$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft File: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft (raw, json) Hash identifier: loC4veCEahNbMU3x7iuAzIJSXSw9LMqIYuwkbM9bb+0= Subject key identifier: 7D:29:0D:99:40:49:5A:B3:92:53:C9:6C:45:9A:EF:42:70:66:6A:5E Authority key identifier: DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 Certificate issuer: /CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Certificate serial: 0813 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft Manifest number: 080B Signing time: Thu 24 Apr 2025 20:42:36 +0000 Manifest this update: Thu 24 Apr 2025 20:42:36 +0000 Manifest next update: Thu 01 May 2025 20:42:36 +0000 Files and hashes: 1: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl (hash: xKuvgf4lN7BkxsxM96P85PB/ZjMEuopJ0d7eZcxEZJI=) 2: CA42E5689FA411EBBC1FFB40C4F9AE02.roa (hash: gZyKCd69uOR05q6m/VeY/HmMPOj6FtQSF2UlUbB28zY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDFFB, serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Validity Not Before: Apr 24 20:42:36 2025 GMT Not After : May 1 20:42:36 2025 GMT Subject: CN=680aa23c-3a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a9:94:02:79:d1:54:b0:c3:96:7c:5d:31:0f: ec:8c:7e:92:24:b3:d7:60:7b:95:0f:d2:7e:11:94: f5:20:9c:00:20:90:04:64:c6:3a:76:2d:69:67:f9: 72:09:08:64:75:ed:e3:ee:23:21:50:c9:f2:8b:e9: 8a:a6:70:94:b4:80:51:1b:39:96:b1:63:25:7e:8a: 88:81:34:84:a2:51:a3:fb:6b:b3:df:c0:25:92:27: b6:3e:b5:c3:69:ff:ee:63:da:44:d9:71:cd:b4:bc: ce:4b:75:75:88:be:a8:d5:3e:b8:b1:46:64:8b:1e: 90:75:42:5a:93:55:0b:14:88:e2:18:a4:d3:d7:92: 25:b9:c8:61:a4:19:80:3d:ef:09:12:11:22:e8:44: 01:ba:09:f5:a4:a2:ee:b3:83:48:32:66:26:76:c2: 87:21:19:8d:53:36:d9:b1:20:ae:a3:d4:d3:92:ba: 2b:88:93:54:9d:49:c2:fb:ef:93:4d:f5:87:6a:1f: 64:09:c7:f8:01:50:10:f7:09:f5:e4:5a:a2:ab:ef: 3b:00:19:5b:a7:1f:ad:30:27:2e:84:7c:63:dd:00: e1:ab:d1:36:aa:5b:7c:b5:2d:41:1f:35:1e:7b:7f: 5b:57:97:ed:44:7a:bf:c0:a3:b6:93:2d:fa:26:fe: 8c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:29:0D:99:40:49:5A:B3:92:53:C9:6C:45:9A:EF:42:70:66:6A:5E X509v3 Authority Key Identifier: keyid:DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e3:e9:d9:1a:f9:7d:61:ae:c8:41:e9:76:72:40:45:cc:27: 3a:ca:90:ab:81:59:87:00:fe:9f:31:8e:32:72:d3:61:2c:da: 9e:4e:7e:8e:40:5f:dc:dc:c0:1f:5e:a7:5c:fa:80:b8:bb:00: 2d:37:0a:24:16:a3:bf:c1:5f:b1:78:2e:61:30:20:d1:de:c8: 71:ec:e5:f0:2f:8a:4d:fe:4d:10:4f:2e:72:7a:7c:d4:af:5b: ba:1e:b1:f8:ef:49:c7:46:4a:1f:43:cf:76:2c:6d:77:36:44: ba:85:42:92:2a:1c:4e:da:0b:d3:ee:3a:98:08:09:28:e9:a8: f9:d7:0e:08:8e:4d:19:06:04:39:db:e4:79:64:b8:81:04:2d: 7b:3d:ae:fc:b9:c3:10:dc:e8:09:b3:b3:05:51:f1:d4:9b:44: 04:e2:0f:7a:77:5d:ea:4e:5d:19:cb:b7:7b:43:e6:d5:77:62: 57:e4:35:8c:f9:74:50:dd:54:5c:ea:27:09:2a:e4:8c:1b:ec: e5:dd:a1:ff:07:17:d8:11:b2:fc:7c:3b:39:e4:b9:e9:47:3c: f3:d5:22:60:51:be:62:37:4a:cf:94:5b:f5:bd:a3:d1:fa:d3: 4f:aa:4a:61:9e:b4:a6:8a:85:28:35:ab:12:95:ec:e3:5f:a8: c7:ab:cd:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGRkIxMTAvBgNVBAUTKERFQjU2MzlGNTg0N0M3MERFMEZDNDRCRTc4NDI0MTE4 RjhBMjA2QzYwHhcNMjUwNDI0MjA0MjM2WhcNMjUwNTAxMjA0MjM2WjAYMRYwFAYD VQQDEw02ODBhYTIzYy0zYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqmUAnnRVLDDlnxdMQ/sjH6SJLPXYHuVD9J+EZT1IJwAIJAEZMY6di1pZ/ly CQhkde3j7iMhUMnyi+mKpnCUtIBRGzmWsWMlfoqIgTSEolGj+2uz38Alkie2PrXD af/uY9pE2XHNtLzOS3V1iL6o1T64sUZkix6QdUJak1ULFIjiGKTT15IluchhpBmA Pe8JEhEi6EQBugn1pKLus4NIMmYmdsKHIRmNUzbZsSCuo9TTkroriJNUnUnC+++T TfWHah9kCcf4AVAQ9wn15Fqiq+87ABlbpx+tMCcuhHxj3QDhq9E2qlt8tS1BHzUe e39bV5ftRHq/wKO2ky36Jv6MRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0pDZlA SVqzklPJbEWa70JwZmpeMB8GA1UdIwQYMBaAFN61Y59YR8cN4PxEvnhCQRj4ogbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREZGQi8yN0U1MDZFNkQ0 RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3M2dfRVMtZUVKQkdQaWlC c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyVmpuMWhIeHczZ19FUy1lRUpCR1BpaUJzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REZGQi8yN0U1MDZFNkQ0RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3 M2dfRVMtZUVKQkdQaWlCc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz4+nZGvl9Ya7IQel2ckBFzCc6ypCrgVmHAP6fMY4yctNhLNqeTn6O QF/c3MAfXqdc+oC4uwAtNwokFqO/wV+xeC5hMCDR3shx7OXwL4pN/k0QTy5yenzU r1u6HrH470nHRkofQ892LG13NkS6hUKSKhxO2gvT7jqYCAko6aj51w4Ijk0ZBgQ5 2+R5ZLiBBC17Pa78ucMQ3OgJs7MFUfHUm0QE4g96d13qTl0Zy7d7Q+bVd2JX5DWM +XRQ3VRc6icJKuSMG+zl3aH/BxfYEbL8fDs55LnpRzzz1SJgUb5iN0rPlFv1vaPR +tNPqkphnrSmioUoNasSlezjX6jHq81I -----END CERTIFICATE-----Generated at Sat Apr 26 12:26:27 2025 by rpki-client