$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft File: 64sK0sB2YghSy8N4kOZK1Aa0ieg.mft (raw, json) Hash identifier: wAPSubtOJ4KL6LS5qH41jK1jXHpvUU8rO9Y+v0zPOnA= Subject key identifier: B6:23:01:4E:65:1D:B3:AE:4B:7F:E5:5A:6C:0E:ED:35:A1:F1:A1:AD Authority key identifier: EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 Certificate issuer: /CN=A91C72B1/serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Certificate serial: 0D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft Manifest number: 0CF9 Signing time: Thu 24 Apr 2025 18:03:37 +0000 Manifest this update: Thu 24 Apr 2025 18:03:37 +0000 Manifest next update: Thu 01 May 2025 18:03:37 +0000 Files and hashes: 1: 64sK0sB2YghSy8N4kOZK1Aa0ieg.crl (hash: 4B0LWbRDgzn4fDM9K32ZL50u41mwmV5X2JHhdVFlK+w=) 2: 6714424C3C9111EA9416CA78C4F9AE02.roa (hash: YQKzakVZRwkEoSkOxzmifYwaHBBE1uM/hdsf+7QDJq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72B1, serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Validity Not Before: Apr 24 18:03:37 2025 GMT Not After : May 1 18:03:37 2025 GMT Subject: CN=680a7cf9-8d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:f4:7f:5a:5e:08:db:21:d6:62:61:72:65: ea:01:51:5b:b0:98:c6:2c:50:f4:11:9d:64:cc:74: 7b:ad:6d:e3:01:62:76:45:67:5e:8c:fb:74:c7:79: c7:fd:7e:63:f5:a8:30:87:41:3e:d4:72:3c:ee:af: c3:bc:85:8b:49:9b:eb:42:95:62:73:f9:84:9d:0b: 2d:f5:0f:4f:90:16:48:9f:4a:d5:da:65:31:ee:a1: a1:f3:34:10:8d:d6:6f:39:27:58:d0:d8:c7:7e:ae: 64:f7:02:b3:9b:af:7e:f3:7e:47:9a:af:8f:af:6b: c8:c6:a1:06:ce:e1:7d:c3:b0:f3:74:62:9a:cc:af: 75:6c:2a:93:2e:15:4e:d8:a1:e0:72:0b:89:ed:68: 17:ee:a3:e8:d2:37:c4:a4:5f:c5:33:56:93:bd:25: 4d:ad:8d:dd:a2:56:ba:26:73:fb:6a:ce:fe:f8:c0: cc:fa:90:e3:57:b4:4c:a7:b5:23:f3:a2:9e:0d:f3: c6:04:73:f4:75:d3:bb:4b:06:e7:5d:69:85:fa:38: 69:08:0a:b7:69:2c:77:22:ce:32:2e:27:76:67:3a: 5d:e4:86:71:70:15:8d:68:48:72:9b:e8:3b:5c:94: 4c:e9:5c:f9:fe:74:4e:76:11:26:de:92:63:30:fa: ee:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:23:01:4E:65:1D:B3:AE:4B:7F:E5:5A:6C:0E:ED:35:A1:F1:A1:AD X509v3 Authority Key Identifier: keyid:EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:69:99:df:3f:25:54:a6:8f:e2:3e:98:81:43:71:32:d5:ae: b2:3a:3b:86:ed:30:2c:34:26:a3:c2:f7:05:ee:d2:7d:bb:6d: 52:86:b3:81:b4:06:bb:c6:05:31:e4:4d:1f:86:d1:c1:fd:ac: ac:a7:3c:ea:2f:44:50:c9:cc:3c:91:6b:67:f0:28:2c:68:38: 14:f2:ed:99:74:b9:19:8f:78:77:06:2f:69:75:0c:72:6a:bc: c8:c6:8f:78:d2:46:01:c2:8b:a7:aa:ba:12:70:ba:45:4f:a9: 20:b8:29:ff:65:76:e2:02:22:5b:b8:0d:7e:90:f4:cb:d3:43: ad:f4:3b:31:f1:be:da:84:08:54:25:93:c9:bd:3f:66:68:76: a2:c8:44:50:03:ef:d5:67:d3:8a:e8:c0:b9:90:03:9f:68:d1: ab:3b:49:2b:73:ca:9d:37:3b:2c:42:a2:fe:19:10:8b:67:5e: 13:95:45:b2:e5:60:6c:b7:04:47:ee:4b:43:e1:e7:98:00:f6: 1b:22:42:3c:31:fa:71:b9:c1:cb:cf:00:0c:ee:0d:31:2c:6a: 88:cb:ca:7e:c2:3a:d5:e0:d8:98:e9:0d:9e:a7:1e:22:c8:ce: 71:f2:1a:f2:19:ab:18:03:ae:93:92:02:b6:3e:e9:d5:28:b8: 0b:e1:e6:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyQjExMTAvBgNVBAUTKEVCOEIwQUQyQzA3NjYyMDg1MkNCQzM3ODkwRTY0QUQ0 MDZCNDg5RTgwHhcNMjUwNDI0MTgwMzM3WhcNMjUwNTAxMTgwMzM3WjAYMRYwFAYD VQQDEw02ODBhN2NmOS04ZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQT0f1peCNsh1mJhcmXqAVFbsJjGLFD0EZ1kzHR7rW3jAWJ2RWdejPt0x3nH /X5j9agwh0E+1HI87q/DvIWLSZvrQpVic/mEnQst9Q9PkBZIn0rV2mUx7qGh8zQQ jdZvOSdY0NjHfq5k9wKzm69+835Hmq+Pr2vIxqEGzuF9w7DzdGKazK91bCqTLhVO 2KHgcguJ7WgX7qPo0jfEpF/FM1aTvSVNrY3dola6JnP7as7++MDM+pDjV7RMp7Uj 86KeDfPGBHP0ddO7SwbnXWmF+jhpCAq3aSx3Is4yLid2Zzpd5IZxcBWNaEhym+g7 XJRM6Vz5/nROdhEm3pJjMPruKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYjAU5l HbOuS3/lWmwO7TWh8aGtMB8GA1UdIwQYMBaAFOuLCtLAdmIIUsvDeJDmStQGtIno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzJCMS8yQTQ1Rjk4MERF QzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMllnaFN5OE40a09aSzFBYTBp ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0c0swc0IyWWdoU3k4TjRrT1pLMUFhMGllZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzJCMS8yQTQ1Rjk4MERFQzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMlln aFN5OE40a09aSzFBYTBpZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKaZnfPyVUpo/iPpiBQ3Ey1a6yOjuG7TAsNCajwvcF7tJ9u21ShrOB tAa7xgUx5E0fhtHB/ayspzzqL0RQycw8kWtn8CgsaDgU8u2ZdLkZj3h3Bi9pdQxy arzIxo940kYBwounqroScLpFT6kguCn/ZXbiAiJbuA1+kPTL00Ot9Dsx8b7ahAhU JZPJvT9maHaiyERQA+/VZ9OK6MC5kAOfaNGrO0krc8qdNzssQqL+GRCLZ14TlUWy 5WBstwRH7ktD4eeYAPYbIkI8MfpxucHLzwAM7g0xLGqIy8p+wjrV4NiY6Q2epx4i yM5x8hryGasYA66TkgK2PunVKLgL4ebW -----END CERTIFICATE-----Generated at Sat Apr 26 03:36:10 2025 by rpki-client