$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: pQrRq6wlK+ZjFoo/cSCmgM2wz+XtJw0c8SInTxDq/yk= Subject key identifier: 1D:3E:6B:07:35:E7:93:1A:97:B3:E7:4D:B7:D4:B6:1A:31:A4:2E:76 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 03FB Signing time: Fri 25 Apr 2025 00:24:06 +0000 Manifest this update: Fri 25 Apr 2025 00:24:06 +0000 Manifest next update: Fri 02 May 2025 00:24:05 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: zkywnjPX0t1BGal+A3qwcmQJhLbfsTiPHtofC9E0ask=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Apr 25 00:24:06 2025 GMT Not After : May 2 00:24:05 2025 GMT Subject: CN=680ad626-8dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e0:09:ac:4a:be:b5:81:9c:01:0c:f5:e9:62: be:af:af:57:3a:c2:69:57:83:02:28:47:49:ec:a4: 91:33:94:dd:63:a1:82:e7:8c:dc:a5:fa:8e:6c:cb: 13:bc:dc:c8:ba:3c:ae:40:ed:97:e2:8c:55:97:2d: 4e:15:a7:ac:0a:19:2e:d5:00:d7:dd:69:ef:9b:bf: 1e:83:1f:c6:cb:24:42:b0:ab:62:a2:ed:26:8c:55: b3:e8:c5:03:07:df:b6:6f:2d:43:9a:96:35:af:3f: 33:e1:61:f6:56:75:40:19:13:ec:fd:b0:26:c9:88: 8e:03:56:7f:2d:fe:17:89:dc:90:57:36:29:9f:c0: ce:85:39:ff:f4:bc:37:51:a1:87:20:27:41:2c:3d: 48:4a:10:29:bd:12:f7:a0:02:11:a1:d6:fa:ad:18: 79:ee:67:b2:1f:6e:1d:1b:21:90:5b:97:e1:d0:13: 2a:74:a1:c1:e2:91:d4:7d:e9:2d:3f:36:35:c1:51: 95:b8:32:30:84:1c:38:67:bb:36:60:4a:3d:0d:61: 5d:2b:db:a5:d4:0f:2e:60:38:9f:30:ea:a8:4d:8f: 34:f6:af:1f:7b:a0:7f:ef:a3:62:da:b5:06:3c:7a: c4:73:43:59:38:74:d5:64:5d:a5:c7:ff:7c:5b:37: 47:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3E:6B:07:35:E7:93:1A:97:B3:E7:4D:B7:D4:B6:1A:31:A4:2E:76 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:9b:0b:f7:a1:99:c8:fa:34:3b:af:b6:f8:07:16:c0:f0:de: 0d:b3:7d:97:5d:ce:87:4a:29:29:b1:ab:c4:4a:f6:57:58:21: 99:ce:d0:33:20:7b:4c:79:47:05:30:8b:43:17:87:e9:ab:26: bb:82:98:0d:26:c0:86:62:0f:81:17:04:df:5c:4e:a5:26:36: d0:e1:85:b2:0b:a5:47:24:1b:77:7b:62:f2:bf:45:c7:d3:4c: f8:4d:19:25:e9:a9:fb:10:8f:32:b4:11:19:f1:13:20:c4:88: 46:30:f2:cf:04:c1:4e:f8:a2:89:38:1c:28:6e:73:3a:12:2c: 11:14:47:4f:d6:7e:d6:e6:d2:24:78:1f:db:2d:e6:07:79:d2: a3:30:0c:67:a0:54:f8:d9:d7:81:f9:6e:97:02:7e:51:9b:d6: b3:23:39:f1:94:85:1d:62:29:77:d6:0e:18:aa:d9:12:27:15: 3c:73:57:a7:2e:0b:7b:c3:62:85:9b:35:23:e7:ba:04:44:87: f9:06:98:9a:68:6a:0c:24:21:30:49:cf:2e:14:ba:a1:f3:8c: 65:80:83:b6:48:77:c5:67:82:bc:40:93:3f:6a:20:10:5c:e3: b0:a1:eb:41:45:52:c8:7f:4d:d9:cd:43:23:f2:26:4d:4e:86: e1:8e:23:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNDI1MDAyNDA2WhcNMjUwNTAyMDAyNDA1WjAYMRYwFAYD VQQDEw02ODBhZDYyNi04ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eAJrEq+tYGcAQz16WK+r69XOsJpV4MCKEdJ7KSRM5TdY6GC54zcpfqObMsT vNzIujyuQO2X4oxVly1OFaesChku1QDX3Wnvm78egx/GyyRCsKtiou0mjFWz6MUD B9+2by1DmpY1rz8z4WH2VnVAGRPs/bAmyYiOA1Z/Lf4XidyQVzYpn8DOhTn/9Lw3 UaGHICdBLD1IShApvRL3oAIRodb6rRh57meyH24dGyGQW5fh0BMqdKHB4pHUfekt PzY1wVGVuDIwhBw4Z7s2YEo9DWFdK9ul1A8uYDifMOqoTY809q8fe6B/76Ni2rUG PHrEc0NZOHTVZF2lx/98WzdHpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0+awc1 55Mal7PnTbfUthoxpC52MB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmwv3oZnI+jQ7r7b4BxbA8N4Ns32XXc6HSikpsavESvZXWCGZztAz IHtMeUcFMItDF4fpqya7gpgNJsCGYg+BFwTfXE6lJjbQ4YWyC6VHJBt3e2Lyv0XH 00z4TRkl6an7EI8ytBEZ8RMgxIhGMPLPBMFO+KKJOBwobnM6EiwRFEdP1n7W5tIk eB/bLeYHedKjMAxnoFT42deB+W6XAn5Rm9azIznxlIUdYil31g4YqtkSJxU8c1en Lgt7w2KFmzUj57oERIf5BpiaaGoMJCEwSc8uFLqh84xlgIO2SHfFZ4K8QJM/aiAQ XOOwoetBRVLIf03ZzUMj8iZNTobhjiNS -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:57 2025 by rpki-client