$ rpki-client -vvf rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft File: toWM6JkRXyxWHHZl74vgaIBoEJw.mft (raw, json) Hash identifier: /3DOuEH7Mxog+HA4+g70Mbvdw6YVOjp8fMc7qgXuicU= Subject key identifier: 91:F3:E4:D6:77:7D:EB:E5:9F:CE:03:06:1A:88:B9:2C:0C:EC:25:11 Authority key identifier: B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C Certificate issuer: /CN=A91D120D/serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Certificate serial: 0914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft Manifest number: 08FC Signing time: Thu 24 Apr 2025 20:14:49 +0000 Manifest this update: Thu 24 Apr 2025 20:14:49 +0000 Manifest next update: Thu 01 May 2025 20:14:49 +0000 Files and hashes: 1: toWM6JkRXyxWHHZl74vgaIBoEJw.crl (hash: GnjdJBXNzX/slyXw8+94VhFDDzOOpr/qKzoS71u35tw=) 2: 1A4ED0E8A71811EA80A77B1FC4F9AE02.roa (hash: o2ubabJQjRgkyeZ1KZmWpq8Ju1E6mRHeCYVqt6Eg9bc=) 3: 8C79CFC6A6FD11EAA1B00744C4F9AE02.roa (hash: ZhKJiPvJVpmKkzL+YkNpWQyHnorv+gyb0AmGgaJqcWs=) 4: 9C454274FB7711EDA78AAC1DC4F9AE02.roa (hash: ZvBB3zmKVUj3FoNo3LoHC19aHdg/tMgwEIpu4fehNZ4=) 5: 95DC9990D0A211EE9C97373FC4F9AE02.roa (hash: z6k7ctSWW62IFQe+RQT4sXA8JZqwDWiJbhhB0VFDnxM=) 6: 9D83F4E6FB7711EDA78AAC1DC4F9AE02.roa (hash: KelzcdHCtnxA0fy0V8HA1xyHStc3LVcSAxi6LwKWwLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D120D, serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Validity Not Before: Apr 24 20:14:49 2025 GMT Not After : May 1 20:14:49 2025 GMT Subject: CN=680a9bb9-ca2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:5a:d2:38:4d:78:4c:5b:14:f5:33:35:5a: d8:af:90:5f:ef:99:c6:39:f5:04:c4:96:83:fc:bb: b6:75:6c:1d:c2:88:67:4a:08:43:5e:6f:a7:95:27: 7e:5b:2f:01:b6:65:3e:9e:6c:b3:00:00:1c:21:89: 3c:43:58:2d:9e:cc:f9:98:02:21:25:ed:82:7f:7d: e4:55:ea:f8:b8:90:20:ec:f0:47:6e:cf:f3:d7:b8: 3d:f3:28:c1:14:55:ec:49:2d:d6:79:1b:dc:92:79: ee:07:e8:94:05:a3:09:cf:8c:37:1f:bf:c1:2a:b8: 58:f1:27:35:72:2f:22:c6:0b:6c:63:31:8c:80:b0: fd:c0:86:66:b2:91:07:75:24:03:11:b0:92:7b:d0: bd:43:b0:d7:13:2f:3d:04:77:ed:08:dc:13:46:8b: 92:cf:ee:d2:63:06:e6:6e:71:4e:50:74:b5:9c:e5: 1a:b4:33:b4:71:3b:e9:f1:4f:51:2c:30:4e:aa:8a: 1f:4e:d1:72:d5:b4:7b:c5:71:40:e9:99:38:95:b2: 6e:37:77:5d:34:82:56:73:5e:4e:95:59:a2:38:34: fb:06:02:bd:0b:43:d8:18:f9:e3:c2:29:ba:19:c0: 3b:6d:d0:9a:37:55:af:5a:ce:c0:28:1c:12:5b:27: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F3:E4:D6:77:7D:EB:E5:9F:CE:03:06:1A:88:B9:2C:0C:EC:25:11 X509v3 Authority