$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: nUJia8oZ5gY+nl4xyNwo0Shtdlt1jGfb2jhEtptTTAI= Subject key identifier: 79:17:DA:86:D6:AC:CF:C5:44:C1:A1:58:9A:D7:6D:14:7A:8D:81:A4 Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 07F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2979 Signing time: Thu 24 Apr 2025 16:59:41 +0000 Manifest this update: Thu 24 Apr 2025 16:59:40 +0000 Manifest next update: Thu 01 May 2025 16:59:40 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: LsOOX6Q+DfigoNsXp1G7YRdg6MdQj+igxW3S4PVuZO8=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: gbmWhKuExbHxGm8suMn+9Fw+reSjRg+IHpYr9CQ3RBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: Apr 24 16:59:40 2025 GMT Not After : May 1 16:59:40 2025 GMT Subject: CN=680a6dfc-6cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:11:6a:2a:1f:26:2c:52:8e:91:d1:21:0a: f9:61:38:79:96:af:22:68:d2:51:b8:06:fa:6c:4f: 38:b3:62:b3:2a:ac:3c:15:9d:4d:1e:4f:3d:26:60: 72:01:08:18:24:23:18:6e:1f:88:02:23:41:f6:05: 97:55:f5:7a:60:b3:1f:e0:a9:75:8a:05:0f:6f:fb: 6a:27:86:9a:fc:24:99:ef:ca:b9:27:48:10:d0:e2: 20:31:1d:81:90:1f:1f:33:69:14:0b:a3:48:41:6f: 88:7c:6e:d1:62:58:61:e3:c3:6d:b0:eb:56:bf:70: a2:32:02:f3:b0:ad:bf:b3:41:84:5d:38:34:8f:d9: 35:8e:86:29:1b:71:1f:51:24:34:f7:14:8b:d1:9f: 72:d6:fc:9b:b7:29:ef:ec:2e:a3:30:7e:d9:43:0c: d9:86:46:be:7f:20:e0:01:61:b4:73:11:3b:e6:66: 86:cb:5a:4b:d9:8f:c4:f6:5c:88:58:a9:60:4c:ca: 7d:4e:69:bf:0d:46:9c:c7:93:f3:39:57:e4:1a:4e: 05:50:e8:a8:1d:a9:be:5a:99:22:d0:70:a5:b7:6a: 8f:60:1f:5e:67:e3:4a:c3:5b:1e:16:18:9a:eb:78: b0:88:bd:39:71:e6:b9:df:00:66:a3:85:1f:7a:f2: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:17:DA:86:D6:AC:CF:C5:44:C1:A1:58:9A:D7:6D:14:7A:8D:81:A4 X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2b:9e:90:a9:44:7b:08:9a:c9:4b:bc:74:82:3e:dc:fb:45: bb:91:24:c3:91:9d:15:a6:81:ec:09:bb:7b:c8:6d:fc:5d:a7: 3f:eb:28:d9:9c:82:0e:80:ff:c1:63:bb:57:ad:6d:48:4a:a2: 89:56:9b:58:55:38:26:41:68:6f:72:88:2c:e0:20:d8:87:4a: 8f:c3:6c:35:d3:3a:ec:c7:d3:d7:b6:74:53:78:69:b1:60:f5: a0:e1:51:41:e9:f2:3c:02:62:11:cd:ff:c2:86:62:a0:c0:93: a2:2a:25:b1:c0:27:aa:b0:96:be:da:6e:53:d9:81:60:f3:5f: 0b:fe:1f:bc:9b:1c:22:21:45:76:44:df:cc:e0:5b:8a:12:0c: 64:ef:31:f7:ef:70:33:2a:da:03:e2:5e:60:a2:46:7c:50:d3: 5a:02:93:f1:5e:0b:45:f6:e6:2e:63:56:3c:c1:9c:45:86:1f: 65:33:7c:8b:d5:28:16:02:5f:03:7c:5a:c9:a8:f0:2d:dd:40: c4:e7:00:d3:5d:96:84:a8:5a:c0:76:a1:aa:5c:9f:4c:5a:c9: 20:ff:2b:16:95:7f:cc:b3:e0:0c:a9:7f:d6:9b:d5:f6:25:12: 65:c2:ad:12:5b:ff:c1:89:e2:0f:16:63:fa:3c:59:9e:e3:3e: 66:5f:61:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjUwNDI0MTY1OTQwWhcNMjUwNTAxMTY1OTQwWjAYMRYwFAYD VQQDEw02ODBhNmRmYy02Y2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJoRaiofJixSjpHRIQr5YTh5lq8iaNJRuAb6bE84s2KzKqw8FZ1NHk89JmBy AQgYJCMYbh+IAiNB9gWXVfV6YLMf4Kl1igUPb/tqJ4aa/CSZ78q5J0gQ0OIgMR2B kB8fM2kUC6NIQW+IfG7RYlhh48NtsOtWv3CiMgLzsK2/s0GEXTg0j9k1joYpG3Ef USQ09xSL0Z9y1vybtynv7C6jMH7ZQwzZhka+fyDgAWG0cxE75maGy1pL2Y/E9lyI WKlgTMp9Tmm/DUacx5PzOVfkGk4FUOioHam+Wpki0HClt2qPYB9eZ+NKw1seFhia 63iwiL05cea53wBmo4UfevI+4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkX2obW rM/FRMGhWJrXbRR6jYGkMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYK56QqUR7CJrJS7x0gj7c+0W7kSTDkZ0VpoHsCbt7yG38Xac/6yjZ nIIOgP/BY7tXrW1ISqKJVptYVTgmQWhvcogs4CDYh0qPw2w10zrsx9PXtnRTeGmx YPWg4VFB6fI8AmIRzf/ChmKgwJOiKiWxwCeqsJa+2m5T2YFg818L/h+8mxwiIUV2 RN/M4FuKEgxk7zH373AzKtoD4l5gokZ8UNNaApPxXgtF9uYuY1Y8wZxFhh9lM3yL 1SgWAl8DfFrJqPAt3UDE5wDTXZaEqFrAdqGqXJ9MWskg/ysWlX/Ms+AMqX/Wm9X2 JRJlwq0SW//BieIPFmP6PFme4z5mX2G0 -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:11 2025 by rpki-client