$ rpki-client -vvf rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft File: dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft (raw, json) Hash identifier: lbKRcoaG1+krGjF6Ec0I6nCD5pmlgaTL7Blcvy/OuSQ= Subject key identifier: A2:0C:E7:77:74:E6:4C:71:D3:A6:CB:04:A0:CC:E0:FC:DA:B2:3E:19 Authority key identifier: 75:BA:91:3D:BA:BF:E9:4A:34:C7:04:0D:AB:47:5C:35:A2:58:A1:52 Certificate issuer: /CN=A91C654A/serialNumber=75BA913DBABFE94A34C7040DAB475C35A258A152 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft Manifest number: 0889 Signing time: Thu 24 Apr 2025 21:40:20 +0000 Manifest this update: Thu 24 Apr 2025 21:40:19 +0000 Manifest next update: Thu 01 May 2025 21:40:19 +0000 Files and hashes: 1: dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl (hash: /+qQcyvqdJoxweNcyKryGhepkwFr9qeHuZ1n9jNrw2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C654A, serialNumber=75BA913DBABFE94A34C7040DAB475C35A258A152 Validity Not Before: Apr 24 21:40:19 2025 GMT Not After : May 1 21:40:19 2025 GMT Subject: CN=680aafc4-79df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:07:88:6e:e2:98:68:40:75:fb:bf:d9:6b:0a: ef:b4:36:8f:bf:03:6d:8b:5a:cb:1a:4f:f7:14:8d: db:cd:09:46:f9:30:49:12:f3:df:0d:ac:17:f7:d5: 96:dd:6a:66:bd:8e:83:c1:92:62:12:21:aa:80:73: 5a:45:dc:80:05:46:bf:65:07:2e:b4:70:6b:34:43: 25:a2:94:37:80:9a:85:ef:db:0a:e1:35:5f:8b:87: b2:6a:ac:23:a9:e1:a6:18:bd:0b:b5:5e:96:1e:9a: 83:0b:08:c7:a8:13:02:f7:88:5c:fd:bc:57:2c:44: 29:5a:50:6e:fd:f1:4a:73:01:a8:90:b4:32:4f:c4: 5a:fc:86:d7:12:1c:4f:0a:b7:2e:86:ae:93:84:7f: 6e:1d:f4:9a:74:e5:2b:0f:70:db:7d:18:48:d9:8f: 3f:c4:24:cb:84:e4:b9:df:a6:05:4b:62:fc:79:f9: 38:76:8d:6f:d5:74:21:dc:b8:56:17:43:2d:f4:b1: 0e:0c:91:25:54:50:88:79:81:2f:6b:6c:5d:b8:67: 18:17:dd:43:9f:8f:8d:1c:d9:ef:ef:9a:ae:01:6e: b5:cb:24:4a:67:0e:a4:49:36:cd:a0:83:a6:5c:0d: 83:a4:0b:a5:60:e8:34:fe:a0:84:e9:ca:47:d8:65: 60:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0C:E7:77:74:E6:4C:71:D3:A6:CB:04:A0:CC:E0:FC:DA:B2:3E:19 X509v3 Authority Key Identifier: keyid:75:BA:91:3D:BA:BF:E9:4A:34:C7:04:0D:AB:47:5C:35:A2:58:A1:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:b0:6a:b2:0b:31:ab:d3:c4:bc:64:b3:25:f1:9d:60:30:dd: d8:e1:18:6d:a2:78:71:d0:77:22:70:b2:e4:53:90:16:7e:dc: 15:d6:96:14:4a:51:a5:62:0e:e9:3b:6b:37:57:d4:0d:a1:cc: fa:a6:1f:88:8f:77:a0:c7:29:b1:1e:41:0f:60:31:09:c7:e1: 7c:2d:7d:d9:2c:1b:58:54:27:5c:47:09:c7:e7:8b:3a:91:0d: a5:66:c1:59:db:dc:5c:d9:e9:3f:46:b8:01:6d:82:b4:18:ae: 40:ca:5c:0d:0f:ca:63:94:48:2a:a2:06:99:4d:46:1d:c0:23: 30:cb:64:ce:5c:df:8b:3d:75:e3:71:00:fc:44:e6:97:49:c1: 7e:67:b1:fd:c8:a9:54:86:5b:bb:92:e6:98:bb:92:e7:9f:9c: e9:ac:09:44:84:44:e1:61:96:5f:dd:8e:a4:c5:cb:07:66:05: 94:4d:d1:19:1e:30:50:9b:6a:87:86:70:c2:f4:3d:c9:d4:5c: fe:4e:34:a0:ee:ad:e2:6f:db:b4:da:87:34:c7:af:9e:b5:41: 1d:a3:d5:52:37:04:07:12:ae:a7:08:a1:16:08:7d:6a:13:68: 28:83:98:ac:07:f8:4c:cd:98:cc:36:cf:21:fa:e0:9b:fd:32: 43:65:d6:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NEExMTAvBgNVBAUTKDc1QkE5MTNEQkFCRkU5NEEzNEM3MDQwREFCNDc1QzM1 QTI1OEExNTIwHhcNMjUwNDI0MjE0MDE5WhcNMjUwNTAxMjE0MDE5WjAYMRYwFAYD VQQDEw02ODBhYWZjNC03OWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QeIbuKYaEB1+7/ZawrvtDaPvwNti1rLGk/3FI3bzQlG+TBJEvPfDawX99WW 3WpmvY6DwZJiEiGqgHNaRdyABUa/ZQcutHBrNEMlopQ3gJqF79sK4TVfi4eyaqwj qeGmGL0LtV6WHpqDCwjHqBMC94hc/bxXLEQpWlBu/fFKcwGokLQyT8Ra/IbXEhxP Crcuhq6ThH9uHfSadOUrD3DbfRhI2Y8/xCTLhOS536YFS2L8efk4do1v1XQh3LhW F0Mt9LEODJElVFCIeYEva2xduGcYF91Dn4+NHNnv75quAW61yyRKZw6kSTbNoIOm XA2DpAulYOg0/qCE6cpH2GVgxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIM53d0 5kxx06bLBKDM4Pzasj4ZMB8GA1UdIwQYMBaAFHW6kT26v+lKNMcEDatHXDWiWKFS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU0QS83MUZBQjBEODM1 MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9kYnFSUGJxXzZVbzB4d1FOcTBkY05hSllv VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RicVJQYnFfNlVvMHh3UU5xMGRjTmFKWW9WSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjU0QS83MUZBQjBEODM1MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9kYnFSUGJxXzZV bzB4d1FOcTBkY05hSllvVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvsGqyCzGr08S8ZLMl8Z1gMN3Y4Rhtonhx0HcicLLkU5AWftwV1pYU SlGlYg7pO2s3V9QNocz6ph+Ij3egxymxHkEPYDEJx+F8LX3ZLBtYVCdcRwnH54s6 kQ2lZsFZ29xc2ek/RrgBbYK0GK5AylwND8pjlEgqogaZTUYdwCMwy2TOXN+LPXXj cQD8ROaXScF+Z7H9yKlUhlu7kuaYu5Lnn5zprAlEhEThYZZf3Y6kxcsHZgWUTdEZ HjBQm2qHhnDC9D3J1Fz+TjSg7q3ib9u02oc0x6+etUEdo9VSNwQHEq6nCKEWCH1q E2gog5isB/hMzZjMNs8h+uCb/TJDZdb2 -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:59 2025 by rpki-client