Key Identifier: keyid:B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:cb:3d:17:95:cb:ca:c9:d9:2a:53:b7:56:2b:d5:d0:ec:7c: 13:73:5f:7e:68:00:09:7d:f3:b7:7e:13:ba:b8:5d:56:02:8d: e4:d8:3b:db:8e:9c:33:06:6d:3a:63:c2:d5:ea:b0:90:68:3b: 1e:58:da:fe:9e:ed:52:2a:bc:ec:be:89:6a:a9:07:71:17:67: cc:78:c4:02:bc:5b:72:6d:6a:2b:29:da:11:cc:5a:80:07:b6: aa:74:e0:95:be:48:01:45:41:d2:84:f4:82:cd:83:f0:3f:9b: d6:b6:19:f3:4a:0d:67:35:21:c4:43:8c:78:4d:d0:3b:68:7b: 49:70:d5:90:d5:cb:21:5a:93:bd:91:17:53:ed:6c:3f:99:4b: d6:26:bf:63:01:2e:91:8a:fe:43:74:5e:79:00:20:96:e2:e2: a7:83:9e:72:ab:f2:3f:1f:f0:ae:07:ee:e5:98:f0:ad:ac:9f: dc:ad:40:5f:15:3f:72:38:c5:7c:1e:37:20:30:5c:ff:ad:a4: 80:aa:88:95:66:8f:a9:33:07:4c:31:7a:9a:17:c6:58:61:3c: 99:c0:32:80:4d:98:9e:15:9f:9b:9a:b1:5b:b1:87:45:8b:51: a1:02:08:fb:9f:b1:ca:53:2e:66:e6:64:06:09:e5:4a:42:c8: f2:89:b9:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMEQxMTAvBgNVBAUTKEI2ODU4Q0U4OTkxMTVGMkM1NjFDNzY2NUVGOEJFMDY4 ODA2ODEwOUMwHhcNMjUwNDI0MjAxNDQ5WhcNMjUwNTAxMjAxNDQ5WjAYMRYwFAYD VQQDEw02ODBhOWJiOS1jYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEZa0jhNeExbFPUzNVrYr5Bf75nGOfUExJaD/Lu2dWwdwohnSghDXm+nlSd+ Wy8BtmU+nmyzAAAcIYk8Q1gtnsz5mAIhJe2Cf33kVer4uJAg7PBHbs/z17g98yjB FFXsSS3WeRvcknnuB+iUBaMJz4w3H7/BKrhY8Sc1ci8ixgtsYzGMgLD9wIZmspEH dSQDEbCSe9C9Q7DXEy89BHftCNwTRouSz+7SYwbmbnFOUHS1nOUatDO0cTvp8U9R LDBOqoofTtFy1bR7xXFA6Zk4lbJuN3ddNIJWc15OlVmiODT7BgK9C0PYGPnjwim6 GcA7bdCaN1WvWs7AKBwSWyeM0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHz5NZ3 fevln84DBhqIuSwM7CURMB8GA1UdIwQYMBaAFLaFjOiZEV8sVhx2Ze+L4GiAaBCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIwRC81MUU4MEU5OEE2 RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5eFdISFpsNzR2Z2FJQm9F SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RvV002SmtSWHl4V0hIWmw3NHZnYUlCb0VKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIwRC81MUU4MEU5OEE2RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5 eFdISFpsNzR2Z2FJQm9FSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHyz0XlcvKydkqU7dWK9XQ7HwTc19+aAAJffO3fhO6uF1WAo3k2Dvb jpwzBm06Y8LV6rCQaDseWNr+nu1SKrzsvolqqQdxF2fMeMQCvFtybWorKdoRzFqA B7aqdOCVvkgBRUHShPSCzYPwP5vWthnzSg1nNSHEQ4x4TdA7aHtJcNWQ1cshWpO9 kRdT7Ww/mUvWJr9jAS6Riv5DdF55ACCW4uKng55yq/I/H/CuB+7lmPCtrJ/crUBf FT9yOMV8HjcgMFz/raSAqoiVZo+pMwdMMXqaF8ZYYTyZwDKATZieFZ+bmrFbsYdF i1GhAgj7n7HKUy5m5mQGCeVKQsjyibmB -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:35 2025 by rpki-client