$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: VSS+ffq/uP/23O0y+w+E72Ho/2MK3CJie/mNXeqfkls= Subject key identifier: 48:34:3A:90:1C:8F:58:56:F5:0F:22:EF:D3:F8:15:25:EC:E6:A1:69 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 68 Signing time: Fri 25 Apr 2025 05:55:54 +0000 Manifest this update: Fri 25 Apr 2025 05:55:53 +0000 Manifest next update: Fri 02 May 2025 05:55:53 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: 6NDSEazKAFk/rBRDgCFDbIsgTM2gCz9MPkMs1QLA9vM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Apr 25 05:55:53 2025 GMT Not After : May 2 05:55:53 2025 GMT Subject: CN=680b23ea-9101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fb:e8:15:7a:74:72:0a:d3:8a:61:2b:c4:b4: b9:09:7b:75:e7:9f:a1:20:0c:ab:54:d8:62:3f:85: 3d:93:53:cd:a0:3d:6c:03:de:4c:c5:68:7d:3c:59: 0a:c0:27:bf:9f:b5:d6:c3:a4:76:0f:5b:ad:8f:57: ab:83:30:6e:b9:41:4f:5f:fb:68:35:00:f2:a5:e6: fb:68:82:b0:7a:f9:88:3d:eb:03:de:d0:fa:36:d3: 8f:af:9c:99:c1:f3:ac:a0:57:bb:89:a4:87:73:7f: 3e:64:73:ab:41:52:45:75:4a:6d:e6:1f:d1:d6:f7: a0:31:d9:65:96:c5:b4:41:b4:77:fb:e8:ce:51:9a: 3c:ce:70:23:83:4c:47:d5:33:18:da:5c:16:64:ed: 40:56:77:0d:10:b9:b4:33:87:ea:21:8a:f9:db:b6: 76:ac:b5:a7:09:fe:a1:34:0f:07:47:cb:1e:f9:02: bb:69:9e:57:bf:65:1f:54:79:5d:5c:93:96:05:1b: e3:61:6b:43:7d:37:ff:0b:18:0c:b4:2a:90:15:88: ff:56:91:94:73:62:dd:f1:cb:70:fe:db:cc:5c:b9: 5b:40:8b:f5:b3:ba:c9:b6:9d:62:3e:4f:02:2e:cf: 46:a6:d5:18:52:32:e9:24:3c:f6:a3:de:24:90:85: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:34:3A:90:1C:8F:58:56:F5:0F:22:EF:D3:F8:15:25:EC:E6:A1:69 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:a2:c9:fd:50:6e:74:03:8c:0a:0f:31:71:93:7f:7e:0d:c2: 19:67:98:63:2b:87:83:09:b6:18:3b:96:01:8b:03:61:07:13: 00:c4:c7:b9:65:ef:5c:8b:d5:96:4a:eb:44:ec:ba:63:47:d9: d5:e7:90:8a:cc:ec:f3:5c:2a:44:c9:97:6b:34:a2:75:07:fb: 86:ea:af:5a:14:c1:f7:64:bc:16:0c:a8:e4:0a:a0:76:9d:bc: 84:ad:23:9a:47:e2:2d:0d:b4:06:0e:6b:08:51:2b:bd:a1:4c: 9d:3a:5c:b1:a2:54:12:6b:c0:e7:43:ce:70:e9:be:7f:db:54: 59:66:70:c6:d8:29:78:3b:16:e5:ef:39:6d:74:93:c2:d7:4e: b0:0d:1a:40:5c:9f:80:df:fb:49:90:21:fa:34:67:07:c5:41: 7d:e7:3f:13:0c:a6:27:bd:a0:c2:6b:00:c7:4b:9e:16:58:ce: 12:c1:2e:65:b1:e5:be:a8:00:b6:47:58:3d:e4:9e:19:e8:fc: b4:60:d2:a2:9e:52:41:dc:ad:58:90:0b:54:4b:ce:06:03:3e: 87:0c:0e:cc:ee:4c:12:99:0f:c7:aa:3b:d2:f4:82:9c:27:e4: 63:1b:f7:37:51:00:63:0d:6f:f0:9c:5a:21:d7:60:86:a8:f8: 65:e6:28:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoNjhCMzIzREE4NEUxMjA1NDY2Q0VCNUFGRDdENjA3NzI2 NzVCMDUzMTAeFw0yNTA0MjUwNTU1NTNaFw0yNTA1MDIwNTU1NTNaMBgxFjAUBgNV BAMTDTY4MGIyM2VhLTkxMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl++gVenRyCtOKYSvEtLkJe3Xnn6EgDKtU2GI/hT2TU82gPWwD3kzFaH08WQrA J7+ftdbDpHYPW62PV6uDMG65QU9f+2g1APKl5vtogrB6+Yg96wPe0Po204+vnJnB 86ygV7uJpIdzfz5kc6tBUkV1Sm3mH9HW96Ax2WWWxbRBtHf76M5RmjzOcCODTEfV MxjaXBZk7UBWdw0QubQzh+ohivnbtnastacJ/qE0DwdHyx75Artpnle/ZR9UeV1c k5YFG+Nha0N9N/8LGAy0KpAViP9WkZRzYt3xy3D+28xcuVtAi/Wzusm2nWI+TwIu z0am1RhSMukkPPaj3iSQhThzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSDQ6kByP WFb1DyLv0/gVJezmoWkwHwYDVR0jBBgwFoAUaLMj2oThIFRmzrWv19YHcmdbBTEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzc0MUExRTJDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUxNajJvVGhJRlJtenJXdjE5WUhjbWRiQlRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE NDBCLzc0MUExRTJDODU1QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZS bXpyV3YxOVlIY21kYkJURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHGiyf1QbnQDjAoPMXGTf34NwhlnmGMrh4MJthg7lgGLA2EHEwDEx7ll 71yL1ZZK60TsumNH2dXnkIrM7PNcKkTJl2s0onUH+4bqr1oUwfdkvBYMqOQKoHad vIStI5pH4i0NtAYOawhRK72hTJ06XLGiVBJrwOdDznDpvn/bVFlmcMbYKXg7FuXv OW10k8LXTrANGkBcn4Df+0mQIfo0ZwfFQX3nPxMMpie9oMJrAMdLnhZYzhLBLmWx 5b6oALZHWD3knhno/LRg0qKeUkHcrViQC1RLzgYDPocMDszuTBKZD8eqO9L0gpwn 5GMb9zdRAGMNb/CcWiHXYIao+GXmKG8= -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:30 2025 by rpki-client