$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: 5dQvnhwbBHRR3LUC8fnQqoIyXpj0BGYUAvhxfG+Ne/8= Subject key identifier: 1D:EB:00:F1:A7:87:04:16:60:CE:68:9D:25:BC:EF:BD:53:DD:C0:87 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: 4E Signing time: Fri 25 Apr 2025 06:17:55 +0000 Manifest this update: Fri 25 Apr 2025 06:17:55 +0000 Manifest next update: Fri 02 May 2025 06:17:55 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: xK17z+JyJf2B28Tuqp0rvnrMtwAu8dYmtun1nxkfT+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Apr 25 06:17:55 2025 GMT Not After : May 2 06:17:55 2025 GMT Subject: CN=680b2913-70a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:a5:1d:83:12:24:13:37:c3:0f:a9:0d:5a: af:0c:04:6b:96:ce:15:02:5f:3b:eb:2d:7b:aa:f6: 01:03:cb:5d:cb:f3:2e:3b:5d:74:5b:2e:2b:28:39: 2b:e3:41:1e:4b:85:ef:4e:40:a9:2b:dc:7b:e7:fe: 7e:e7:82:f3:87:34:d5:13:8f:0d:e2:a4:86:05:2a: 91:e3:88:da:96:8b:56:1a:09:29:d2:1b:18:1f:59: 4f:5b:b9:39:6d:61:03:2d:1b:a8:7c:85:81:d6:f5: fb:0e:c2:75:f4:d5:60:8a:b8:16:60:34:34:91:e2: ae:4b:15:90:ed:fd:9a:b8:78:40:55:5d:4b:aa:13: aa:b9:1d:c6:8a:5a:c9:27:7c:2a:f8:9b:fc:73:5e: 0d:0b:d0:90:48:df:d9:c0:fe:63:e4:77:29:3f:01: f0:e4:8a:b6:73:49:c4:ec:aa:60:fb:73:86:9d:4c: bb:06:68:38:6f:b2:90:4a:39:c6:d5:10:c8:83:08: 73:da:5f:25:10:a5:21:4e:e6:9b:f2:ae:19:c7:e4: 41:1f:e3:b6:fc:09:32:64:ee:d2:da:4d:40:8e:b5: a3:c0:61:e8:20:03:c7:75:f1:d0:ef:e4:cc:c3:e3: df:a8:a9:30:12:bb:03:e2:78:9b:7c:06:80:9a:7f: 63:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:EB:00:F1:A7:87:04:16:60:CE:68:9D:25:BC:EF:BD:53:DD:C0:87 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b6:4e:1e:ac:fa:09:16:11:6e:ea:72:ce:12:41:7c:28:ce: 41:d7:8e:2f:ef:ef:19:ba:00:9a:26:ac:14:22:f3:d2:cc:4b: 20:f8:3b:89:17:4b:ff:bf:de:69:8e:f3:d8:6c:23:89:49:6d: 08:fd:03:14:f5:a9:45:cc:03:24:4f:ab:cf:08:a9:c2:9b:14: 3b:6c:83:f6:17:4d:a5:a2:c5:b0:bc:dc:0b:35:ec:4c:27:9c: 16:a6:91:98:64:8b:81:ff:90:7c:86:95:6b:97:90:81:6c:d5: da:21:0c:95:24:ac:c9:70:2f:04:15:17:2c:73:5d:38:69:87: e7:57:4c:46:16:c1:f5:33:cf:33:bf:73:7f:48:86:7f:2f:22: fa:e1:03:75:18:81:9d:8f:ac:70:40:11:a8:5c:bf:15:e6:46: 59:c4:18:aa:7d:be:fa:b3:ad:87:8b:11:21:85:3a:0a:43:57: 70:44:20:da:b4:dd:5c:44:5f:1d:93:62:43:35:da:5d:f1:a6: 4e:6c:18:00:2a:a1:32:e2:e4:c1:23:36:02:2c:fa:c2:6d:d0: 0b:02:f7:72:95:2c:e1:a0:51:d7:1a:a6:bc:71:b0:c2:61:b1: b7:7f:86:68:d2:2a:34:98:cc:1e:77:b8:3c:f3:1f:f0:61:a9: 1a:18:90:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUQ1MzExMC8GA1UEBRMoRDYyNzE2Rjc2MUYxODhENTZGQTExN0Y5REM5NEJFNDE0 MTA0QTY4MTAeFw0yNTA0MjUwNjE3NTVaFw0yNTA1MDIwNjE3NTVaMBgxFjAUBgNV BAMTDTY4MGIyOTEzLTcwYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAY6UdgxIkEzfDD6kNWq8MBGuWzhUCXzvrLXuq9gEDy13L8y47XXRbLisoOSvj QR5Lhe9OQKkr3Hvn/n7ngvOHNNUTjw3ipIYFKpHjiNqWi1YaCSnSGxgfWU9buTlt YQMtG6h8hYHW9fsOwnX01WCKuBZgNDSR4q5LFZDt/Zq4eEBVXUuqE6q5HcaKWskn fCr4m/xzXg0L0JBI39nA/mPkdyk/AfDkirZzScTsqmD7c4adTLsGaDhvspBKOcbV EMiDCHPaXyUQpSFO5pvyrhnH5EEf47b8CTJk7tLaTUCOtaPAYeggA8d18dDv5MzD 49+oqTASuwPieJt8BoCaf2NhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHesA8aeH BBZgzmidJbzvvVPdwIcwHwYDVR0jBBgwFoAU1icW92HxiNVvoRf53JS+QUEEpoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RDUzLzA1RkZDMDBFQUM4 NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWljVzkySHhpTlZ2b1JmNTNKUy1RVUVFcG9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 RDUzLzA1RkZDMDBFQUM4NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5W dm9SZjUzSlMtUVVFRXBvRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABS2Th6s+gkWEW7qcs4SQXwozkHXji/v7xm6AJomrBQi89LMSyD4O4kX S/+/3mmO89hsI4lJbQj9AxT1qUXMAyRPq88IqcKbFDtsg/YXTaWixbC83As17Ewn nBamkZhki4H/kHyGlWuXkIFs1dohDJUkrMlwLwQVFyxzXThph+dXTEYWwfUzzzO/ c39Ihn8vIvrhA3UYgZ2PrHBAEahcvxXmRlnEGKp9vvqzrYeLESGFOgpDV3BEINq0 3VxEXx2TYkM12l3xpk5sGAAqoTLi5MEjNgIs+sJt0AsC93KVLOGgUdcaprxxsMJh sbd/hmjSKjSYzB53uDzzH/BhqRoYkPs= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:01 2025 by rpki-client