$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: XToQFRo98GDiLI5yI62ij2hOcaJQQ7rLHseWWYIkCk4= Subject key identifier: B1:4B:AE:FF:EE:7F:16:81:81:07:DF:F1:71:C6:A9:3B:8E:B3:CE:98 Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 063E Signing time: Sat 26 Apr 2025 14:48:08 +0000 Manifest this update: Sat 26 Apr 2025 14:48:07 +0000 Manifest next update: Sat 03 May 2025 14:48:07 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: BHyFjIj7jRQg6tlWRrOWmD9XoixHzWK/3oxkP3dkTls=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Apr 26 14:48:07 2025 GMT Not After : May 3 14:48:07 2025 GMT Subject: CN=680cf228-a547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bb:38:5d:e2:78:80:d5:4d:63:31:55:ac:48: 8c:af:80:d9:a1:3b:ae:2e:1b:39:73:96:c6:a3:8d: 29:ba:56:0d:6b:df:98:ad:84:d1:8d:52:5b:07:e5: 72:44:c4:85:9f:03:c5:1e:52:c1:a9:56:84:40:af: 5b:c7:f9:de:ec:71:2d:a1:e4:61:5f:3b:bd:cf:f9: e8:8a:7e:22:0f:cd:b0:0a:e7:06:1d:59:30:d5:6d: 21:73:7e:bf:c9:2a:74:26:9b:84:c8:c3:b5:f9:b2: 2b:0a:5f:e8:2f:6b:54:a7:42:00:96:44:21:75:ca: e6:57:a3:e8:bf:b7:f4:7a:04:e0:03:ba:14:1a:0e: 06:c1:8e:5c:ae:77:6a:52:87:1a:93:0f:02:8a:a1: d1:8a:76:2b:f1:57:db:47:33:9e:0d:77:1a:ef:b9: ee:e2:ba:8f:17:cc:35:d3:f7:c9:1b:df:ca:21:7d: 46:33:6f:68:cb:65:c3:cb:1a:48:61:a7:57:f7:c7: f1:1d:01:6c:be:95:c0:18:ae:fb:dc:de:f4:ac:e1: e9:66:6c:12:33:8b:19:ad:07:25:f9:4e:9b:f0:de: 3a:f6:0a:ab:8e:17:65:39:ed:7a:bc:a3:f8:f5:7d: 9a:77:26:a2:84:e0:c9:cf:90:16:da:7f:48:45:a1: 80:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4B:AE:FF:EE:7F:16:81:81:07:DF:F1:71:C6:A9:3B:8E:B3:CE:98 X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:29:59:e5:85:7d:03:5c:b0:1f:de:19:c5:ca:fa:1f:9c:74: a7:cf:99:5e:ad:21:b6:e0:59:f6:8a:44:be:cd:54:df:b3:af: 22:30:5c:75:06:d8:93:6f:31:0d:f4:6d:88:ac:6f:31:be:f0: 2f:d5:80:46:82:14:5a:90:c8:bd:54:b5:f5:f2:04:4d:fb:82: b9:99:69:7f:71:e5:9e:20:71:ad:1a:4b:95:c1:62:de:90:aa: 13:15:b5:a6:b4:08:fe:d5:ac:eb:25:aa:db:36:70:3c:60:24: 9e:02:6e:00:e1:a4:30:bc:2b:90:74:ec:56:45:c0:c0:b2:56: 83:52:b8:4d:9e:35:d2:ec:85:92:df:1a:7d:f4:4e:5b:15:58: 9d:fd:d5:14:52:6b:1f:26:f5:9b:e6:72:46:94:81:c4:b4:9a: 9f:97:38:f1:a3:81:b6:5c:7e:11:3a:a9:74:6c:1a:de:7a:09: fb:10:5f:17:66:48:6b:8c:f1:04:6d:73:46:8d:87:64:ea:9d: 83:d3:09:b4:72:bd:b2:99:ac:42:9b:d6:eb:40:92:ad:e3:36: 14:66:35:a8:e7:d3:57:d0:cc:17:fe:a2:b1:58:86:a7:e3:22: 7f:aa:a5:75:8e:3b:d4:3c:dc:4e:f8:e7:22:58:ae:ee:3f:c1: 04:52:ad:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwNDI2MTQ0ODA3WhcNMjUwNTAzMTQ0ODA3WjAYMRYwFAYD VQQDEw02ODBjZjIyOC1hNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ls4XeJ4gNVNYzFVrEiMr4DZoTuuLhs5c5bGo40pulYNa9+YrYTRjVJbB+Vy RMSFnwPFHlLBqVaEQK9bx/ne7HEtoeRhXzu9z/noin4iD82wCucGHVkw1W0hc36/ ySp0JpuEyMO1+bIrCl/oL2tUp0IAlkQhdcrmV6Pov7f0egTgA7oUGg4GwY5crndq Uocakw8CiqHRinYr8VfbRzOeDXca77nu4rqPF8w10/fJG9/KIX1GM29oy2XDyxpI YadX98fxHQFsvpXAGK773N70rOHpZmwSM4sZrQcl+U6b8N469gqrjhdlOe16vKP4 9X2adyaihODJz5AW2n9IRaGAewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFLrv/u fxaBgQff8XHGqTuOs86YMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPKVnlhX0DXLAf3hnFyvofnHSnz5lerSG24Fn2ikS+zVTfs68iMFx1 BtiTbzEN9G2IrG8xvvAv1YBGghRakMi9VLX18gRN+4K5mWl/ceWeIHGtGkuVwWLe kKoTFbWmtAj+1azrJarbNnA8YCSeAm4A4aQwvCuQdOxWRcDAslaDUrhNnjXS7IWS 3xp99E5bFVid/dUUUmsfJvWb5nJGlIHEtJqflzjxo4G2XH4ROql0bBreegn7EF8X ZkhrjPEEbXNGjYdk6p2D0wm0cr2ymaxCm9brQJKt4zYUZjWo59NX0MwX/qKxWIan 4yJ/qqV1jjvUPNxO+OciWK7uP8EEUq0p -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:41 2025 by rpki-client