$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft File: FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json) Hash identifier: TRJvLbaKDgU54sZMMAGNKqWQqrETrc05xLULM/vWXJ0= Subject key identifier: 78:AC:83:CF:9F:10:00:BC:FF:A6:19:23:BC:89:73:DB:97:AB:67:29 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft Manifest number: 0559 Signing time: Thu 24 Apr 2025 23:12:36 +0000 Manifest this update: Thu 24 Apr 2025 23:12:36 +0000 Manifest next update: Thu 01 May 2025 23:12:36 +0000 Files and hashes: 1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: T7Y2C3/PBDMUq/HQXxd9IL8p8ebcym8YnWyonvswdjU=) 2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Apr 24 23:12:36 2025 GMT Not After : May 1 23:12:36 2025 GMT Subject: CN=680ac564-0399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:ba:43:53:f3:fb:1f:72:0f:c2:5e:23:a7: 2d:ac:13:e7:d1:4d:4d:29:92:20:f4:f2:8b:dc:68: e7:3f:72:91:44:73:94:57:fb:99:f0:5e:c0:b0:e6: 8c:29:63:42:a0:3a:01:74:05:c0:e6:33:7c:3b:51: 26:ef:ac:6b:94:34:8a:73:23:0d:fb:8f:17:0f:4a: 7d:ae:b8:67:6b:6e:cb:e2:e5:ee:b9:3b:e0:d0:3c: ff:c6:4e:c3:6a:9a:a5:53:16:85:bf:21:fc:07:2a: 55:10:06:f8:85:df:e5:31:43:76:4b:2a:c6:d0:8f: bb:e7:79:23:ef:cf:c6:b0:5c:6c:27:a6:14:ae:c7: ba:89:5e:d3:22:bf:b9:df:32:4c:87:f1:35:44:cc: 1f:20:2a:a8:e4:ca:21:44:42:bc:e0:59:c9:a9:47: 89:52:10:16:6f:ba:6b:b8:cc:b7:cf:13:c0:08:0d: b4:d8:86:c2:11:ac:ea:f9:ab:b2:a3:a6:3f:63:28: 8f:7e:77:88:f5:48:17:c4:1d:88:8e:95:e1:1c:df: ff:05:e0:7a:0b:50:7a:30:d2:4f:6f:94:4f:42:ff: 9d:24:d4:7e:42:94:c1:5f:48:4f:5c:2d:1b:16:8e: 44:23:f2:e6:b6:bd:04:ef:5d:d2:56:7c:ee:e8:74: af:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AC:83:CF:9F:10:00:BC:FF:A6:19:23:BC:89:73:DB:97:AB:67:29 X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:20:90:cf:57:c7:8a:8c:d6:92:56:d6:6a:a5:04:0e:58:3e: 6a:2d:9c:a0:9c:d2:56:82:ee:05:8a:3a:dc:27:1b:44:10:b1: 3a:93:ea:4b:f7:fe:73:e8:d6:a3:b1:ac:90:00:60:96:7e:40: 62:c9:4b:91:2f:5f:c8:19:64:9b:8e:84:97:2e:d6:c4:ba:8e: ec:24:e5:d8:98:36:2b:5d:51:51:c2:28:16:ca:f4:b4:91:ab: 4b:71:89:cf:ef:2b:a7:b1:64:8e:ea:0e:26:1b:eb:f8:9d:32: 75:c0:56:83:37:9a:a9:77:95:0d:b8:1c:92:fe:27:46:20:00: 11:46:dd:31:09:b0:fd:73:bb:76:48:f0:c2:c1:de:42:be:a7: 54:7a:01:93:75:1a:0c:1c:c7:87:6c:82:85:25:13:46:f3:43: b5:54:34:5b:84:f1:44:0a:ce:4b:c0:33:7e:92:6e:84:71:26: d6:f2:0d:fe:c4:ab:c8:24:0c:c4:8b:3a:95:20:c2:e3:93:f8: b7:19:67:8a:28:c6:ea:bc:c5:ad:1c:b1:97:e0:d2:47:e0:21: bd:56:0d:8c:a8:0b:46:0f:3d:40:95:7d:c2:67:98:eb:02:41: da:79:4f:5b:bc:89:7d:12:d0:c2:4c:a5:4a:71:cb:5b:86:4e: b3:50:f0:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUwNDI0MjMxMjM2WhcNMjUwNTAxMjMxMjM2WjAYMRYwFAYD VQQDEw02ODBhYzU2NC0wMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JO6Q1Pz+x9yD8JeI6ctrBPn0U1NKZIg9PKL3GjnP3KRRHOUV/uZ8F7AsOaM KWNCoDoBdAXA5jN8O1Em76xrlDSKcyMN+48XD0p9rrhna27L4uXuuTvg0Dz/xk7D apqlUxaFvyH8BypVEAb4hd/lMUN2SyrG0I+753kj78/GsFxsJ6YUrse6iV7TIr+5 3zJMh/E1RMwfICqo5MohREK84FnJqUeJUhAWb7pruMy3zxPACA202IbCEazq+auy o6Y/YyiPfneI9UgXxB2IjpXhHN//BeB6C1B6MNJPb5RPQv+dJNR+QpTBX0hPXC0b Fo5EI/Lmtr0E713SVnzu6HSvAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHisg8+f EAC8/6YZI7yJc9uXq2cpMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMyMy9ERjY2REUyNEU1NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFk c3ZKYmQzSWw5NnQybmFOUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4IJDPV8eKjNaSVtZqpQQOWD5qLZygnNJWgu4FijrcJxtEELE6k+pL 9/5z6NajsayQAGCWfkBiyUuRL1/IGWSbjoSXLtbEuo7sJOXYmDYrXVFRwigWyvS0 katLcYnP7yunsWSO6g4mG+v4nTJ1wFaDN5qpd5UNuByS/idGIAARRt0xCbD9c7t2 SPDCwd5CvqdUegGTdRoMHMeHbIKFJRNG80O1VDRbhPFECs5LwDN+km6EcSbW8g3+ xKvIJAzEizqVIMLjk/i3GWeKKMbqvMWtHLGX4NJH4CG9Vg2MqAtGDz1AlX3CZ5jr AkHaeU9bvIl9EtDCTKVKcctbhk6zUPAX -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:30 2025 by rpki-client