$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: 3K8WoIZcF6MYqN8v3Z17FIomiqRHn+1DIFyDhz/tKDQ= Subject key identifier: F3:01:DE:E0:57:3E:4E:8A:4C:03:2C:EE:C3:AE:99:E9:69:97:30:28 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0E37 Signing time: Thu 24 Apr 2025 17:46:03 +0000 Manifest this update: Thu 24 Apr 2025 17:46:03 +0000 Manifest next update: Thu 01 May 2025 17:46:03 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: a0/VWwd+Ax3jH4XjcIYBOOka0v3HdcxGmwEogJ1ErEs=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Apr 24 17:46:03 2025 GMT Not After : May 1 17:46:03 2025 GMT Subject: CN=680a78db-ca35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6d:5f:4c:5f:5b:e6:03:34:3c:6d:9b:20:ed: 2c:25:8d:31:30:33:67:5d:f3:f9:1f:a5:e4:5f:1a: a5:af:fa:e7:50:70:4a:13:5e:18:98:10:02:5d:3f: 74:4a:86:cb:70:13:d2:84:3e:9c:46:0c:20:95:e8: 28:81:92:5c:ce:5f:a2:68:b9:3d:18:49:b8:74:fa: 82:5e:5e:ea:30:b2:13:a7:a3:15:8b:67:7e:2c:d8: d2:46:22:15:30:33:54:34:71:86:96:7d:b6:a0:9a: 43:95:b3:70:7f:e9:61:14:65:ae:d9:72:cc:00:3e: 81:54:1c:43:ad:77:ed:f9:cf:60:70:ce:d0:8d:c7: 0e:a8:28:34:4c:19:1f:f5:97:f2:60:71:9a:83:d4: 99:5a:bc:7d:b9:66:07:90:82:ec:c4:cb:cf:a0:c4: 03:a3:a8:72:42:9d:95:8d:13:a6:9f:c3:e3:6d:f7: db:ca:50:f1:7d:0e:96:77:f0:b4:9b:72:d5:66:04: 07:50:dc:6b:74:0d:a1:db:2e:7d:15:a0:12:01:a0: 39:e3:c6:0e:be:65:fc:0d:ba:61:19:66:32:c0:ad: ff:df:2e:f8:47:6e:e1:58:53:2c:28:fd:2b:58:3c: b9:ac:d0:6b:6e:cf:df:6f:66:7d:96:28:ff:f2:d7: af:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:01:DE:E0:57:3E:4E:8A:4C:03:2C:EE:C3:AE:99:E9:69:97:30:28 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a5:8b:b5:51:e0:45:a0:06:13:99:be:e7:8c:eb:5f:87:79: 95:61:42:26:0e:31:a5:ea:da:60:13:7c:71:7c:5c:1b:55:96: 53:14:45:72:58:ee:f9:6e:f6:4d:d4:31:4b:08:0f:0a:63:07: c1:ee:1c:c6:49:7f:28:2b:78:35:b7:b4:1c:ce:80:44:f0:fe: 7d:ce:62:3c:9a:47:30:41:0a:99:60:22:c9:1d:b3:d5:fd:84: 2e:75:f1:74:13:1d:ee:0a:1d:85:e2:38:98:e0:f7:e8:a9:fb: 6f:a8:7b:bb:71:1a:ab:d7:b0:14:e6:39:44:95:d8:97:e3:70: b8:91:b7:05:1d:fd:fb:0d:03:e3:91:30:0f:61:08:0e:98:45: 96:ca:a6:56:4b:0a:95:c8:9b:9b:a2:c6:1a:83:80:ba:6b:f9: 81:74:ab:50:21:05:3b:3f:9a:30:cf:14:44:84:50:21:33:cc: 11:b6:e1:fb:fc:3c:71:39:54:cc:8d:e9:3a:a1:f9:f5:01:c4: fd:c3:f3:07:5d:c9:ec:9e:9f:ae:1c:dd:c8:81:ba:a7:7e:c9: 72:45:a9:11:bf:ff:4e:d3:4d:7e:87:33:56:85:20:1f:d3:77: cf:63:31:57:3c:a4:6a:77:fb:94:c7:56:c6:8d:9d:fb:dc:21: 3a:e0:6a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUwNDI0MTc0NjAzWhcNMjUwNTAxMTc0NjAzWjAYMRYwFAYD VQQDEw02ODBhNzhkYi1jYTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlm1fTF9b5gM0PG2bIO0sJY0xMDNnXfP5H6XkXxqlr/rnUHBKE14YmBACXT90 SobLcBPShD6cRgwglegogZJczl+iaLk9GEm4dPqCXl7qMLITp6MVi2d+LNjSRiIV MDNUNHGGln22oJpDlbNwf+lhFGWu2XLMAD6BVBxDrXft+c9gcM7QjccOqCg0TBkf 9ZfyYHGag9SZWrx9uWYHkILsxMvPoMQDo6hyQp2VjROmn8PjbffbylDxfQ6Wd/C0 m3LVZgQHUNxrdA2h2y59FaASAaA548YOvmX8DbphGWYywK3/3y74R27hWFMsKP0r WDy5rNBrbs/fb2Z9lij/8tevxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMB3uBX Pk6KTAMs7sOumelplzAoMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgpYu1UeBFoAYTmb7njOtfh3mVYUImDjGl6tpgE3xxfFwbVZZTFEVy WO75bvZN1DFLCA8KYwfB7hzGSX8oK3g1t7QczoBE8P59zmI8mkcwQQqZYCLJHbPV /YQudfF0Ex3uCh2F4jiY4PfoqftvqHu7cRqr17AU5jlEldiX43C4kbcFHf37DQPj kTAPYQgOmEWWyqZWSwqVyJubosYag4C6a/mBdKtQIQU7P5owzxREhFAhM8wRtuH7 /DxxOVTMjek6ofn1AcT9w/MHXcnsnp+uHN3IgbqnfslyRakRv/9O001+hzNWhSAf 03fPYzFXPKRqd/uUx1bGjZ373CE64Gqv -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:01 2025 by rpki-client