$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: PZ567Ur5DImDHpT7gpSFEkgOOQz26vt8eIwt2+DXv2M= Subject key identifier: 5F:37:5B:25:EF:A2:86:76:4C:BA:85:30:0E:67:87:83:12:A8:2B:AE Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 081F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 0817 Signing time: Thu 24 Apr 2025 20:42:15 +0000 Manifest this update: Thu 24 Apr 2025 20:42:15 +0000 Manifest next update: Thu 01 May 2025 20:42:15 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: ViHXYqKATQ8sAG1OJjhWua7Y1SozPjLptm98i0NEm3Q=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: OISPqX+sjE+FviBwbW316CZ6fba2RRqY67rA1yB66hs=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: 7eZAVrRcBGBKFlQHZK9vBEWzwyr7ij0OTTCgEmnjTCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Apr 24 20:42:15 2025 GMT Not After : May 1 20:42:15 2025 GMT Subject: CN=680aa227-a959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:51:a4:10:8f:a7:20:4d:fc:a7:0c:1a:1c:cf: 2f:fa:89:57:93:99:71:0c:83:ea:81:87:c3:47:10: 94:9b:0b:a2:51:5e:0b:6e:14:b8:36:4e:24:eb:06: 1c:6a:0a:f5:85:f8:79:f3:bd:8c:7c:79:d9:cb:24: 7d:08:87:e0:ab:4d:4d:a5:ec:fb:97:f8:4a:c0:71: 1e:ce:e9:04:21:d5:88:c4:04:c9:a7:30:63:00:ff: b2:47:43:24:06:26:1f:5f:fd:0b:ce:0a:7e:43:5d: f9:7c:c0:30:47:f1:65:11:c3:f0:7f:64:80:29:77: 54:9f:c6:36:0c:ee:0f:24:79:12:3c:bf:eb:89:20: 8b:e8:bc:7f:a3:a1:fd:a0:f4:c0:87:c9:7d:85:ae: 5f:30:ee:39:fc:13:94:fa:ed:3d:37:12:38:b6:9a: 1f:39:b0:58:22:f1:70:20:44:be:57:b0:ae:8a:ad: a8:02:1b:bb:a3:0d:5a:89:24:b0:84:61:f8:55:b9: 57:03:46:22:55:06:21:5f:80:9a:02:fc:6c:cd:2f: 2a:29:86:30:a4:88:35:ba:44:58:fc:88:dc:03:72: 7b:ed:98:d1:c4:de:f5:ee:5d:87:ca:34:83:fc:ef: b5:b8:78:8d:84:66:bb:0c:36:1b:dd:79:1c:2b:6c: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:37:5B:25:EF:A2:86:76:4C:BA:85:30:0E:67:87:83:12:A8:2B:AE X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:0e:63:37:28:b9:f0:6e:82:e8:51:82:95:91:22:81:93:0f: cb:8e:ff:73:3b:e8:06:70:df:e9:b4:bd:da:31:89:83:4a:a4: 0d:11:a1:0a:fe:93:d6:68:5b:18:f5:d6:85:a4:ed:76:2f:74: 69:2a:56:38:de:d4:e2:3e:6c:2b:42:28:d0:09:04:bb:b2:f1: 97:b0:f0:df:d0:f8:8d:44:2e:65:ab:36:83:d7:d0:7a:2c:cf: 12:e5:76:88:61:f2:3d:4c:0a:59:90:ab:14:4f:42:0e:9a:b7: d5:0f:c7:1d:c9:5c:46:db:62:b2:b4:b0:9e:a7:12:5b:10:10: 1d:80:96:96:79:d4:70:fb:d7:64:1f:54:e2:71:b4:f8:88:a8: d8:ba:b4:dc:4e:da:1a:bd:f3:21:22:23:72:66:28:34:95:04: a7:3e:95:8d:82:24:16:21:7f:50:65:1d:17:ef:62:e4:6e:79: d2:9a:60:dd:70:d6:45:a1:25:a3:31:7a:8a:32:e8:c8:c6:24: 3d:6b:db:9c:f1:5d:e7:e2:65:62:6f:67:08:56:eb:07:a0:82: fd:22:c7:b7:2c:f5:af:65:26:1f:e2:f0:9f:d6:c4:8f:4d:00: b9:e3:05:f7:f7:97:a0:8e:71:af:0a:1e:fb:82:17:a8:3d:1c: e8:ac:9e:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUwNDI0MjA0MjE1WhcNMjUwNTAxMjA0MjE1WjAYMRYwFAYD VQQDEw02ODBhYTIyNy1hOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFGkEI+nIE38pwwaHM8v+olXk5lxDIPqgYfDRxCUmwuiUV4LbhS4Nk4k6wYc agr1hfh5872MfHnZyyR9CIfgq01Npez7l/hKwHEezukEIdWIxATJpzBjAP+yR0Mk BiYfX/0Lzgp+Q135fMAwR/FlEcPwf2SAKXdUn8Y2DO4PJHkSPL/riSCL6Lx/o6H9 oPTAh8l9ha5fMO45/BOU+u09NxI4tpofObBYIvFwIES+V7Cuiq2oAhu7ow1aiSSw hGH4VblXA0YiVQYhX4CaAvxszS8qKYYwpIg1ukRY/IjcA3J77ZjRxN717l2HyjSD /O+1uHiNhGa7DDYb3XkcK2xJZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF83WyXv ooZ2TLqFMA5nh4MSqCuuMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7DmM3KLnwboLoUYKVkSKBkw/Ljv9zO+gGcN/ptL3aMYmDSqQNEaEK /pPWaFsY9daFpO12L3RpKlY43tTiPmwrQijQCQS7svGXsPDf0PiNRC5lqzaD19B6 LM8S5XaIYfI9TApZkKsUT0IOmrfVD8cdyVxG22KytLCepxJbEBAdgJaWedRw+9dk H1TicbT4iKjYurTcTtoavfMhIiNyZig0lQSnPpWNgiQWIX9QZR0X72LkbnnSmmDd cNZFoSWjMXqKMujIxiQ9a9uc8V3n4mVib2cIVusHoIL9Ise3LPWvZSYf4vCf1sSP TQC54wX395egjnGvCh77gheoPRzorJ60 -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:52 2025 by rpki-client