$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: jw1GBC9nZ7WAk7SF/JsaCVXSP6t3yJn4HG2DgBp6mA8= Subject key identifier: 98:1F:25:74:79:FE:C4:F1:12:27:C4:13:70:D4:D4:38:0C:7F:7C:E9 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 04D2 Signing time: Thu 24 Apr 2025 23:34:58 +0000 Manifest this update: Thu 24 Apr 2025 23:34:57 +0000 Manifest next update: Thu 01 May 2025 23:34:57 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: Ear/zbGKGRK2gMnmjgol4FlqUx/sguILF+5iDz9rf/E=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Apr 24 23:34:57 2025 GMT Not After : May 1 23:34:57 2025 GMT Subject: CN=680acaa1-93a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:7e:29:ef:f3:e8:3e:8b:90:37:84:be:08: 33:83:30:99:55:dc:db:86:24:56:14:e5:5b:d2:e8: c3:1e:7a:b5:10:51:93:66:b8:0f:12:b6:07:be:3f: 9c:f8:27:d3:09:db:5e:e5:20:4a:8c:23:a2:70:b5: 12:e3:80:5b:98:50:de:58:fc:4b:8f:04:21:51:5b: aa:94:da:42:46:a6:02:4e:b1:fb:55:e5:da:9c:f0: c4:7e:de:a1:d8:70:93:ca:fd:d4:29:1e:38:96:c9: f7:97:f0:bc:89:12:29:e1:91:dc:6a:40:a0:c3:a3: b3:20:23:78:12:21:a4:2a:53:73:ba:e6:b6:d9:03: 6a:74:68:6b:c9:26:25:60:a6:29:c7:6a:45:bf:ba: 8e:3f:1c:d8:b6:72:3b:2f:5e:82:28:47:87:fd:1f: 59:d7:4c:99:1a:ae:26:b2:c3:e3:7b:24:45:aa:64: b2:c2:77:88:2a:75:2e:aa:fa:96:4d:e9:45:2d:3a: 01:ed:a9:19:e0:6a:b0:9c:b2:bb:31:05:90:84:f9: ed:38:25:26:6f:e3:09:b7:2a:a5:7e:5b:9f:83:13: 98:bb:13:f3:95:36:b7:d1:1f:a1:81:71:f4:33:d2: 21:25:a4:9c:60:50:56:e0:c9:67:08:eb:1c:ea:9a: 16:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1F:25:74:79:FE:C4:F1:12:27:C4:13:70:D4:D4:38:0C:7F:7C:E9 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:1d:31:4d:d0:b5:e1:62:4f:a2:4d:bf:65:98:31:77:5f:3e: c7:3d:6d:ae:97:9e:8d:72:07:05:c5:98:65:a0:d0:d5:1a:f1: f8:84:b2:7c:49:7b:d4:a0:0e:eb:7c:df:67:eb:ea:07:f3:f2: 3c:f6:7d:ed:48:3a:3c:8e:18:e1:1b:2d:3f:6a:ee:a9:32:8f: f5:49:1b:bd:f1:19:fd:37:a6:fe:84:4b:2a:fc:8a:a7:b8:da: 60:e9:a8:91:31:c5:22:72:79:8d:97:f4:13:78:47:2a:00:ff: b9:3a:c2:4f:e1:bb:31:a5:19:e2:4c:76:69:1d:4c:0a:b2:b2: 84:cc:7e:d4:4e:e4:d8:e3:1d:f9:df:e5:cf:78:ad:85:a6:13: 7a:b7:6f:36:36:62:d6:8f:43:cc:ff:0b:0d:f3:d3:41:0a:ba: 77:76:35:60:93:69:54:00:11:dd:3b:60:9a:d6:0a:a3:89:1f: af:c6:c2:ea:f2:9f:f8:20:60:d6:fc:84:db:bb:0f:04:4e:5b: 84:fb:b2:42:d7:ca:82:6c:35:8e:98:4c:3f:87:2f:8e:24:86: 5a:c4:1b:35:f5:52:03:a4:68:ca:aa:90:3c:5c:f8:94:46:bf: 22:64:15:8c:8f:a3:47:6d:9c:a4:3a:f2:79:e5:68:6f:8d:4c: 00:4b:36:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwNDI0MjMzNDU3WhcNMjUwNTAxMjMzNDU3WjAYMRYwFAYD VQQDEw02ODBhY2FhMS05M2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwV+Ke/z6D6LkDeEvggzgzCZVdzbhiRWFOVb0ujDHnq1EFGTZrgPErYHvj+c +CfTCdte5SBKjCOicLUS44BbmFDeWPxLjwQhUVuqlNpCRqYCTrH7VeXanPDEft6h 2HCTyv3UKR44lsn3l/C8iRIp4ZHcakCgw6OzICN4EiGkKlNzuua22QNqdGhrySYl YKYpx2pFv7qOPxzYtnI7L16CKEeH/R9Z10yZGq4mssPjeyRFqmSywneIKnUuqvqW TelFLToB7akZ4GqwnLK7MQWQhPntOCUmb+MJtyqlflufgxOYuxPzlTa30R+hgXH0 M9IhJaScYFBW4MlnCOsc6poWYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgfJXR5 /sTxEifEE3DU1DgMf3zpMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPHTFN0LXhYk+iTb9lmDF3Xz7HPW2ul56NcgcFxZhloNDVGvH4hLJ8 SXvUoA7rfN9n6+oH8/I89n3tSDo8jhjhGy0/au6pMo/1SRu98Rn9N6b+hEsq/Iqn uNpg6aiRMcUicnmNl/QTeEcqAP+5OsJP4bsxpRniTHZpHUwKsrKEzH7UTuTY4x35 3+XPeK2FphN6t282NmLWj0PM/wsN89NBCrp3djVgk2lUABHdO2Ca1gqjiR+vxsLq 8p/4IGDW/ITbuw8ETluE+7JC18qCbDWOmEw/hy+OJIZaxBs19VIDpGjKqpA8XPiU Rr8iZBWMj6NHbZykOvJ55WhvjUwASzZz -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:40 2025 by rpki-client