$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft File: MAKFsSjLjblfHkH_vS68Io1FPvw.mft (raw, json) Hash identifier: IFwLDdrJNDXL1H98ENCdbpQYsXUXxP/48/DpUsDsMWM= Subject key identifier: A0:90:D3:A3:2D:1A:2A:9A:AC:B9:4E:DC:B9:80:D7:14:66:69:41:8E Authority key identifier: 30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC Certificate issuer: /CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Certificate serial: 0451 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft Manifest number: 0451 Signing time: Thu 24 Apr 2025 23:59:00 +0000 Manifest this update: Thu 24 Apr 2025 23:58:59 +0000 Manifest next update: Thu 01 May 2025 23:58:59 +0000 Files and hashes: 1: MAKFsSjLjblfHkH_vS68Io1FPvw.crl (hash: XNmqTj46KZbLiIgFSSK1+6BwewUDiDuWU1T4p/s5AMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Validity Not Before: Apr 24 23:58:59 2025 GMT Not After : May 1 23:58:59 2025 GMT Subject: CN=680ad043-277e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:a5:38:8f:54:ac:b5:46:89:fc:d9:46:7f: 9b:c2:ee:21:c8:d5:75:ce:1f:3f:6d:33:66:86:58: 03:ea:d9:0e:7d:e5:2a:2d:de:07:f0:dd:7c:90:5c: e8:f2:48:51:d5:17:1d:c4:57:0a:f3:ff:87:e6:17: de:d0:f6:95:11:24:dd:ab:cf:aa:80:d2:65:20:11: bf:89:fd:d4:f5:15:dc:23:11:92:67:18:e1:6f:7a: b5:0f:59:cb:47:32:46:b8:ae:62:32:c0:60:c0:1a: d2:47:3e:65:db:f2:20:9f:11:03:36:e9:4c:b0:f9: c6:d9:c9:eb:4f:cb:07:5b:d2:80:5f:3e:7b:96:c9: bf:aa:18:3d:1a:2a:af:81:1a:46:b3:22:e1:80:6b: e0:82:8d:71:a3:42:b3:a3:88:1d:c5:de:71:ea:50: 4e:3e:51:d6:04:c9:8a:e1:4d:d8:aa:f0:5f:2d:ae: e2:c6:fc:18:6b:5c:be:78:ea:50:64:45:39:1e:c7: 89:5e:29:a5:28:b6:3a:48:db:9e:47:f0:dd:35:a2: c7:5a:88:a1:ed:dd:5a:a9:bd:69:94:95:74:5a:19: f8:6a:68:62:92:e2:e3:b8:8c:90:e4:dd:ec:27:38: 98:32:5e:20:29:04:7e:78:a9:9c:49:96:39:37:78: 7c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:90:D3:A3:2D:1A:2A:9A:AC:B9:4E:DC:B9:80:D7:14:66:69:41:8E X509v3 Authority Key Identifier: keyid:30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:f8:72:7b:0f:78:92:8f:5f:bd:0d:a6:85:b9:bd:39:d2:a8: 2d:95:c7:06:35:32:d1:24:b1:27:4f:5c:81:be:42:37:fc:8b: 18:69:23:d2:95:8f:c4:65:9d:33:f1:04:c7:82:da:15:a7:f4: 1b:31:a0:27:35:d4:e5:c0:15:fa:9b:88:66:9c:39:1a:e8:44: 3e:b8:2b:d0:c8:fb:59:79:7a:ed:fe:89:39:ea:3a:e6:ce:4e: 28:0a:48:56:d1:87:c0:02:f4:37:ab:26:c1:4b:d3:4d:3d:85: bf:17:89:ee:bc:11:65:81:57:f9:e6:ba:5c:93:8c:43:ee:36: 4d:bc:33:38:f0:22:9f:7f:6e:6c:24:b0:8b:44:cf:50:9c:d3: 97:43:be:f8:4a:0a:a4:56:38:77:4c:c1:90:c4:4e:3f:3b:e4: 44:37:73:ca:22:7d:1d:c2:21:0d:4b:72:1f:15:9f:c7:28:c5: 3a:b6:b9:27:64:84:b3:0f:2d:8c:68:2d:55:4a:2f:2e:1d:01: 8a:da:c8:87:f6:a3:a8:64:21:0a:73:46:3d:32:34:0d:6c:53: 5f:3d:3b:d3:d3:b2:b4:55:11:d3:2f:ea:9f:fd:d0:f3:13:ce: a3:fe:c7:b8:f8:7c:b7:c6:6a:76:79:a5:aa:cb:49:17:90:46: 81:31:48:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDMwMDI4NUIxMjhDQjhEQjk1RjFFNDFGRkJEMkVCQzIy OEQ0NTNFRkMwHhcNMjUwNDI0MjM1ODU5WhcNMjUwNTAxMjM1ODU5WjAYMRYwFAYD VQQDEw02ODBhZDA0My0yNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXqlOI9UrLVGifzZRn+bwu4hyNV1zh8/bTNmhlgD6tkOfeUqLd4H8N18kFzo 8khR1RcdxFcK8/+H5hfe0PaVESTdq8+qgNJlIBG/if3U9RXcIxGSZxjhb3q1D1nL RzJGuK5iMsBgwBrSRz5l2/IgnxEDNulMsPnG2cnrT8sHW9KAXz57lsm/qhg9Giqv gRpGsyLhgGvggo1xo0Kzo4gdxd5x6lBOPlHWBMmK4U3YqvBfLa7ixvwYa1y+eOpQ ZEU5HseJXimlKLY6SNueR/DdNaLHWoih7d1aqb1plJV0Whn4amhikuLjuIyQ5N3s JziYMl4gKQR+eKmcSZY5N3h8gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCQ06Mt GiqarLlO3LmA1xRmaUGOMB8GA1UdIwQYMBaAFDAChbEoy425Xx5B/70uvCKNRT78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ENDRFMzZEMDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpibGZIa0hfdlM2OElvMUZQ dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BS0ZzU2pMamJsZkhrSF92UzY4SW8xRlB2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDM5RC9ENDRFMzZEMDRFNzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpi bGZIa0hfdlM2OElvMUZQdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl+HJ7D3iSj1+9DaaFub050qgtlccGNTLRJLEnT1yBvkI3/IsYaSPS lY/EZZ0z8QTHgtoVp/QbMaAnNdTlwBX6m4hmnDka6EQ+uCvQyPtZeXrt/ok56jrm zk4oCkhW0YfAAvQ3qybBS9NNPYW/F4nuvBFlgVf55rpck4xD7jZNvDM48CKff25s JLCLRM9QnNOXQ774SgqkVjh3TMGQxE4/O+REN3PKIn0dwiENS3IfFZ/HKMU6trkn ZISzDy2MaC1VSi8uHQGK2siH9qOoZCEKc0Y9MjQNbFNfPTvT07K0VRHTL+qf/dDz E86j/se4+Hy3xmp2eaWqy0kXkEaBMUii -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:08 2025 by rpki-client