$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: H2VpLrVsVzXwFkP7i8iJuwJvpQXb6r+s3EKjI1jiGe4= Subject key identifier: 1E:AC:4D:C1:1C:DF:85:AA:1F:0C:A8:80:4E:60:83:57:E2:97:E3:C4 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12A0 Signing time: Thu 24 Apr 2025 17:06:02 +0000 Manifest this update: Thu 24 Apr 2025 17:06:02 +0000 Manifest next update: Thu 01 May 2025 17:06:02 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: 5rgtpm2bYE/uG2uVbG7DGA3ZRqgB84A5epK5OK65Wf4=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4779 (0x12ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Apr 24 17:06:02 2025 GMT Not After : May 1 17:06:02 2025 GMT Subject: CN=680a6f7a-d696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:15:a6:66:a1:a5:fc:99:4e:f7:d0:95:4b:4a: 6c:7a:07:eb:cd:45:31:a7:0b:fe:18:67:77:48:a6: e8:5e:df:be:b1:81:fc:95:c7:b1:5f:61:07:d7:2a: 98:77:e5:4d:6f:da:6b:40:bd:ff:5f:aa:5f:64:be: f6:08:7b:f3:8f:6c:c3:4f:23:2c:23:85:6b:4d:14: c5:12:9b:03:71:f0:6c:03:02:76:82:25:bb:cc:71: b9:29:4f:70:47:b0:22:2d:51:d6:c5:f5:6d:77:62: 5d:3c:02:b9:39:f7:a1:84:da:e5:28:e3:84:62:be: a1:e1:33:82:19:1c:b6:53:dc:c0:cb:e8:87:b0:c6: 0c:ad:3b:c2:f1:07:62:23:0d:a5:af:a3:d5:8b:aa: 0e:2f:f7:f4:66:c6:bc:79:9f:f4:1f:0b:62:c4:c6: 0c:ec:b3:3d:72:1b:d5:d5:9a:c5:23:bf:d3:83:dc: 84:84:ca:64:01:8a:cc:77:dd:0f:02:10:c3:69:c7: b4:00:bc:43:ab:3e:e2:c4:7f:91:b1:e7:0b:19:73: 4d:46:c4:ba:5f:84:03:0d:bd:5e:9c:a9:01:11:5f: 06:07:b6:bd:68:71:40:d2:70:af:89:57:f7:73:f1: 24:4a:5e:f5:b3:15:a6:dd:8b:7f:26:f0:85:f1:7c: d4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AC:4D:C1:1C:DF:85:AA:1F:0C:A8:80:4E:60:83:57:E2:97:E3:C4 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:4e:fe:25:c1:84:33:38:1d:70:78:d6:e5:8c:4f:10:00:59: 53:9e:5f:df:9c:74:7a:31:23:c7:44:44:a4:71:2d:79:2e:95: b4:72:37:6c:6f:81:be:ae:4d:07:ff:59:fe:ef:74:5e:7f:7d: 05:0f:89:2a:10:04:0f:bf:5f:5a:c4:9e:7d:f8:5b:19:88:a0: fc:ce:ea:93:4a:ce:10:2d:12:5f:71:d0:4c:f2:11:bf:3f:6e: 65:14:3c:59:a7:a7:9d:f1:7e:04:24:72:8b:d3:f7:83:8c:d7: 99:68:83:3d:ea:17:9f:21:68:db:07:fc:d1:42:12:22:05:14: d9:69:00:da:6d:81:0e:30:44:65:ff:aa:81:24:e2:18:0e:a7: 88:b8:cf:c9:9a:1d:de:46:83:f1:40:65:1f:a3:e4:54:f4:06: c8:9e:37:fd:7d:90:fc:66:1d:dd:e2:8f:3f:7e:17:b9:76:ae: 38:1d:7a:ae:5d:c7:a2:5f:82:45:3d:81:8a:e0:fa:60:09:00: e6:47:23:83:3b:29:fb:50:f0:8f:99:46:15:17:e3:0f:d0:6b: 4e:ad:b8:5f:df:bd:81:d4:54:27:2b:60:c2:8b:cf:64:e5:23: bb:c8:a9:21:70:aa:88:a1:76:1f:06:9c:0d:22:41:ae:4e:cf: e6:8b:03:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwNDI0MTcwNjAyWhcNMjUwNTAxMTcwNjAyWjAYMRYwFAYD VQQDEw02ODBhNmY3YS1kNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBWmZqGl/JlO99CVS0psegfrzUUxpwv+GGd3SKboXt++sYH8lcexX2EH1yqY d+VNb9prQL3/X6pfZL72CHvzj2zDTyMsI4VrTRTFEpsDcfBsAwJ2giW7zHG5KU9w R7AiLVHWxfVtd2JdPAK5OfehhNrlKOOEYr6h4TOCGRy2U9zAy+iHsMYMrTvC8Qdi Iw2lr6PVi6oOL/f0Zsa8eZ/0HwtixMYM7LM9chvV1ZrFI7/Tg9yEhMpkAYrMd90P AhDDace0ALxDqz7ixH+RsecLGXNNRsS6X4QDDb1enKkBEV8GB7a9aHFA0nCviVf3 c/EkSl71sxWm3Yt/JvCF8XzUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6sTcEc 34WqHwyogE5gg1fil+PEMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Tv4lwYQzOB1weNbljE8QAFlTnl/fnHR6MSPHRESkcS15LpW0cjds b4G+rk0H/1n+73Ref30FD4kqEAQPv19axJ59+FsZiKD8zuqTSs4QLRJfcdBM8hG/ P25lFDxZp6ed8X4EJHKL0/eDjNeZaIM96hefIWjbB/zRQhIiBRTZaQDabYEOMERl /6qBJOIYDqeIuM/Jmh3eRoPxQGUfo+RU9AbInjf9fZD8Zh3d4o8/fhe5dq44HXqu XceiX4JFPYGK4PpgCQDmRyODOyn7UPCPmUYVF+MP0GtOrbhf372B1FQnK2DCi89k 5SO7yKkhcKqIoXYfBpwNIkGuTs/miwPP -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:50 2025 by rpki-client