$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: i7LkcsuOU385A9t8eHaznOr//8TFrj+wdsLwvcARLok= Subject key identifier: 6D:7B:2B:C1:F3:56:BB:72:25:2D:F8:90:5A:FD:65:9F:7A:36:57:8B Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: 52 Signing time: Fri 25 Apr 2025 06:14:24 +0000 Manifest this update: Fri 25 Apr 2025 06:14:23 +0000 Manifest next update: Fri 02 May 2025 06:14:23 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: 8DIYPoztBno0LyGhaBrTBAYvZYlT4XMHF053WJWmAGg=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Apr 25 06:14:23 2025 GMT Not After : May 2 06:14:23 2025 GMT Subject: CN=680b2840-4749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:ca:cd:06:2c:2a:b6:fa:5e:d7:5f:cf:fd: fc:85:9d:4a:ad:a2:cc:5b:a3:c5:7c:74:b9:78:c4: a4:fd:c8:ae:5d:bb:00:b4:8e:3f:9d:7c:5c:28:9c: c0:07:97:cb:66:c2:37:3b:81:9b:81:0d:3b:2c:2f: a8:b3:99:b9:cb:cc:5d:67:12:c9:aa:b9:6c:0a:b3: d7:22:32:4f:a4:3c:c0:6d:9f:a6:36:80:ce:54:3e: 41:bb:6d:77:d5:de:6f:49:a9:c6:ed:4f:1b:b7:e7: e7:dd:55:de:81:c5:f4:0c:3f:35:cb:c5:60:90:49: bb:47:c6:d3:17:17:1f:99:94:f5:bc:91:98:aa:f6: 0a:a6:bc:eb:b6:9f:21:20:d6:45:37:a0:a5:4b:f3: 8b:a7:32:2e:31:3a:52:ca:f6:80:5a:bf:43:4e:a1: 15:c0:37:60:7c:86:4e:42:d2:3a:45:1b:ce:8b:2c: c8:96:83:a6:8f:a1:7f:a3:7f:3c:fc:32:7e:33:db: e6:69:1d:5f:a8:7e:c6:7e:8b:69:6a:ab:8c:3c:14: b0:1d:25:ce:2a:5f:71:70:bf:00:c8:7f:fd:5a:5b: 07:be:18:52:69:f2:2b:b2:62:b6:ce:22:40:d7:c8: 35:24:49:18:79:48:00:d8:98:ee:5f:14:79:0e:36: 55:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7B:2B:C1:F3:56:BB:72:25:2D:F8:90:5A:FD:65:9F:7A:36:57:8B X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:4c:96:4a:fe:0f:55:a9:d0:b0:4a:c1:f6:bf:38:49:d1:cc: 3d:e4:0c:7d:e7:aa:66:84:07:87:c5:5b:51:38:8d:8e:50:29: 45:47:b4:52:56:9d:87:40:4a:70:9c:ed:cd:a4:70:b9:3d:58: 0d:e2:d3:5b:e3:e4:32:de:d6:34:f4:68:86:7c:ee:98:dd:09: 2b:ae:95:03:3a:73:9b:15:ea:3e:a0:2e:91:d1:a2:e6:ef:6a: 79:22:e4:9d:4e:8c:a0:93:00:1d:8c:83:fa:b9:fc:bd:e3:0f: 1c:b6:b3:d1:66:6a:a6:89:9d:23:1d:51:4e:52:ff:c3:2a:fe: 69:ec:a2:6a:d0:05:ed:91:a3:0c:31:20:30:8d:ac:11:0f:43: 61:fa:87:0a:28:a6:20:66:2a:d3:3e:b6:39:8b:71:10:eb:f7: e0:f7:fc:50:5d:a4:c8:9a:2f:31:af:75:ea:c7:54:52:24:1c: 23:3c:e2:7f:30:f4:05:60:7a:8a:7a:e4:c1:b7:20:c6:fe:b1: 90:ba:ee:52:26:56:90:6e:87:f4:6e:12:f5:5a:3d:1b:da:0a: ce:30:4b:d6:95:04:5d:aa:67:b6:cb:8c:58:bd:1b:66:cf:59: f8:a6:9c:4c:5b:fc:a2:4c:51:2e:c8:31:4a:5f:66:39:c5:82: a6:4d:a0:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDlCQzExMC8GA1UEBRMoMDFGMDVDN0VBNUYyQTJFREZDMTgzODk3RjU4MzU5ODJC MkNGMDNCRjAeFw0yNTA0MjUwNjE0MjNaFw0yNTA1MDIwNjE0MjNaMBgxFjAUBgNV BAMTDTY4MGIyODQwLTQ3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmu8rNBiwqtvpe11/P/fyFnUqtosxbo8V8dLl4xKT9yK5duwC0jj+dfFwonMAH l8tmwjc7gZuBDTssL6izmbnLzF1nEsmquWwKs9ciMk+kPMBtn6Y2gM5UPkG7bXfV 3m9JqcbtTxu35+fdVd6BxfQMPzXLxWCQSbtHxtMXFx+ZlPW8kZiq9gqmvOu2nyEg 1kU3oKVL84unMi4xOlLK9oBav0NOoRXAN2B8hk5C0jpFG86LLMiWg6aPoX+jfzz8 Mn4z2+ZpHV+ofsZ+i2lqq4w8FLAdJc4qX3FwvwDIf/1aWwe+GFJp8iuyYrbOIkDX yDUkSRh5SADYmO5fFHkONlXXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbXsrwfNW u3IlLfiQWv1ln3o2V4swHwYDVR0jBBgwFoAUAfBcfqXyou38GDiX9YNZgrLPA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwOUJDL0QzNUIwODJFQTcw NzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWZCY2ZxWHlvdTM4R0RpWDlZTlpnckxQQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw OUJDL0QzNUIwODJFQTcwNzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3Uz OEdEaVg5WU5aZ3JMUEE3OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALlMlkr+D1Wp0LBKwfa/OEnRzD3kDH3nqmaEB4fFW1E4jY5QKUVHtFJW nYdASnCc7c2kcLk9WA3i01vj5DLe1jT0aIZ87pjdCSuulQM6c5sV6j6gLpHRoubv anki5J1OjKCTAB2Mg/q5/L3jDxy2s9FmaqaJnSMdUU5S/8Mq/mnsomrQBe2Rowwx IDCNrBEPQ2H6hwoopiBmKtM+tjmLcRDr9+D3/FBdpMiaLzGvderHVFIkHCM84n8w 9AVgeop65MG3IMb+sZC67lImVpBuh/RuEvVaPRvaCs4wS9aVBF2qZ7bLjFi9G2bP WfimnExb/KJMUS7IMUpfZjnFgqZNoF0= -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:56 2025 by rpki-client