$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: HAmCSOtqrXh+h4FmnCpzNwC6fg8nR3iWc941qb0CAtg= Subject key identifier: 16:AA:02:3D:D5:5D:2F:72:01:C1:46:9D:53:8A:82:7A:7F:A8:1C:A9 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0324 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 031E Signing time: Fri 25 Apr 2025 00:55:01 +0000 Manifest this update: Fri 25 Apr 2025 00:55:01 +0000 Manifest next update: Fri 02 May 2025 00:55:01 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: rWiFLWlB7vdj1BaSk3IvdbdmaAvTYjPCkTTcaiUL09k=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: YDV59vkDGMUjv69JwCXS0TevAXxNgXIE57WFOFZhJBo=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: bm0eX3arzl/Vd2cVSRTEVj0uPXCCRL3I0GcsJSw9xWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 804 (0x324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Apr 25 00:55:01 2025 GMT Not After : May 2 00:55:01 2025 GMT Subject: CN=680add65-28a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:67:10:c3:a2:c4:b4:2b:5a:6c:14:d9:b1: df:ab:6c:b7:c7:02:ff:88:56:46:5e:c7:aa:37:bf: 2b:bc:ac:80:0f:39:6c:06:85:1f:67:1b:00:62:06: c1:3e:1a:50:8e:3b:a1:a0:a0:9b:2f:42:98:b8:2a: 90:d1:ce:a1:27:82:6b:a6:1b:18:5d:4c:73:08:9d: ee:65:2a:cd:2f:b4:4d:a0:57:fb:29:63:b9:80:40: 20:51:4c:98:7a:28:f4:82:78:79:13:43:48:8b:51: a7:24:48:88:30:8c:9f:15:d5:b6:d9:5f:1e:b3:17: f3:54:b2:4c:0d:9d:42:38:e3:77:b8:56:f8:f9:f7: 6e:57:1b:53:85:a9:c2:14:8c:0e:a9:a0:8d:1a:70: 6f:ac:06:44:af:ec:8b:f3:a7:4c:4e:26:b7:8b:7f: 5c:dd:9c:47:57:04:cd:71:b8:6f:37:fe:3c:0e:73: 02:17:79:73:34:f9:a2:b6:ca:02:04:da:61:34:c9: f7:58:8a:f7:fd:72:c6:6a:f2:22:68:ac:8b:f1:59: 6c:9e:e0:7c:00:0c:ee:15:c9:e4:ab:f5:e7:7a:06: 37:7b:78:1a:37:eb:21:92:53:92:62:6d:fb:54:84: 31:cf:29:ac:86:06:da:bd:4d:f9:60:30:dc:11:90: ed:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:AA:02:3D:D5:5D:2F:72:01:C1:46:9D:53:8A:82:7A:7F:A8:1C:A9 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6e:9a:6d:b8:a3:96:46:1f:89:b5:64:db:4c:be:ac:4f:4c: 8c:5f:35:b4:6b:ae:ea:7e:84:8f:91:65:89:06:87:61:47:9e: ba:27:18:6a:c2:5e:1c:5e:04:4d:f4:1c:7d:b8:3c:45:9e:16: e2:81:8c:b1:d0:23:95:e6:2d:3c:e1:c6:e6:24:1a:59:db:18: ca:0d:4e:58:6e:a4:65:9c:42:a5:5f:0b:4c:0e:66:45:b3:e2: eb:89:94:b7:0b:75:fa:15:0a:e9:af:49:dd:3f:74:fc:10:1f: 43:17:d2:01:ce:7b:9d:0a:9d:ff:81:79:09:95:f4:b0:ab:24: 54:06:21:53:2d:26:12:2b:4a:d6:8a:59:cd:db:c7:ca:0a:91: c7:e8:02:75:56:9a:7c:91:cc:94:c0:40:7c:9a:41:4c:e7:47: 0d:2d:87:81:78:6d:0a:9e:e4:7c:7d:14:c2:88:6d:8e:f1:6b: 65:f3:56:f9:de:8b:5e:b1:81:fc:44:e2:9c:c0:c3:63:6e:88: 9b:63:c1:cf:cf:fa:b0:dc:11:1b:d5:bd:0d:ea:ad:9f:10:e3: 46:68:9a:34:02:6d:6d:73:94:b3:30:fc:d4:3b:8a:d3:34:f9: e5:f6:02:0f:55:f8:01:1b:7f:35:d8:f7:b2:04:95:fa:5c:3b: 00:b2:4c:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUwNDI1MDA1NTAxWhcNMjUwNTAyMDA1NTAxWjAYMRYwFAYD VQQDEw02ODBhZGQ2NS0yOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUJnEMOixLQrWmwU2bHfq2y3xwL/iFZGXseqN78rvKyADzlsBoUfZxsAYgbB PhpQjjuhoKCbL0KYuCqQ0c6hJ4JrphsYXUxzCJ3uZSrNL7RNoFf7KWO5gEAgUUyY eij0gnh5E0NIi1GnJEiIMIyfFdW22V8esxfzVLJMDZ1COON3uFb4+fduVxtThanC FIwOqaCNGnBvrAZEr+yL86dMTia3i39c3ZxHVwTNcbhvN/48DnMCF3lzNPmitsoC BNphNMn3WIr3/XLGavIiaKyL8VlsnuB8AAzuFcnkq/XnegY3e3gaN+shklOSYm37 VIQxzymshgbavU35YDDcEZDtsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaqAj3V XS9yAcFGnVOKgnp/qBypMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdbpptuKOWRh+JtWTbTL6sT0yMXzW0a67qfoSPkWWJBodhR566Jxhq wl4cXgRN9Bx9uDxFnhbigYyx0COV5i084cbmJBpZ2xjKDU5YbqRlnEKlXwtMDmZF s+LriZS3C3X6FQrpr0ndP3T8EB9DF9IBznudCp3/gXkJlfSwqyRUBiFTLSYSK0rW ilnN28fKCpHH6AJ1Vpp8kcyUwEB8mkFM50cNLYeBeG0KnuR8fRTCiG2O8Wtl81b5 3otesYH8ROKcwMNjboibY8HPz/qw3BEb1b0N6q2fEONGaJo0Am1tc5SzMPzUO4rT NPnl9gIPVfgBG3812PeyBJX6XDsAskye -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:10 2025 by rpki-client