07:5e:3e:80:53:13:a7:6a:c9:b9:84: dc:a9:c3:4d:83:dc:2c:0b:d1:88:5d:ca:2e:b1:c6:f6:49:9e: 47:bf:85:b6:3c:4f:b8:7c:aa:25:16:e1:20:83:09:ff:69:a6: b5:2a:34:82:5b:2f:d5:08:2e:79:5e:1b:49:dc:6f:cc:c1:a9: ce:4b:03:de:88:af:28:41:71:59:17:18:69:86:2f:a9:91:bc: a4:0a:69:66:df:45:37:1d:4d:13:ea:ef:63:ed:57:22:22:50: cc:13:ac:dc:98:ef:34:81:9e:5e:ce:2d:37:5a:a4:26:1b:28: ed:3e:cd:62:94:c6:ae:26:e6:60:be:66:f8:30:f3:18:db:5e: 11:fa:ac:ed:cb:21:17:3b:9d:6c:b5:1b:cf:87:4e:aa:45:0f: 28:a8:76:03:1d:85:98:62:76:b2:70:fc:6c:54:25:52:2f:18: 33:56:fb:c2:6a:be:da:cb:80:96:25:98:20:76:bc:e4:7c:6c: 9d:c9:11:0d:fe:ac:8b:b8:9a:f4:f3:4e:b4:13:a7:81:fb:c7: 8f:a3:33:f5:ba:98:cb:6f:32:10:48:ab:0c:2b:28:52:6f:1b: 13:85:4a:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUwNDI0MjIyMjU5WhcNMjUwNTAxMjIyMjU5WjAYMRYwFAYD VQQDEw02ODBhYjljMy04NzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wZPJZMH/LVbRCQtYgrU/vsQXHOoMYw92AqczBEqH44tHdUtlrzoeIyVkjBn EUjnpJE2pRTAd1VDjWQHRQY6H6i2X4iDxmaO5Yhfp5IdQ0ldWO3wbqZTNg46ektk +HcR3eh9JcAgSUlFXtEhJf22+KHzPr1p+WVnS6OV9NqfCcV1nPm09Jmrf2IHRw3L frWFi2XubZyWcW5H8HEXQ2Co2c7R9YS3PA/sWK+/68L8P/LXLkWSbS43wOIwQ9F0 S4QNgc7+xc2QQqj+FMBevYJqFRMmGzD5poaPbqeFvX1JaIt6v4ZAsFiVbhGBk8VX d+hF/CtvOx92jZ20Z1XgW/Z2LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/aNnM8 w1QlluOf/+OMn5bb7QxuMB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuZh3ZFkT1eAS54eLjD6A9VNhRL7gYqkHaB14+gFMTp2rJuYTcqcNN g9wsC9GIXcouscb2SZ5Hv4W2PE+4fKolFuEggwn/aaa1KjSCWy/VCC55XhtJ3G/M wanOSwPeiK8oQXFZFxhphi+pkbykCmlm30U3HU0T6u9j7VciIlDME6zcmO80gZ5e zi03WqQmGyjtPs1ilMauJuZgvmb4MPMY214R+qztyyEXO51stRvPh06qRQ8oqHYD HYWYYnaycPxsVCVSLxgzVvvCar7ay4CWJZggdrzkfGydyREN/qyLuJr08060E6eB +8ePozP1upjLbzIQSKsMKyhSbxsThUpM -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:41 2025 by rpki-client