$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft File: iS3iAjP9DGSOLnuflZUPOpaBfL8.mft (raw, json) Hash identifier: GnjgIKXSTO7fb8pdfTsqeDo4yZE6Esh/Bu/W78tv9OU= Subject key identifier: F9:8C:39:FD:C6:09:EE:35:6C:21:CC:93:0D:F3:FA:9A:E0:17:4C:03 Authority key identifier: 89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF Certificate issuer: /CN=A91C7175/serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft Manifest number: 7A Signing time: Fri 25 Apr 2025 05:42:43 +0000 Manifest this update: Fri 25 Apr 2025 05:42:42 +0000 Manifest next update: Fri 02 May 2025 05:42:42 +0000 Files and hashes: 1: iS3iAjP9DGSOLnuflZUPOpaBfL8.crl (hash: yf/8hsKpqY/3DGovzkIx3VWsTB/NtkryvXjlRZDmGlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175, serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Validity Not Before: Apr 25 05:42:42 2025 GMT Not After : May 2 05:42:42 2025 GMT Subject: CN=680b20d3-7a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:0b:ae:a3:4d:15:34:67:cc:74:88:e4:98:8c: ea:5d:5e:45:f6:28:40:83:44:70:ae:f5:23:0b:1e: b3:f0:e4:da:a0:6a:a6:c9:f1:b1:a2:dd:ac:d1:04: 77:1f:ae:18:8a:2d:57:e5:96:c5:ae:eb:d8:cf:3a: 71:9d:94:03:1c:25:71:05:f5:0e:db:80:04:ab:03: ab:ab:61:36:a7:4c:84:88:c5:8e:61:fb:18:19:37: f2:d6:1d:bd:c0:ec:33:5b:ea:fc:ca:54:dd:11:01: 53:c1:fe:9b:1f:9a:21:f5:2b:57:e7:d7:a9:a2:c5: 48:bc:67:d6:4e:3d:c5:ec:f7:4d:34:15:50:44:42: 3a:d8:45:63:cc:68:3a:bc:9e:37:b6:d6:9b:99:f2: ee:55:4b:b8:5c:3f:43:94:6a:47:f9:a6:0b:32:44: 18:c6:2a:b2:47:97:23:64:95:48:b3:ee:3c:66:e1: b5:81:77:a6:f2:77:5a:65:21:a1:d5:18:2a:47:fb: 6b:74:f1:d9:65:23:17:87:c2:96:d8:bb:96:f7:25: c4:e2:3d:9d:e6:77:dd:98:3c:47:cd:50:1a:b1:3b: e5:80:d2:db:73:5f:ef:6a:f5:d8:7c:d0:b3:2f:fb: 6d:b9:c5:d2:da:21:e2:bb:61:a3:29:7b:09:4c:68: ea:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8C:39:FD:C6:09:EE:35:6C:21:CC:93:0D:F3:FA:9A:E0:17:4C:03 X509v3 Authority Key Identifier: keyid:89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a0:74:b2:7a:6a:46:82:dd:a1:df:a0:f3:75:36:e0:99:e9: e7:13:45:5f:03:32:69:02:61:d5:6b:89:6a:61:0f:bd:fa:0a: 01:4a:94:03:e1:28:98:47:26:24:3e:00:27:a5:ee:b3:e1:7a: 88:d7:05:f4:e9:b7:44:ad:ee:1b:2c:76:29:8d:cd:12:c7:de: be:dc:17:39:b2:68:f0:23:92:5b:df:9a:2c:ba:b4:1e:5a:38: 57:07:e2:0f:25:86:ad:50:3e:b6:45:e9:35:31:b4:bd:3d:83: 86:30:c2:17:8b:f0:5d:a1:27:59:38:c1:2c:61:47:90:e7:29: 2b:6e:83:d0:73:f8:83:48:be:4a:33:bf:7c:46:aa:89:1d:ea: b0:b1:00:61:dc:c2:9e:2c:a3:cd:cc:02:03:ad:43:ee:57:44: 2f:fa:e3:41:be:1a:fc:ec:6e:84:e7:52:a7:3a:0d:3f:8a:1d: d2:ab:af:7e:9e:fd:b6:d0:ae:15:9f:40:f0:35:1d:cf:a1:53: 7f:44:96:fd:80:34:2c:3c:e6:9c:a9:32:6d:97:8b:08:0d:e3: 01:08:bd:ad:7f:31:58:e9:71:e8:6b:87:bf:57:4c:7c:66:97: 11:00:da:ff:76:05:5e:16:8a:d5:e6:aa:8b:1c:55:4a:82:84: 82:e6:33:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzE3NTExMC8GA1UEBRMoODkyREUyMDIzM0ZEMEM2NDhFMkU3QjlGOTU5NTBGM0E5 NjgxN0NCRjAeFw0yNTA0MjUwNTQyNDJaFw0yNTA1MDIwNTQyNDJaMBgxFjAUBgNV BAMTDTY4MGIyMGQzLTdhNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzC66jTRU0Z8x0iOSYjOpdXkX2KECDRHCu9SMLHrPw5NqgaqbJ8bGi3azRBHcf rhiKLVfllsWu69jPOnGdlAMcJXEF9Q7bgASrA6urYTanTISIxY5h+xgZN/LWHb3A 7DNb6vzKVN0RAVPB/psfmiH1K1fn16mixUi8Z9ZOPcXs9000FVBEQjrYRWPMaDq8 nje21puZ8u5VS7hcP0OUakf5pgsyRBjGKrJHlyNklUiz7jxm4bWBd6byd1plIaHV GCpH+2t08dllIxeHwpbYu5b3JcTiPZ3md92YPEfNUBqxO+WA0ttzX+9q9dh80LMv +225xdLaIeK7YaMpewlMaOozAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+Yw5/cYJ 7jVsIcyTDfP6muAXTAMwHwYDVR0jBBgwFoAUiS3iAjP9DGSOLnuflZUPOpaBfL8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3MTc1L0YyMkI5Q0NBNjhG RDExRUZBOTUwMDE4N0M0RjlBRTAyL2lTM2lBalA5REdTT0xudWZsWlVQT3BhQmZM OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVMzaUFqUDlER1NPTG51ZmxaVVBPcGFCZkw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 MTc1L0YyMkI5Q0NBNjhGRDExRUZBOTUwMDE4N0M0RjlBRTAyL2lTM2lBalA5REdT T0xudWZsWlVQT3BhQmZMOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIWgdLJ6akaC3aHfoPN1NuCZ6ecTRV8DMmkCYdVriWphD736CgFKlAPh KJhHJiQ+ACel7rPheojXBfTpt0St7hssdimNzRLH3r7cFzmyaPAjklvfmiy6tB5a OFcH4g8lhq1QPrZF6TUxtL09g4YwwheL8F2hJ1k4wSxhR5DnKStug9Bz+INIvkoz v3xGqokd6rCxAGHcwp4so83MAgOtQ+5XRC/640G+GvzsboTnUqc6DT+KHdKrr36e /bbQrhWfQPA1Hc+hU39Elv2ANCw85pypMm2XiwgN4wEIva1/MVjpcehrh79XTHxm lxEA2v92BV4WitXmqoscVUqChILmM/E= -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:14 2025 by rpki-client