$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft File: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft (raw, json) Hash identifier: qVYB56cDqnTOxRVnpcpMj2dPFfs8mrfplz3rG6v8ni8= Subject key identifier: 40:6F:3D:2E:BA:A9:C2:6C:5C:64:37:A3:DE:DF:A6:7C:00:16:5B:77 Authority key identifier: 11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 Certificate issuer: /CN=A91CE814/serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft Manifest number: 8F Signing time: Fri 25 Apr 2025 05:28:23 +0000 Manifest this update: Fri 25 Apr 2025 05:28:23 +0000 Manifest next update: Fri 02 May 2025 05:28:23 +0000 Files and hashes: 1: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl (hash: 7HBzRLkrCIvFAq+scigCWGY5JYP+GZjvpDXHor/Zfx8=) 2: CA8007604A3011EFB101441AC4F9AE02.roa (hash: tG+xEb4Bj22fmRv5Ap5El7N6H/BamXJAvudixhV4S5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE814, serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Validity Not Before: Apr 25 05:28:23 2025 GMT Not After : May 2 05:28:23 2025 GMT Subject: CN=680b1d77-b4b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:de:b3:db:78:8a:4d:76:ea:c7:c0:f9:d9:4e: 6f:db:d4:86:71:52:f9:d4:d3:79:28:6d:88:9f:a7: d9:f4:fc:9b:4e:de:11:20:46:2d:93:e9:e9:b6:6c: 7a:48:4f:05:f9:49:2c:13:4a:c3:60:0f:d8:53:60: 3a:25:24:37:6d:af:81:a6:ea:41:f8:58:95:4a:59: 6d:89:00:ef:8a:91:db:84:fc:98:7e:8f:dd:fe:af: 2c:21:7d:5a:81:49:2a:bc:4e:52:32:1b:9a:55:6a: 62:12:e4:2f:16:01:ff:6b:e7:cf:41:60:ed:3b:81: 68:62:46:2e:65:19:42:2e:8e:7b:9d:6f:72:71:82: 00:f4:06:ee:6f:e1:e4:50:a9:6f:79:80:47:ab:83: 7e:7a:47:de:51:4c:b5:ef:56:eb:ee:b0:bd:f0:0e: ff:ac:bb:4f:39:b7:37:9a:b8:6e:ca:30:e0:e7:1c: 74:15:cf:8d:d9:4b:f7:66:52:b0:50:3a:54:51:16: 96:49:19:c7:ab:af:4c:9d:81:51:46:0f:c1:90:f6: 7b:b0:1c:0b:cd:ad:12:7f:e2:c3:53:38:b4:c5:3d: 36:b6:e3:13:bd:45:05:52:ae:7c:41:07:22:52:b4: 16:4a:d0:8c:c4:09:b0:41:a6:85:3b:10:a1:86:c7: e0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6F:3D:2E:BA:A9:C2:6C:5C:64:37:A3:DE:DF:A6:7C:00:16:5B:77 X509v3 Authority Key Identifier: keyid:11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:e1:1e:6d:76:51:e0:9f:be:e5:7e:34:87:d4:d1:67:7a:12: 54:b8:48:97:13:28:25:96:d1:7f:25:f7:d9:d4:ea:9c:57:be: 50:ee:30:14:ab:5c:bc:33:c2:72:86:c6:b6:59:ff:2a:20:ca: 2e:15:4f:e3:fb:69:9b:be:c9:fc:93:ae:38:74:2f:34:3d:62: 4b:f2:99:a8:8e:93:75:5c:e6:75:05:72:c9:99:4c:4b:37:86: 02:e7:a5:83:6d:f8:0d:86:24:f8:89:b6:8a:f1:7c:47:a2:d5: 85:93:23:c1:ae:45:d4:5f:79:78:9b:a7:c7:76:9b:5f:65:57: e8:64:d1:bb:be:e5:3d:04:b0:28:4a:39:45:88:bf:95:ff:2b: 10:24:b6:b7:76:d5:c9:91:a1:5a:6f:45:8d:81:5b:f5:a3:83: da:47:94:75:4e:b4:e7:ba:18:27:16:21:45:76:2d:6f:02:09: 94:99:95:01:bf:d4:66:13:1c:58:d7:7c:a4:42:d7:f3:4b:c5: d5:96:9f:57:fc:67:8b:eb:10:3d:03:85:74:45:f1:e2:54:6d: 37:95:79:fe:6d:c7:63:d0:31:ef:c7:97:87:7f:44:ac:fa:b1: e4:94:2f:1d:70:16:eb:87:0c:1b:5d:d5:72:a3:2c:7e:b9:43: 8f:b9:3b:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MTQxMTAvBgNVBAUTKDExOEQ5QkRFMzE3NTRGOTg1NENCNTU0NzQwQTI5OUYx MzdFMjQxRTIwHhcNMjUwNDI1MDUyODIzWhcNMjUwNTAyMDUyODIzWjAYMRYwFAYD VQQDEw02ODBiMWQ3Ny1iNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt6z23iKTXbqx8D52U5v29SGcVL51NN5KG2In6fZ9PybTt4RIEYtk+nptmx6 SE8F+UksE0rDYA/YU2A6JSQ3ba+BpupB+FiVSlltiQDvipHbhPyYfo/d/q8sIX1a gUkqvE5SMhuaVWpiEuQvFgH/a+fPQWDtO4FoYkYuZRlCLo57nW9ycYIA9Abub+Hk UKlveYBHq4N+ekfeUUy171br7rC98A7/rLtPObc3mrhuyjDg5xx0Fc+N2Uv3ZlKw UDpUURaWSRnHq69MnYFRRg/BkPZ7sBwLza0Sf+LDUzi0xT02tuMTvUUFUq58QQci UrQWStCMxAmwQaaFOxChhsfgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBvPS66 qcJsXGQ3o97fpnwAFlt3MB8GA1UdIwQYMBaAFBGNm94xdU+YVMtVR0CimfE34kHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgxNC84QzU3RjE1QTRB MzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1aFV5MVZIUUtLWjhUZmlR ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZMmIzakYxVDVoVXkxVkhRS0taOFRmaVFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgxNC84QzU3RjE1QTRBMzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1 aFV5MVZIUUtLWjhUZmlRZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj4R5tdlHgn77lfjSH1NFnehJUuEiXEyglltF/JffZ1OqcV75Q7jAU q1y8M8Jyhsa2Wf8qIMouFU/j+2mbvsn8k644dC80PWJL8pmojpN1XOZ1BXLJmUxL N4YC56WDbfgNhiT4ibaK8XxHotWFkyPBrkXUX3l4m6fHdptfZVfoZNG7vuU9BLAo SjlFiL+V/ysQJLa3dtXJkaFab0WNgVv1o4PaR5R1TrTnuhgnFiFFdi1vAgmUmZUB v9RmExxY13ykQtfzS8XVlp9X/GeL6xA9A4V0RfHiVG03lXn+bcdj0DHvx5eHf0Ss +rHklC8dcBbrhwwbXdVyoyx+uUOPuTsu -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:33 2025 by rpki-client