$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: Hj85Cx4wJFr7qkn5IvTEsP97qR58eZb1nSd/9YDZbAI= Subject key identifier: 97:BA:3E:C3:CD:B0:B1:79:27:74:DD:9C:2A:33:B3:0E:F0:A4:C0:C5 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: 43 Signing time: Fri 25 Apr 2025 06:26:11 +0000 Manifest this update: Fri 25 Apr 2025 06:26:11 +0000 Manifest next update: Fri 02 May 2025 06:26:11 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: 3sZ2I3CEBU932wZkF9GmXAf0I3kMRrxJ5wvuKj/XsZ8=) 2: DE72D5AEBED411EF835BB47AC4F9AE02.roa (hash: 5j81/BZOYpTkz0ooChEWGP+uFOoiaPO0/qxC0SgYzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Apr 25 06:26:11 2025 GMT Not After : May 2 06:26:11 2025 GMT Subject: CN=680b2b03-b641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:6a:ed:32:00:b9:1c:f4:58:e8:aa:d8:5f: 48:63:0c:33:f2:fc:4f:ef:99:50:f8:f0:3e:d6:a0: a8:66:f0:9f:46:ed:0d:fc:5e:e8:d1:0e:00:99:9f: 31:2d:77:94:eb:80:a2:51:a9:1d:64:0b:81:a9:15: bf:af:07:09:01:d6:a2:ed:9e:b5:62:10:e8:62:29: 59:9d:ee:ee:4e:ee:19:a8:66:9a:94:da:0c:70:9f: 47:2a:1a:c9:bc:57:b5:83:71:4e:83:45:c3:82:a0: 68:b9:ee:b5:96:7a:26:45:f0:c7:37:f2:6e:a9:1b: fd:2a:78:5e:4a:47:8e:57:3d:e2:8a:a4:e4:d9:7b: 34:18:1f:7b:f1:cc:2e:31:39:a7:07:59:2b:6a:ae: b9:85:65:ea:7a:77:d7:94:82:50:30:c1:91:e1:79: 5b:09:5d:40:86:06:8c:2c:c6:71:d5:14:76:bf:b5: 92:a2:08:14:fb:67:c5:08:52:2e:42:39:2d:13:00: 8c:04:da:ac:56:d6:0b:2f:5e:95:4d:bc:b2:10:59: 0f:39:bc:66:a3:85:30:c0:61:cc:f7:88:56:c5:03: f4:87:e6:1a:4d:82:c8:3d:eb:7e:51:e4:12:47:49: 61:b1:b7:ac:ff:34:cd:29:7f:a4:87:63:de:6f:69: e7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BA:3E:C3:CD:B0:B1:79:27:74:DD:9C:2A:33:B3:0E:F0:A4:C0:C5 X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8e:1b:a4:59:57:21:1d:d4:e6:33:aa:51:e2:bc:12:29:95: 67:21:1f:56:a8:d4:3a:ab:c2:7e:53:06:15:3a:68:0a:b8:7e: 90:bb:3e:37:08:95:93:6f:5a:5f:1b:b1:fb:c2:cd:29:e5:f2: 2a:95:73:67:e8:3d:02:69:54:45:73:00:f8:c2:a9:32:d1:5e: a7:d7:ef:a0:3d:a8:76:38:c9:de:4e:50:84:56:ce:ae:97:ad: 02:5e:88:9c:47:47:b5:69:4a:a1:02:02:2b:4b:1c:09:96:b2: bd:a1:19:89:c3:91:f4:75:62:d4:62:03:22:9b:53:3c:2f:e0: 97:8a:2a:40:45:0e:3b:4b:db:eb:d3:fd:e2:65:4c:25:b4:c7: 16:6b:3c:6c:47:68:31:a7:a0:e2:f1:9f:43:8a:4b:6f:34:e1: 05:21:c6:cd:12:31:40:5f:ba:0c:00:bb:6f:e1:c9:a7:17:7b: 48:27:82:b1:ab:c2:68:d3:99:05:01:d6:03:b8:ef:b3:55:d3: 1d:b1:f8:ee:7c:a0:20:46:12:f0:b4:ca:42:61:e2:8a:75:a1: 78:e3:85:2d:40:64:48:ba:43:f8:24:43:37:bf:dd:02:9f:16: 5e:6d:a6:b5:7e:b0:ef:17:9f:59:40:fd:e1:d2:d3:92:a7:44: 09:63:36:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoNEIwOTJERjEwNDI4MEY0NUJDM0YyNzk2RjQwMUNDMkI0 QzYxNDRFOTAeFw0yNTA0MjUwNjI2MTFaFw0yNTA1MDIwNjI2MTFaMBgxFjAUBgNV BAMTDTY4MGIyYjAzLWI2NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzCmrtMgC5HPRY6KrYX0hjDDPy/E/vmVD48D7WoKhm8J9G7Q38XujRDgCZnzEt d5TrgKJRqR1kC4GpFb+vBwkB1qLtnrViEOhiKVmd7u5O7hmoZpqU2gxwn0cqGsm8 V7WDcU6DRcOCoGi57rWWeiZF8Mc38m6pG/0qeF5KR45XPeKKpOTZezQYH3vxzC4x OacHWStqrrmFZep6d9eUglAwwZHheVsJXUCGBowsxnHVFHa/tZKiCBT7Z8UIUi5C OS0TAIwE2qxW1gsvXpVNvLIQWQ85vGajhTDAYcz3iFbFA/SH5hpNgsg9635R5BJH SWGxt6z/NM0pf6SHY95vaeeDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl7o+w82w sXkndN2cKjOzDvCkwMUwHwYDVR0jBBgwFoAUSwkt8QQoD0W8PyeW9AHMK0xhROkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzJCQzkyNDUwQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3drdDhRUW9EMFc4UHllVzlBSE1LMHhoUk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzJCQzkyNDUwQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBX OFB5ZVc5QUhNSzB4aFJPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqOG6RZVyEd1OYzqlHivBIplWchH1ao1Dqrwn5TBhU6aAq4fpC7PjcI lZNvWl8bsfvCzSnl8iqVc2foPQJpVEVzAPjCqTLRXqfX76A9qHY4yd5OUIRWzq6X rQJeiJxHR7VpSqECAitLHAmWsr2hGYnDkfR1YtRiAyKbUzwv4JeKKkBFDjtL2+vT /eJlTCW0xxZrPGxHaDGnoOLxn0OKS2804QUhxs0SMUBfugwAu2/hyacXe0gngrGr wmjTmQUB1gO477NV0x2x+O58oCBGEvC0ykJh4op1oXjjhS1AZEi6Q/gkQze/3QKf Fl5tprV+sO8Xn1lA/eHS05KnRAljNp0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:21 2025 by rpki-client