$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft File: sjZrmQQ2twaLXyVculqgXp29v30.mft (raw, json) Hash identifier: hotFirGCq1lBluIprrLtOxQUQd6PmQ6V/GE4DxqUlR0= Subject key identifier: 57:41:38:FA:2F:7E:88:5E:44:0E:72:9E:29:09:D5:70:9D:09:B3:85 Authority key identifier: B2:36:6B:99:04:36:B7:06:8B:5F:25:5C:BA:5A:A0:5E:9D:BD:BF:7D Certificate issuer: /CN=A91C9327/serialNumber=B2366B990436B7068B5F255CBA5AA05E9DBDBF7D Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft Manifest number: 024F Signing time: Fri 25 Apr 2025 01:37:07 +0000 Manifest this update: Fri 25 Apr 2025 01:37:07 +0000 Manifest next update: Fri 02 May 2025 01:37:07 +0000 Files and hashes: 1: sjZrmQQ2twaLXyVculqgXp29v30.crl (hash: Mtq0QA+Svdl9ZEci2Q+e1x/fMgQNn9SzxaW6OfoCYjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.crl rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9327, serialNumber=B2366B990436B7068B5F255CBA5AA05E9DBDBF7D Validity Not Before: Apr 25 01:37:07 2025 GMT Not After : May 2 01:37:07 2025 GMT Subject: CN=680ae743-b503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:eb:b9:44:fc:4b:85:ea:1e:17:84:42:7c:21: 0a:45:28:08:54:d4:aa:6b:ed:88:c5:41:0f:db:0e: 1e:e7:d9:a7:75:c7:70:73:e8:90:fc:87:42:36:38: b3:c6:1f:86:6a:94:93:9e:0e:dc:a7:17:10:e3:c9: 34:aa:28:57:ab:a2:b7:48:b1:46:19:35:94:56:8f: 42:36:26:ef:50:ed:75:21:d1:a4:6f:d8:76:9b:cd: f9:de:ca:1f:ad:2c:2c:91:89:23:4d:0a:fc:af:30: 75:38:b4:6d:75:1e:7f:83:4e:32:12:f6:e6:52:e2: e5:03:ca:8b:f8:47:f0:80:31:39:d1:47:70:19:e2: 2a:c3:12:f1:5d:01:1d:f5:3e:a3:49:ba:cb:32:13: 88:ff:12:73:aa:04:5d:47:2d:df:22:d6:06:50:be: 6a:86:35:69:62:49:05:d7:85:83:b9:16:e6:c3:76: 9c:1c:34:51:bc:82:bb:3b:92:1e:c2:f9:a3:e5:62: d6:28:33:9a:98:ae:18:14:80:96:a7:62:e1:67:82: 5c:b7:12:94:a5:d2:2f:5e:4f:45:6f:ab:1a:e0:ec: 8a:44:f9:aa:fe:e7:fe:67:3b:c8:e9:0d:f6:5f:91: 49:f0:78:f9:9e:88:4e:e8:6c:ee:f7:1e:d6:67:20: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:41:38:FA:2F:7E:88:5E:44:0E:72:9E:29:09:D5:70:9D:09:B3:85 X509v3 Authority Key Identifier: keyid:B2:36:6B:99:04:36:B7:06:8B:5F:25:5C:BA:5A:A0:5E:9D:BD:BF:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b8:6b:cf:64:57:de:e0:63:84:55:26:4f:55:f2:17:e9:04: ee:8a:8e:c9:65:b3:a5:db:d6:ed:f6:95:9e:02:1c:1a:7d:22: 74:45:24:47:f8:71:70:cc:23:2e:6d:5f:1f:6f:b6:93:00:0d: 00:4d:85:11:73:ff:c7:79:d5:5f:4b:28:07:c8:8c:56:6e:43: 84:cf:a3:1a:da:02:b2:fc:7a:d1:35:c2:73:fd:0e:7c:38:f8: dc:3c:8d:04:23:75:69:1f:93:6e:2c:a4:43:2b:6f:68:cc:91: ec:80:fa:ff:ae:9c:b2:38:e8:b0:2b:e4:27:09:b6:77:9f:03: 59:7c:f0:37:f5:40:2b:7d:5d:a9:8d:bb:74:77:35:ee:f1:00: f7:45:54:d1:c0:b1:ef:f5:5d:a7:7f:c3:4d:20:52:80:fa:d0: ad:45:48:50:50:43:c7:e2:2f:5c:96:7d:ae:a9:59:a5:04:6d: bc:dd:9a:04:e0:06:c4:04:59:d7:23:fb:d1:6a:48:7c:48:e4: 86:d6:bf:1d:4b:3a:6d:8e:82:9d:0f:ad:f7:32:ab:e8:57:c3: 49:bd:1a:23:61:5f:0c:03:6b:ce:83:9c:3c:24:44:a6:5c:70: 3d:c1:46:4e:55:32:08:bd:e4:e8:93:a7:d5:a2:30:3c:23:b2: 77:bd:57:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjcxMTAvBgNVBAUTKEIyMzY2Qjk5MDQzNkI3MDY4QjVGMjU1Q0JBNUFBMDVF OURCREJGN0QwHhcNMjUwNDI1MDEzNzA3WhcNMjUwNTAyMDEzNzA3WjAYMRYwFAYD VQQDEw02ODBhZTc0My1iNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+u5RPxLheoeF4RCfCEKRSgIVNSqa+2IxUEP2w4e59mndcdwc+iQ/IdCNjiz xh+GapSTng7cpxcQ48k0qihXq6K3SLFGGTWUVo9CNibvUO11IdGkb9h2m8353sof rSwskYkjTQr8rzB1OLRtdR5/g04yEvbmUuLlA8qL+EfwgDE50UdwGeIqwxLxXQEd 9T6jSbrLMhOI/xJzqgRdRy3fItYGUL5qhjVpYkkF14WDuRbmw3acHDRRvIK7O5Ie wvmj5WLWKDOamK4YFICWp2LhZ4JctxKUpdIvXk9Fb6sa4OyKRPmq/uf+ZzvI6Q32 X5FJ8Hj5nohO6Gzu9x7WZyDipQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdBOPov foheRA5ynikJ1XCdCbOFMB8GA1UdIwQYMBaAFLI2a5kENrcGi18lXLpaoF6dvb99 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNy8xMzY2MzE5QTE3 MDAxMUVEOTNBMjA2NDdDNEY5QUUwMi9zalpybVFRMnR3YUxYeVZjdWxxZ1hwMjl2 MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NqWnJtUVEydHdhTFh5VmN1bHFnWHAyOXYzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNy8xMzY2MzE5QTE3MDAxMUVEOTNBMjA2NDdDNEY5QUUwMi9zalpybVFRMnR3 YUxYeVZjdWxxZ1hwMjl2MzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCquGvPZFfe4GOEVSZPVfIX6QTuio7JZbOl29bt9pWeAhwafSJ0RSRH +HFwzCMubV8fb7aTAA0ATYURc//HedVfSygHyIxWbkOEz6Ma2gKy/HrRNcJz/Q58 OPjcPI0EI3VpH5NuLKRDK29ozJHsgPr/rpyyOOiwK+QnCbZ3nwNZfPA39UArfV2p jbt0dzXu8QD3RVTRwLHv9V2nf8NNIFKA+tCtRUhQUEPH4i9cln2uqVmlBG283ZoE 4AbEBFnXI/vRakh8SOSG1r8dSzptjoKdD633MqvoV8NJvRojYV8MA2vOg5w8JESm XHA9wUZOVTIIveTok6fVojA8I7J3vVff -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:00 2025 by rpki-client