$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: B6VgYnllJqbN/38T/jNmGcyox8fYOenktLmjhagX/so= Subject key identifier: 81:1E:1F:99:77:8B:00:8F:11:83:D7:B3:EA:7E:88:EF:E7:EC:C9:D3 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: AF Signing time: Fri 25 Apr 2025 05:05:50 +0000 Manifest this update: Fri 25 Apr 2025 05:05:50 +0000 Manifest next update: Fri 02 May 2025 05:05:50 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: /u7e6Nc/n7/M/8OP617jY2C60ekf3SgDDXnZHgo+Zy4=) 2: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: nq8ODXuG2X1On3FZK6D1Ybw7+HTqr1F1kxAZ6zyabRU=) 3: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: 1y/ITkoFaBAOp9EAsg22Me68ifQMXDcby23ipO0Xd9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Apr 25 05:05:50 2025 GMT Not After : May 2 05:05:50 2025 GMT Subject: CN=680b182e-6f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:78:38:aa:a2:ee:e0:de:59:ad:aa:50:ca: f5:5b:47:45:d6:f6:02:7f:cc:b2:9f:f3:8d:df:2e: 58:7f:4a:72:b6:93:ef:c5:76:51:aa:36:f3:f7:1c: 5d:b8:4e:23:82:9d:d4:1f:0e:ca:be:c5:a8:02:30: d5:c6:bc:5e:a2:d9:83:60:1e:96:58:19:15:0f:97: 0c:5e:75:de:9a:92:4b:59:ae:88:c4:75:09:61:77: 02:15:7d:61:98:77:df:8e:61:67:eb:7d:52:c3:00: d8:60:47:fb:27:a5:9b:fe:a8:47:fa:18:b1:b2:64: 1e:94:96:c8:eb:f8:1f:3e:33:c8:7b:8a:20:dc:bf: cd:1f:00:f7:91:f3:7a:31:44:05:80:d3:7a:78:b6: ef:b8:69:ed:29:d8:1b:ce:44:79:d7:14:40:a9:61: d6:4d:4d:54:dd:51:d1:fe:74:a2:2c:59:11:f1:4b: 00:ab:52:4b:e3:50:fa:59:02:a6:90:60:cc:c2:6c: 1f:1f:14:12:bc:13:64:58:b2:6d:4f:9c:81:1e:5e: 08:90:b9:c1:6b:65:04:85:2a:89:31:5b:64:b7:79: 40:b1:6d:bf:f4:98:97:cf:40:15:b0:08:77:04:9a: 7c:47:20:83:f9:6a:da:fd:5b:56:2f:f4:86:63:9d: 18:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1E:1F:99:77:8B:00:8F:11:83:D7:B3:EA:7E:88:EF:E7:EC:C9:D3 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:7f:8c:82:72:6d:77:25:78:75:d3:a4:3a:dd:4a:f9:93:76: cf:a1:ff:56:c2:bc:6b:d9:82:ad:7d:e1:e2:c5:2d:1f:f6:5e: 62:a3:c7:81:fe:c1:7a:49:ec:59:81:14:49:f7:62:f2:2a:36: a6:e8:63:15:6e:3a:e7:58:82:4d:1d:3e:73:32:26:ec:4c:81: 39:14:ab:b5:22:81:e8:e5:1b:88:d3:f8:1e:07:08:de:fd:69: 5d:80:0d:d6:59:21:ff:86:44:df:e6:c3:87:c0:6d:1a:17:cb: 1d:48:a9:ff:fd:4b:9a:fe:3f:33:df:3e:98:7e:8e:e2:0c:eb: f1:aa:bd:b4:98:1f:94:ff:ac:44:86:c0:58:68:d9:47:33:1f: bb:0e:d5:94:df:61:ba:95:4b:9e:8e:ec:ab:77:3a:34:d0:eb: 0d:80:6d:04:ba:6c:7a:cc:57:6c:57:c9:d8:76:30:13:b8:52: d7:4f:ec:cf:84:fc:49:73:1d:04:cb:e5:cb:44:d9:f6:85:de: 1e:7f:f3:a5:c9:59:44:cc:c2:b5:47:55:22:bd:3a:3e:95:99: 1c:4d:60:8b:c2:d9:e0:68:9e:91:05:ef:55:be:82:e4:95:dc: 97:5a:32:3e:04:7e:dd:76:76:c3:cc:52:b2:d1:d5:43:34:eb: 2a:58:1a:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjUwNDI1MDUwNTUwWhcNMjUwNTAyMDUwNTUwWjAYMRYwFAYD VQQDEw02ODBiMTgyZS02ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWR4OKqi7uDeWa2qUMr1W0dF1vYCf8yyn/ON3y5Yf0pytpPvxXZRqjbz9xxd uE4jgp3UHw7KvsWoAjDVxrxeotmDYB6WWBkVD5cMXnXempJLWa6IxHUJYXcCFX1h mHffjmFn631SwwDYYEf7J6Wb/qhH+hixsmQelJbI6/gfPjPIe4og3L/NHwD3kfN6 MUQFgNN6eLbvuGntKdgbzkR51xRAqWHWTU1U3VHR/nSiLFkR8UsAq1JL41D6WQKm kGDMwmwfHxQSvBNkWLJtT5yBHl4IkLnBa2UEhSqJMVtkt3lAsW2/9JiXz0AVsAh3 BJp8RyCD+Wra/VtWL/SGY50YyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEeH5l3 iwCPEYPXs+p+iO/n7MnTMB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASf4yCcm13JXh106Q63Ur5k3bPof9Wwrxr2YKtfeHixS0f9l5io8eB /sF6SexZgRRJ92LyKjam6GMVbjrnWIJNHT5zMibsTIE5FKu1IoHo5RuI0/geBwje /WldgA3WWSH/hkTf5sOHwG0aF8sdSKn//Uua/j8z3z6Yfo7iDOvxqr20mB+U/6xE hsBYaNlHMx+7DtWU32G6lUuejuyrdzo00OsNgG0Eumx6zFdsV8nYdjATuFLXT+zP hPxJcx0Ey+XLRNn2hd4ef/OlyVlEzMK1R1UivTo+lZkcTWCLwtngaJ6RBe9VvoLk ldyXWjI+BH7ddnbDzFKy0dVDNOsqWBqf -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:34 2025 by rpki-client