$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: g9QC7M+5Au8LwDSgClgziqgg8g1OlyN0cRGFw+VcVyE= Subject key identifier: 78:7E:B6:44:7A:59:11:25:97:06:48:AB:AE:B3:FA:87:6F:81:36:03 Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 019D Signing time: Fri 25 Apr 2025 02:29:50 +0000 Manifest this update: Fri 25 Apr 2025 02:29:50 +0000 Manifest next update: Fri 02 May 2025 02:29:50 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: M4Qex1C+cMMoqqf82NEe348CxygjZbWU6WdJmIPyIGc=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Apr 25 02:29:50 2025 GMT Not After : May 2 02:29:50 2025 GMT Subject: CN=680af39e-d14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ab:62:43:e0:87:be:7d:a5:83:12:1d:b0:73: f6:47:f6:85:f8:6b:6e:18:d4:e8:db:56:10:31:b1: b8:8c:05:12:e6:46:84:cf:18:ec:b1:88:63:eb:a5: e5:b8:18:c4:44:65:f9:f4:90:02:66:56:b9:fb:21: 00:26:a4:41:71:b9:a0:e8:b9:a9:de:2e:62:fd:07: 88:33:98:9f:de:c5:2a:01:fc:7d:08:ab:5c:cf:67: 4e:18:dd:d8:e1:27:e8:9e:10:f9:d5:2b:fb:f4:ef: 92:45:56:f1:6c:f8:9c:d6:7e:e5:85:0c:6a:b0:01: b3:a4:62:b0:6d:eb:d6:86:14:2a:5f:4f:8a:e4:f6: 13:0b:0a:f5:32:5f:e7:75:fc:c9:a6:69:3c:39:b7: bd:99:36:20:5c:9c:b8:48:3d:85:16:54:46:35:d4: 15:c0:c4:c9:e7:92:b4:1a:4e:4c:79:71:7f:a2:4e: de:32:3b:38:00:e8:49:fc:b2:f7:c3:c3:02:a2:fa: fe:b8:10:0c:ba:df:05:35:e2:29:38:40:f1:37:81: bb:49:7e:00:3e:02:8d:e5:02:df:e2:98:91:94:69: fc:be:13:60:a5:43:f4:b8:f2:d4:04:0f:94:2b:47: 3a:29:09:e0:35:c9:cf:01:44:2a:68:7b:64:0b:d1: 15:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7E:B6:44:7A:59:11:25:97:06:48:AB:AE:B3:FA:87:6F:81:36:03 X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:83:ea:5e:99:90:ad:38:4a:37:23:d3:33:11:ce:05:4d:bd: 08:f4:2f:7f:67:fe:9b:54:31:de:d7:3b:90:77:73:0f:7b:03: a1:fb:e1:57:f8:c6:08:05:00:5f:15:b5:6f:c8:8a:c4:28:ea: b4:f6:c4:68:e0:c9:ec:c2:ed:cc:29:35:64:f1:f5:21:0a:fb: 50:df:d3:88:8e:3e:2a:8b:fb:5b:89:38:31:92:5e:ea:ee:c6: 7c:e3:ea:ad:dc:87:60:66:12:7d:8f:5f:ce:a5:87:79:ed:2c: 14:dc:bc:40:35:84:3e:c5:e4:d6:d4:16:96:dd:b5:fc:d0:4e: 91:de:31:ca:9a:26:d5:4b:d6:02:50:e1:6b:77:1e:53:5c:16: b4:81:bd:62:06:41:bb:60:82:ce:c0:77:d1:6a:3c:86:24:e0: 92:06:6c:e1:60:c0:e9:a9:a8:2f:01:cd:56:eb:6d:d3:56:fe: 93:0e:07:34:49:99:eb:ff:b9:b8:ee:3c:ee:74:9e:d1:84:80: ad:14:94:ae:27:fd:15:6e:38:07:15:29:92:0b:90:3b:89:9c: f9:26:81:d2:fc:61:37:2a:e6:b9:f0:b3:60:04:92:17:a9:58: 7c:4e:c9:34:50:7d:cb:4f:f1:bd:31:51:91:8d:dc:3d:b5:69: 72:34:44:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUwNDI1MDIyOTUwWhcNMjUwNTAyMDIyOTUwWjAYMRYwFAYD VQQDEw02ODBhZjM5ZS1kMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36tiQ+CHvn2lgxIdsHP2R/aF+GtuGNTo21YQMbG4jAUS5kaEzxjssYhj66Xl uBjERGX59JACZla5+yEAJqRBcbmg6Lmp3i5i/QeIM5if3sUqAfx9CKtcz2dOGN3Y 4SfonhD51Sv79O+SRVbxbPic1n7lhQxqsAGzpGKwbevWhhQqX0+K5PYTCwr1Ml/n dfzJpmk8Obe9mTYgXJy4SD2FFlRGNdQVwMTJ55K0Gk5MeXF/ok7eMjs4AOhJ/LL3 w8MCovr+uBAMut8FNeIpOEDxN4G7SX4APgKN5QLf4piRlGn8vhNgpUP0uPLUBA+U K0c6KQngNcnPAUQqaHtkC9EVVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHh+tkR6 WREllwZIq66z+odvgTYDMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVg+pemZCtOEo3I9MzEc4FTb0I9C9/Z/6bVDHe1zuQd3MPewOh++FX +MYIBQBfFbVvyIrEKOq09sRo4Mnswu3MKTVk8fUhCvtQ39OIjj4qi/tbiTgxkl7q 7sZ84+qt3IdgZhJ9j1/OpYd57SwU3LxANYQ+xeTW1BaW3bX80E6R3jHKmibVS9YC UOFrdx5TXBa0gb1iBkG7YILOwHfRajyGJOCSBmzhYMDpqagvAc1W623TVv6TDgc0 SZnr/7m47jzudJ7RhICtFJSuJ/0VbjgHFSmSC5A7iZz5JoHS/GE3Kua58LNgBJIX qVh8Tsk0UH3LT/G9MVGRjdw9tWlyNETl -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:11 2025 by rpki-client