$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: FTGMltJ07mkqNtzHdLDZr/aENo1WCoMRHpru2MHUTbE= Subject key identifier: 35:53:CC:6E:3E:74:72:14:C4:6D:0C:E4:02:3B:64:4D:98:C4:54:D6 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 07FD Signing time: Thu 24 Apr 2025 20:43:58 +0000 Manifest this update: Thu 24 Apr 2025 20:43:57 +0000 Manifest next update: Thu 01 May 2025 20:43:57 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: nx861lMdAuQHd2soLCF0hYViYEIWzxpGhucLkolK3ig=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Uilk1jJBfDMGY2sckuokao9InqlSOEodf+Dfn/tc4QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Apr 24 20:43:57 2025 GMT Not After : May 1 20:43:57 2025 GMT Subject: CN=680aa28d-baba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:95:b2:ff:e7:94:40:56:75:4d:2b:90:3d:6f: 8b:a5:0d:8f:f8:9d:56:bf:c6:0c:fe:2a:89:5c:73: 70:49:84:49:ac:c6:aa:b5:75:9c:4f:a9:3a:df:0c: 53:8f:83:46:49:8e:8d:75:ed:a7:e0:00:ec:01:8b: 3a:76:fc:0a:b3:f9:20:72:66:b8:aa:81:18:93:0a: 07:42:81:57:0c:61:08:91:32:83:1f:4e:72:a1:35: 3f:a6:f0:03:1f:3d:b5:6a:52:55:66:86:12:16:9f: d8:c4:ce:31:88:24:b2:6d:9f:6b:39:58:4f:48:25: 62:59:32:5d:41:34:cf:d5:62:44:dc:e0:5f:55:cc: b3:1b:a8:92:aa:37:a1:ae:4c:0d:d8:ca:bb:3b:88: c1:8b:7f:ef:e4:48:10:c8:11:68:5b:02:a1:39:c3: 7c:ba:79:77:80:8d:eb:ff:22:5b:04:8e:d8:04:94: 56:64:28:2f:7b:18:0d:93:7a:21:b3:26:ad:bd:3f: 46:24:56:6b:95:fd:17:ba:b0:0b:4f:ce:54:f4:6b: 44:4a:c8:fa:f2:82:72:e8:fa:b8:18:f4:a7:1a:0d: db:dc:29:d3:b4:65:46:98:5c:57:19:c2:c6:e5:21: 16:e0:5e:39:40:dc:ce:d7:2d:00:57:bb:34:d4:d7: cf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:53:CC:6E:3E:74:72:14:C4:6D:0C:E4:02:3B:64:4D:98:C4:54:D6 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ff:e2:d9:77:62:6c:24:3a:ec:31:aa:8a:fb:f0:87:a1:61: 2d:ce:bf:35:8c:ba:bc:8d:26:fc:d1:98:b5:6b:a4:45:fb:41: d5:21:a6:bd:eb:c5:85:8c:51:fb:f5:e0:fe:96:92:9d:58:b0: 64:c7:8f:f2:ac:9f:f0:4d:2b:ae:f4:55:e3:49:fd:46:99:d7: 72:1e:18:ae:b3:53:7b:37:03:67:9f:69:ee:8e:d5:3b:2a:57: 2d:d1:38:4e:00:bf:34:e4:f7:c4:a0:b1:a6:20:cb:be:da:08: 9a:19:89:7f:92:d8:f6:e5:a6:d4:ce:50:bb:aa:d0:05:28:2e: 14:fe:0c:9c:f4:2d:04:cf:81:a4:a7:8e:f2:5c:3c:38:82:5d: fe:84:0b:a0:1c:86:f8:65:6f:91:84:94:98:2f:01:68:ab:e5: a8:dc:4c:51:96:2b:ff:a8:cb:bf:d9:b5:f5:57:85:ba:59:e0: 5d:0c:86:eb:67:15:72:f9:21:03:bc:3c:a0:f3:cd:f6:00:d8: 10:d0:d6:b1:0b:1d:53:a3:4d:2d:fd:3b:f6:16:85:26:d7:8e: 0f:ed:06:97:9f:61:5d:3f:bd:c2:0b:2a:c8:0e:5e:23:6c:3a: 18:c3:9c:b6:76:1a:ed:39:58:22:30:d1:8f:65:13:f2:4b:28: a4:40:76:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUwNDI0MjA0MzU3WhcNMjUwNTAxMjA0MzU3WjAYMRYwFAYD VQQDEw02ODBhYTI4ZC1iYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5Wy/+eUQFZ1TSuQPW+LpQ2P+J1Wv8YM/iqJXHNwSYRJrMaqtXWcT6k63wxT j4NGSY6Nde2n4ADsAYs6dvwKs/kgcma4qoEYkwoHQoFXDGEIkTKDH05yoTU/pvAD Hz21alJVZoYSFp/YxM4xiCSybZ9rOVhPSCViWTJdQTTP1WJE3OBfVcyzG6iSqjeh rkwN2Mq7O4jBi3/v5EgQyBFoWwKhOcN8unl3gI3r/yJbBI7YBJRWZCgvexgNk3oh syatvT9GJFZrlf0XurALT85U9GtESsj68oJy6Pq4GPSnGg3b3CnTtGVGmFxXGcLG 5SEW4F45QNzO1y0AV7s01NfPdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVTzG4+ dHIUxG0M5AI7ZE2YxFTWMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL/+LZd2JsJDrsMaqK+/CHoWEtzr81jLq8jSb80Zi1a6RF+0HVIaa9 68WFjFH79eD+lpKdWLBkx4/yrJ/wTSuu9FXjSf1GmddyHhius1N7NwNnn2nujtU7 Klct0ThOAL805PfEoLGmIMu+2giaGYl/ktj25abUzlC7qtAFKC4U/gyc9C0Ez4Gk p47yXDw4gl3+hAugHIb4ZW+RhJSYLwFoq+Wo3ExRliv/qMu/2bX1V4W6WeBdDIbr ZxVy+SEDvDyg8832ANgQ0NaxCx1To00t/Tv2FoUm144P7QaXn2FdP73CCyrIDl4j bDoYw5y2dhrtOVgiMNGPZRPySyikQHb1 -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:08 2025 by rpki-client