$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: leytHySIPnygEFzpyTMU1Hql1hng3vuvEdYhk17rzTs= Subject key identifier: D6:BA:32:7A:C5:2E:97:5B:6F:79:46:61:30:97:24:EF:14:13:FC:19 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 04FB Signing time: Thu 24 Apr 2025 23:29:40 +0000 Manifest this update: Thu 24 Apr 2025 23:29:39 +0000 Manifest next update: Thu 01 May 2025 23:29:39 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 2r75eqBsQGWBBR99i1cc6Xikcu+6WaIcARqLwVHvrK8=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Apr 24 23:29:39 2025 GMT Not After : May 1 23:29:39 2025 GMT Subject: CN=680ac964-c6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:ae:ff:05:aa:97:5a:e3:8c:65:33:6a:5e: 5b:60:a9:41:54:79:b4:d1:c6:ba:80:f9:bd:bf:6e: 96:d3:14:90:c7:04:25:ed:2a:5c:1e:72:60:dd:fc: 85:48:39:ea:fd:ed:56:38:0b:0c:3c:40:7b:f7:8d: a7:bb:c5:82:74:91:98:e5:d2:cc:20:86:91:14:28: 7b:8a:75:2a:61:81:f7:52:33:e0:dc:af:fb:6e:4b: d6:a7:a6:28:a1:b9:af:c9:96:9b:bb:57:82:10:e7: 9e:26:2c:a3:e3:c7:5f:9d:cf:89:05:ae:c8:df:78: 9d:ca:54:36:78:ff:56:04:ab:05:f4:36:03:77:37: f2:14:79:38:58:54:ee:12:9d:83:04:96:75:61:46: 9d:c8:d1:a3:a2:b0:0a:61:52:2d:94:83:0f:2c:3a: 4d:86:e7:0a:e1:8d:e5:8c:88:70:fe:0e:11:57:8e: 40:da:8f:28:54:f6:7f:0d:30:9a:d7:26:e8:2d:87: eb:c2:21:ba:e9:f8:11:3d:58:9c:22:13:b7:bd:1f: da:ae:bd:fd:67:f2:3a:60:f8:ac:bb:e5:27:3e:26: b9:88:d7:d3:a3:d5:14:82:cf:78:1d:ad:ce:5f:21: ba:45:de:50:95:00:9a:bf:e4:8a:cd:c8:7c:81:a9: 40:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BA:32:7A:C5:2E:97:5B:6F:79:46:61:30:97:24:EF:14:13:FC:19 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6d:ff:31:8f:01:3c:fc:f9:cd:20:dc:d4:30:80:5c:81:77: 71:77:5e:d6:91:5e:54:e0:f7:ee:c6:7a:be:36:d0:4e:26:35: 0c:f2:4a:84:6b:80:ad:05:ea:3a:e4:9a:5d:15:a3:53:84:fb: eb:5c:22:26:59:a5:07:b6:00:3d:f7:cb:6c:5a:1c:2b:1b:54: 49:b0:77:91:b2:92:da:f4:fd:fb:6d:48:15:10:08:e9:72:e6: b2:4b:e6:37:09:47:9a:43:d6:86:dc:2a:00:db:a9:08:b8:a8: 8f:c2:5b:3d:0f:e6:99:5d:f2:69:24:56:6b:a4:48:d3:1c:f1: d1:f9:31:a9:c5:32:61:4e:a9:6e:d5:03:a1:2e:09:dc:e8:07: e6:40:10:88:99:b6:60:55:ec:11:a5:b6:58:ac:06:d9:0e:1d: 14:d3:2c:b6:ee:94:e4:a3:05:6b:9f:6e:73:b4:b8:61:20:5c: c8:c9:da:9d:84:de:40:04:bd:4a:23:f7:08:25:fd:df:e0:b6: 10:03:aa:f0:63:47:a3:87:99:46:59:0a:bd:c6:db:ab:af:1f: f0:9d:52:09:c7:1b:79:d6:9a:53:c8:17:4a:f1:a7:91:b2:08: b7:1a:a0:bf:d7:06:e0:fc:cf:04:f0:39:5b:cb:4f:5e:86:17: d9:e5:eb:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNDI0MjMyOTM5WhcNMjUwNTAxMjMyOTM5WjAYMRYwFAYD VQQDEw02ODBhYzk2NC1jNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/eu/wWql1rjjGUzal5bYKlBVHm00ca6gPm9v26W0xSQxwQl7SpcHnJg3fyF SDnq/e1WOAsMPEB7942nu8WCdJGY5dLMIIaRFCh7inUqYYH3UjPg3K/7bkvWp6Yo obmvyZabu1eCEOeeJiyj48dfnc+JBa7I33idylQ2eP9WBKsF9DYDdzfyFHk4WFTu Ep2DBJZ1YUadyNGjorAKYVItlIMPLDpNhucK4Y3ljIhw/g4RV45A2o8oVPZ/DTCa 1yboLYfrwiG66fgRPVicIhO3vR/arr39Z/I6YPisu+UnPia5iNfTo9UUgs94Ha3O XyG6Rd5QlQCav+SKzch8galAtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa6MnrF Lpdbb3lGYTCXJO8UE/wZMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzbf8xjwE8/PnNINzUMIBcgXdxd17WkV5U4Pfuxnq+NtBOJjUM8kqE a4CtBeo65JpdFaNThPvrXCImWaUHtgA998tsWhwrG1RJsHeRspLa9P37bUgVEAjp cuayS+Y3CUeaQ9aG3CoA26kIuKiPwls9D+aZXfJpJFZrpEjTHPHR+TGpxTJhTqlu 1QOhLgnc6AfmQBCImbZgVewRpbZYrAbZDh0U0yy27pTkowVrn25ztLhhIFzIydqd hN5ABL1KI/cIJf3f4LYQA6rwY0ejh5lGWQq9xturrx/wnVIJxxt51ppTyBdK8aeR sgi3GqC/1wbg/M8E8Dlby09ehhfZ5evI -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:19 2025 by rpki-client