$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: 0+SdS/67X8Vb/4MC1pHRje7m0SJFIb5YINAx2qlckzU= Subject key identifier: BD:A0:3E:63:95:27:E1:74:31:7E:7F:94:84:3E:C4:37:79:8F:34:05 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0BF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0BDB Signing time: Thu 24 Apr 2025 18:45:25 +0000 Manifest this update: Thu 24 Apr 2025 18:45:24 +0000 Manifest next update: Thu 01 May 2025 18:45:24 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: lNrt+dd487TJ7vxoviNm8tBRUefpcYuh0JlgILLQ8PA=) 2: 39F4FA3EC28011EFA15F7983C4F9AE02.roa (hash: Tv0EkNRvl6HwjRZU1kGmTPF818bqvfwzUYMD5mrfPL8=) 3: 38717B38C28011EFA15F7983C4F9AE02.roa (hash: 5iv6gdKQPAZFSlAANGZthkjck4esnk4Jjld1SsnV+1w=) 4: 10BAC44C646511EFBC52E778C4F9AE02.roa (hash: Z67/J9vff1oW6NI34pKliaQWv/9nuKIHlmULd9ZQaKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3056 (0xbf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Apr 24 18:45:24 2025 GMT Not After : May 1 18:45:24 2025 GMT Subject: CN=680a86c5-783f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0f:e4:47:2f:0f:9e:17:82:8e:66:ba:56:f5: 70:fd:b6:62:6b:67:35:c6:1b:50:3d:cd:0b:e5:45: b7:3d:9b:ee:48:a2:79:dc:30:cc:99:50:e4:a8:b0: 10:36:df:5f:c1:11:64:2d:31:b2:1e:94:c4:bc:0c: d3:60:6c:4a:c7:84:4b:e5:c3:d4:49:b3:35:fc:ec: 0d:cb:05:ec:9c:65:3e:dd:9a:11:24:3d:b0:ff:bd: 01:43:dd:3f:8d:01:1e:1e:d5:5d:c1:12:f2:5a:3a: f6:9d:1e:39:1a:31:c3:77:b8:e1:69:12:b9:48:e2: c9:5c:5e:cd:71:0b:9c:2a:d1:8f:12:2b:79:66:41: a7:e2:9e:42:a8:d8:17:aa:11:9a:91:c5:d8:42:ec: 46:0c:88:8a:20:a4:6c:c5:7e:ea:09:4b:aa:94:54: 3b:03:86:9c:67:d3:04:a6:01:3a:93:39:56:c2:ed: 79:27:c5:81:70:e8:a7:08:97:97:cc:11:62:ab:b1: b8:81:70:58:73:03:62:5b:a7:61:a3:f7:c3:8e:81: ba:7b:ed:2e:4a:d1:bf:2c:fe:1d:44:a0:e5:17:12: 99:73:36:f2:14:cf:08:23:7b:3b:c2:7c:89:68:b9: 80:d1:5a:e2:d4:05:ea:ec:20:d0:4e:be:33:78:b1: e2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A0:3E:63:95:27:E1:74:31:7E:7F:94:84:3E:C4:37:79:8F:34:05 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:66:38:6c:28:b5:88:3e:45:8c:90:2a:35:ad:51:e0:bd:dd: 8a:fb:17:f6:c8:fc:78:ae:59:10:d5:58:88:f8:1b:a0:5a:e3: 98:e4:cc:2a:c2:b3:44:76:93:8e:30:ab:9b:e7:c7:3f:ca:44: d8:38:74:eb:27:78:1d:7f:58:6c:f4:8d:31:35:f1:eb:f2:ca: 33:4d:44:08:fa:44:6f:2d:f3:be:a3:19:2a:d8:da:36:66:46: a8:a6:a1:b5:27:99:65:51:05:df:7f:b9:68:c4:b5:4e:09:1d: 54:26:84:2a:a5:84:1b:93:6d:32:ce:7d:ed:9e:99:de:ab:d0: e8:18:87:15:22:00:d4:60:0d:98:e2:ea:5f:67:32:8a:6a:0f: 56:33:9a:1c:3a:1d:28:21:46:66:a7:cf:02:22:f7:83:b6:2b: ff:3c:59:f3:2c:d3:fc:a7:49:0a:88:27:ee:fe:7c:37:a7:25: ab:06:3c:fa:77:c1:ef:78:38:55:31:4d:6f:f7:13:5a:55:f1: e4:fe:54:4e:61:00:fe:ca:27:84:ef:cd:c0:ba:9e:99:b5:2a: 40:06:dd:47:d1:df:d2:3d:00:d4:02:8b:c6:37:03:bc:07:db: 03:2d:22:a6:ce:3e:11:e7:2d:db:28:87:63:fc:34:79:47:4e: 03:7a:98:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwNDI0MTg0NTI0WhcNMjUwNTAxMTg0NTI0WjAYMRYwFAYD VQQDEw02ODBhODZjNS03ODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg/kRy8PnheCjma6VvVw/bZia2c1xhtQPc0L5UW3PZvuSKJ53DDMmVDkqLAQ Nt9fwRFkLTGyHpTEvAzTYGxKx4RL5cPUSbM1/OwNywXsnGU+3ZoRJD2w/70BQ90/ jQEeHtVdwRLyWjr2nR45GjHDd7jhaRK5SOLJXF7NcQucKtGPEit5ZkGn4p5CqNgX qhGakcXYQuxGDIiKIKRsxX7qCUuqlFQ7A4acZ9MEpgE6kzlWwu15J8WBcOinCJeX zBFiq7G4gXBYcwNiW6dho/fDjoG6e+0uStG/LP4dRKDlFxKZczbyFM8II3s7wnyJ aLmA0Vri1AXq7CDQTr4zeLHiNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2gPmOV J+F0MX5/lIQ+xDd5jzQFMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkZjhsKLWIPkWMkCo1rVHgvd2K+xf2yPx4rlkQ1ViI+BugWuOY5Mwq wrNEdpOOMKub58c/ykTYOHTrJ3gdf1hs9I0xNfHr8sozTUQI+kRvLfO+oxkq2No2 ZkaopqG1J5llUQXff7loxLVOCR1UJoQqpYQbk20yzn3tnpneq9DoGIcVIgDUYA2Y 4upfZzKKag9WM5ocOh0oIUZmp88CIveDtiv/PFnzLNP8p0kKiCfu/nw3pyWrBjz6 d8HveDhVMU1v9xNaVfHk/lROYQD+yieE783Aup6ZtSpABt1H0d/SPQDUAovGNwO8 B9sDLSKmzj4R5y3bKIdj/DR5R04DephK -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:35 2025 by rpki-client