$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: eU7r/Yy7n24P7FSX3Qu4RA3XPiIo3EXPW+FxNjRjmcE= Subject key identifier: 94:EC:8B:48:F3:5E:EB:18:A5:D3:B7:E4:2E:2D:0B:22:E7:3E:85:7B Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0CDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0CD1 Signing time: Thu 24 Apr 2025 18:06:24 +0000 Manifest this update: Thu 24 Apr 2025 18:06:23 +0000 Manifest next update: Thu 01 May 2025 18:06:23 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: 78U3dQzD3y0D4R7quGGdPQr7qYIcTLyF3Z6Rt6aIjgo=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Apr 24 18:06:23 2025 GMT Not After : May 1 18:06:23 2025 GMT Subject: CN=680a7da0-5ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:79:d1:1b:3e:98:61:d2:82:4f:92:f8:1c: ed:2e:f1:75:ea:a8:8c:45:03:2d:f6:a0:cf:37:5b: aa:7a:0c:d0:3e:77:2b:23:15:30:b2:7c:31:06:3e: cd:00:e9:65:c4:53:53:e0:f9:af:06:7a:e7:31:3e: 77:d8:70:61:7b:13:33:d5:12:c2:5d:2b:20:22:dc: a7:40:f7:47:4e:c9:c3:c3:45:cb:62:6b:68:9c:24: 6e:dd:53:c0:7b:98:04:a3:20:0e:a3:41:4f:8d:51: bd:4b:c8:ac:9e:d4:82:7d:c0:f3:bf:08:e9:66:97: 92:d4:a6:79:b5:25:80:b5:14:32:49:5a:66:96:f5: 9f:a5:4d:0b:18:d9:0d:72:e7:24:db:c8:87:41:39: 5c:bf:72:24:00:c8:9c:d2:42:56:e1:c5:35:84:9d: 69:25:7c:65:67:3a:48:9c:00:e3:ba:20:23:06:86: b5:bf:e4:08:49:48:97:3a:0f:ec:1f:cb:ec:e0:d5: ba:7c:11:47:f0:37:12:8e:eb:8b:84:d1:ea:09:4f: 18:c1:33:fe:fd:bf:e2:32:9c:9a:34:0f:97:df:46: 6f:08:e8:f6:95:96:8d:da:12:ec:59:58:e7:83:98: b9:24:32:1d:b4:ee:97:2a:0a:9c:4b:17:c6:f5:7d: 6d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:EC:8B:48:F3:5E:EB:18:A5:D3:B7:E4:2E:2D:0B:22:E7:3E:85:7B X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:1f:00:cc:f8:d8:cc:68:3d:5f:19:24:ab:fe:7a:72:60:79: 8f:c5:42:be:7d:7e:ef:2f:0e:2b:a6:2f:fc:9e:a3:89:51:4e: 37:42:06:fb:15:dd:89:6f:dc:ac:66:a4:69:5b:b2:52:fa:5d: 9a:b9:f4:ec:b8:e6:fa:73:5e:3f:cd:af:37:70:f4:a1:fb:f5: 14:ba:98:d7:84:28:9b:1e:37:98:88:d7:f9:28:5b:49:04:9f: e6:53:d5:ea:19:bd:83:23:54:f5:e7:15:71:bf:36:b5:28:87: cc:78:66:75:fb:59:63:49:9b:65:89:32:a9:24:5b:77:e0:51: 62:8a:bd:e0:6b:b4:4a:05:68:d9:cc:c2:b9:01:bb:ac:25:82: 98:5c:5b:14:75:71:8c:e6:e1:a6:77:b8:59:b8:a3:6c:17:7f: 9f:5b:b6:99:e6:33:b7:7c:90:69:78:0a:a1:14:58:82:88:20: c2:53:bc:4c:5f:bc:06:d8:e4:69:b9:eb:2a:28:92:9f:35:86: 7c:cc:c1:d4:ef:4e:38:88:d5:3f:63:ef:5e:14:1f:d7:28:1d: 9c:1c:fd:96:3a:55:ab:30:a2:e0:2c:fa:d3:ed:38:a1:8b:b2: 2d:b3:d2:27:c4:8b:83:cf:d7:38:03:fb:1f:7f:c5:15:ee:68: ab:14:35:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUwNDI0MTgwNjIzWhcNMjUwNTAxMTgwNjIzWjAYMRYwFAYD VQQDEw02ODBhN2RhMC01YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+d50Rs+mGHSgk+S+BztLvF16qiMRQMt9qDPN1uqegzQPncrIxUwsnwxBj7N AOllxFNT4PmvBnrnMT532HBhexMz1RLCXSsgItynQPdHTsnDw0XLYmtonCRu3VPA e5gEoyAOo0FPjVG9S8isntSCfcDzvwjpZpeS1KZ5tSWAtRQySVpmlvWfpU0LGNkN cuck28iHQTlcv3IkAMic0kJW4cU1hJ1pJXxlZzpInADjuiAjBoa1v+QISUiXOg/s H8vs4NW6fBFH8DcSjuuLhNHqCU8YwTP+/b/iMpyaNA+X30ZvCOj2lZaN2hLsWVjn g5i5JDIdtO6XKgqcSxfG9X1tswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTsi0jz XusYpdO35C4tCyLnPoV7MB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVHwDM+NjMaD1fGSSr/npyYHmPxUK+fX7vLw4rpi/8nqOJUU43Qgb7 Fd2Jb9ysZqRpW7JS+l2aufTsuOb6c14/za83cPSh+/UUupjXhCibHjeYiNf5KFtJ BJ/mU9XqGb2DI1T15xVxvza1KIfMeGZ1+1ljSZtliTKpJFt34FFiir3ga7RKBWjZ zMK5AbusJYKYXFsUdXGM5uGmd7hZuKNsF3+fW7aZ5jO3fJBpeAqhFFiCiCDCU7xM X7wG2ORpuesqKJKfNYZ8zMHU7044iNU/Y+9eFB/XKB2cHP2WOlWrMKLgLPrT7Tih i7Its9InxIuDz9c4A/sff8UV7mirFDWn -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:39 2025 by rpki-client