$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: FoE4pHGOa2aVUilda1I1DGEnO/zk2SuPqqQdp3RXiL8= Subject key identifier: 59:D5:E4:C4:18:CD:4E:ED:BB:DE:B1:AC:1A:74:0A:C6:29:83:2C:35 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0942 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 08FE Signing time: Thu 24 Apr 2025 20:21:00 +0000 Manifest this update: Thu 24 Apr 2025 20:20:59 +0000 Manifest next update: Thu 01 May 2025 20:20:59 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: UE5Mwwktx1MhIjF8GWPfi26vt6QJBwkBpYch9hrTdZo=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 4: E3A0B86070F611EFA4CF2731C4F9AE02.roa (hash: pAv+dRx1aGgFIyHddbIxGijvD4aztLGF4oGsAvvyRak=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2370 (0x942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Apr 24 20:20:59 2025 GMT Not After : May 1 20:20:59 2025 GMT Subject: CN=680a9d2b-53e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:27:8d:67:01:b3:b3:e8:fe:c7:69:19:16: d4:f7:4f:84:a5:2a:85:dd:d3:cf:ff:66:c8:17:79: 04:d1:2d:72:18:bc:7c:53:2c:ac:63:f8:d0:a6:cd: 52:1c:4b:d4:c1:d5:75:e6:a9:82:7a:37:ee:17:05: 96:be:39:40:12:57:b3:72:34:36:72:d8:e8:ab:47: 37:a5:f1:80:26:54:f2:7b:43:ea:75:42:d1:38:1f: 78:c8:ca:d9:3e:59:0a:3f:12:00:ff:a9:5f:ff:93: 2a:ba:c1:b2:fd:ba:1d:33:45:e4:21:59:c4:f8:15: 7b:c5:73:fe:8c:6f:71:39:e6:8a:88:01:4d:bd:aa: 89:7b:34:cd:16:d8:b0:e2:81:72:d1:e2:17:3a:49: 52:5c:c2:fc:f9:c6:bb:ab:7c:e8:b3:7b:99:fc:d5: db:6e:9c:be:44:f3:41:60:f5:1d:cf:92:9c:1f:69: 58:d5:45:e7:ee:5c:86:af:82:6e:f5:4d:de:f7:f5: 76:07:2f:e9:9a:c1:92:70:12:f2:0a:93:ac:d9:58: 28:47:4f:7e:a4:01:47:9d:cd:d5:2c:b9:9d:70:4b: ae:30:88:17:67:3a:2b:76:04:f7:e6:2f:8b:f7:08: 0d:55:29:ec:25:b4:76:50:ab:f2:d2:45:7d:42:09: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D5:E4:C4:18:CD:4E:ED:BB:DE:B1:AC:1A:74:0A:C6:29:83:2C:35 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:bf:7b:00:46:19:95:3f:55:ac:e0:69:fc:89:00:5a:b7:54: 2d:b5:60:9e:f7:db:e7:bb:72:f5:89:47:cd:54:5f:fd:d2:bd: 98:8d:ea:83:18:ac:e6:74:53:25:36:d2:3c:72:8d:a6:dc:66: ca:57:ba:4d:fe:1e:bd:ca:5a:a7:03:92:f2:09:7f:9c:2d:87: 79:43:07:c5:22:fe:2c:76:e5:f3:8b:e6:25:43:08:17:97:42: ed:6c:b3:2c:c2:2a:08:f0:08:78:c8:e7:b8:e1:15:d7:2f:2b: 76:f8:e7:7f:71:92:25:82:72:e8:0f:9f:e2:91:5b:df:38:29: 3f:c2:e6:b9:df:a2:92:92:5a:78:04:2f:16:4b:0e:0c:07:d4: 33:d2:e5:61:d4:ff:d0:da:61:a4:73:71:31:86:04:40:9a:d5: 01:e0:8a:23:30:68:5b:6f:01:01:3c:6c:98:81:6f:b5:16:46: bd:28:30:6c:32:b5:59:f3:38:3e:3a:93:13:56:d8:3c:20:d1: dc:67:35:f2:c2:57:73:ce:97:91:9c:99:a7:07:87:26:c8:b0: 46:ca:af:87:13:b1:45:26:2f:08:fa:db:48:83:bb:49:84:2b: 5e:1b:a9:bc:f5:db:2f:2c:b1:52:c5:d1:33:93:7b:eb:81:09: b2:c5:52:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwNDI0MjAyMDU5WhcNMjUwNTAxMjAyMDU5WjAYMRYwFAYD VQQDEw02ODBhOWQyYi01M2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt48njWcBs7Po/sdpGRbU90+EpSqF3dPP/2bIF3kE0S1yGLx8UyysY/jQps1S HEvUwdV15qmCejfuFwWWvjlAElezcjQ2ctjoq0c3pfGAJlTye0PqdULROB94yMrZ PlkKPxIA/6lf/5MqusGy/bodM0XkIVnE+BV7xXP+jG9xOeaKiAFNvaqJezTNFtiw 4oFy0eIXOklSXML8+ca7q3zos3uZ/NXbbpy+RPNBYPUdz5KcH2lY1UXn7lyGr4Ju 9U3e9/V2By/pmsGScBLyCpOs2VgoR09+pAFHnc3VLLmdcEuuMIgXZzordgT35i+L 9wgNVSnsJbR2UKvy0kV9Qgm+rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnV5MQY zU7tu96xrBp0CsYpgyw1MB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOv3sARhmVP1Ws4Gn8iQBat1QttWCe99vnu3L1iUfNVF/90r2YjeqD GKzmdFMlNtI8co2m3GbKV7pN/h69ylqnA5LyCX+cLYd5QwfFIv4sduXzi+YlQwgX l0LtbLMswioI8Ah4yOe44RXXLyt2+Od/cZIlgnLoD5/ikVvfOCk/wua536KSklp4 BC8WSw4MB9Qz0uVh1P/Q2mGkc3ExhgRAmtUB4IojMGhbbwEBPGyYgW+1Fka9KDBs MrVZ8zg+OpMTVtg8INHcZzXywldzzpeRnJmnB4cmyLBGyq+HE7FFJi8I+ttIg7tJ hCteG6m89dsvLLFSxdEzk3vrgQmyxVLy -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:15 2025 by rpki-client