$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: 4yz2xKaqeV/AVHxDEttcu1i6BVgtdKeUtS2alN8Tg2c= Subject key identifier: 44:FF:9D:68:1E:9E:25:45:DA:A3:82:7F:34:1F:0F:74:7C:F1:07:F5 Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 01FB Signing time: Fri 25 Apr 2025 01:49:21 +0000 Manifest this update: Fri 25 Apr 2025 01:49:21 +0000 Manifest next update: Fri 02 May 2025 01:49:21 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: H3kh/WQMPRUx6C1Rkoje57nTcd28kYi01WvcXO7x8Ik=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: XDsE6Ddixa5A+mdde/4fTJzczS6XmbdyS2Na1+31tR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Apr 25 01:49:21 2025 GMT Not After : May 2 01:49:21 2025 GMT Subject: CN=680aea21-4866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4a:5a:5e:ed:f8:2a:c3:a0:36:d6:17:2a:31: 59:6a:10:9f:96:6e:d6:0a:76:83:cd:1d:d2:16:29: 8b:94:8d:40:f9:f0:28:c2:ee:7f:a1:cb:6e:f1:22: e5:ef:23:38:d3:fa:52:42:3e:ca:34:8f:0a:f7:81: 0f:e6:3f:5c:ae:72:bb:7d:f0:6d:fb:66:9c:bb:89: 57:03:2e:9e:9c:d5:8e:71:70:7c:36:be:e3:3e:b1: b5:b9:40:56:8c:60:6e:a0:32:80:7a:37:b4:6c:32: 60:ec:51:32:03:d8:93:07:de:3c:f6:62:f5:8f:4f: 27:2d:eb:52:85:6b:a7:a5:7b:2a:e7:ce:a3:81:2a: 32:52:c5:bc:50:37:3a:3d:d7:aa:e5:58:15:cf:4e: 97:5e:59:3b:05:3e:06:7f:5f:9e:ec:6c:10:e9:ad: d1:35:66:51:8a:a4:08:16:20:59:81:08:0e:84:13: 6b:9f:ff:cd:89:b8:f3:18:c4:b4:9d:f2:6d:d3:95: 67:0d:52:cf:ba:d6:9e:45:67:8f:38:4f:c7:c9:30: 0f:0f:0a:35:5f:69:08:d2:2c:a4:66:68:4d:cc:9c: 1d:5a:2e:8a:a3:74:dd:4a:58:e1:c8:7c:2d:07:b7: cb:11:61:d0:be:ba:93:43:66:ef:7b:06:8b:ee:71: 24:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FF:9D:68:1E:9E:25:45:DA:A3:82:7F:34:1F:0F:74:7C:F1:07:F5 X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:66:13:76:0c:c4:7e:51:fe:a2:21:a8:90:15:27:a1:18:5c: e9:45:78:cf:d7:8f:ce:65:74:84:96:8d:1e:c7:b5:06:1a:e2: 3a:dd:62:25:5e:15:a4:c0:90:c3:0a:27:5d:a6:83:b7:ab:c0: 1b:a7:f5:d1:cc:4d:c6:03:e7:ee:72:1b:fb:1d:0a:13:d6:22: fe:94:75:60:65:c4:0b:f5:9f:d0:40:69:ab:f9:4c:c0:a7:20: 75:22:1b:58:de:d5:8d:62:b2:d8:57:3d:49:c4:5b:6c:9d:78: 69:dd:22:f5:cd:d4:5f:7e:c3:28:39:fa:7f:5f:24:3d:67:4a: b4:ba:c6:0e:d2:09:13:52:67:d0:14:e3:5d:8d:3a:93:50:e3: 33:66:fd:e5:a9:c0:d0:b9:8b:f0:a2:15:6b:ef:1d:92:74:da: 5e:f1:b0:75:9c:ed:a6:26:0b:a5:1f:3c:4c:7c:84:71:bd:30: 2a:96:8f:23:c6:ec:48:2d:4f:16:11:bc:1a:f4:ed:69:c6:69: 65:9a:0d:b2:fe:92:3f:c6:e5:cf:62:6a:34:a9:1d:22:c7:ba: 1b:26:22:3b:1e:cf:4a:d2:b2:36:11:c2:c5:00:e2:88:c8:53: 35:fb:e2:f0:36:73:0f:80:77:f4:cf:0b:fb:95:b1:c5:98:b5: ea:58:f0:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjUwNDI1MDE0OTIxWhcNMjUwNTAyMDE0OTIxWjAYMRYwFAYD VQQDEw02ODBhZWEyMS00ODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEpaXu34KsOgNtYXKjFZahCflm7WCnaDzR3SFimLlI1A+fAowu5/octu8SLl 7yM40/pSQj7KNI8K94EP5j9crnK7ffBt+2acu4lXAy6enNWOcXB8Nr7jPrG1uUBW jGBuoDKAeje0bDJg7FEyA9iTB9489mL1j08nLetShWunpXsq586jgSoyUsW8UDc6 Pdeq5VgVz06XXlk7BT4Gf1+e7GwQ6a3RNWZRiqQIFiBZgQgOhBNrn//NibjzGMS0 nfJt05VnDVLPutaeRWePOE/HyTAPDwo1X2kI0iykZmhNzJwdWi6Ko3TdSljhyHwt B7fLEWHQvrqTQ2bvewaL7nEkawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET/nWge niVF2qOCfzQfD3R88Qf1MB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVZhN2DMR+Uf6iIaiQFSehGFzpRXjP14/OZXSElo0ex7UGGuI63WIl XhWkwJDDCiddpoO3q8Abp/XRzE3GA+fuchv7HQoT1iL+lHVgZcQL9Z/QQGmr+UzA pyB1IhtY3tWNYrLYVz1JxFtsnXhp3SL1zdRffsMoOfp/XyQ9Z0q0usYO0gkTUmfQ FONdjTqTUOMzZv3lqcDQuYvwohVr7x2SdNpe8bB1nO2mJgulHzxMfIRxvTAqlo8j xuxILU8WEbwa9O1pxmllmg2y/pI/xuXPYmo0qR0ix7obJiI7Hs9K0rI2EcLFAOKI yFM1++LwNnMPgHf0zwv7lbHFmLXqWPCK -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:06 2025 by rpki-client