$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: d9HOU3epvS3ygyH/EfhDEbxpU8B4vc0xP3qZG1M4/TM= Subject key identifier: 63:05:5E:C5:A4:65:39:50:85:4E:FC:43:9F:03:9E:77:19:73:6C:26 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 0377 Signing time: Fri 25 Apr 2025 00:49:34 +0000 Manifest this update: Fri 25 Apr 2025 00:49:33 +0000 Manifest next update: Fri 02 May 2025 00:49:33 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: 1gNzG4wWrDjGlkFhXEPufIOn9PUYuAfWFNxKUrEWbn8=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: 3UjrYjj5O3Amm02WCEzbVdg/2HdFUuqdwKYNG8cKQe0=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Apr 25 00:49:33 2025 GMT Not After : May 2 00:49:33 2025 GMT Subject: CN=680adc1e-bdc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:1b:6e:16:9f:9e:ce:9c:58:f7:f5:6a:d1: 4d:ea:9e:d4:f4:e0:d7:83:b0:09:12:52:a5:81:c5: 51:12:ec:b4:85:0b:0e:b4:89:44:4e:8e:9f:4f:94: 2e:78:18:c5:5a:94:ec:d9:ea:b6:b7:55:23:56:08: 37:9b:0f:fa:5f:e5:b4:96:50:4c:76:b7:ee:5e:15: 3a:20:1b:1b:a1:75:64:5a:9c:10:79:5c:70:27:7a: 0a:ac:da:2d:53:c6:17:2b:a7:cd:79:48:53:e5:3f: dc:b6:4d:b2:f9:c5:99:84:98:e7:5b:89:c2:58:3b: 6a:2a:8a:96:1c:8e:a7:69:dc:5c:cb:0c:4b:e3:d8: af:74:ea:81:4b:c3:e9:85:6a:42:fb:c1:8e:5f:a6: e8:3f:1b:e7:60:7c:43:c6:23:a2:5a:3e:bd:dc:49: 03:61:3c:24:86:48:68:9f:6d:06:87:69:b0:9d:d5: 68:43:4e:48:50:a9:3a:62:be:6b:ed:e3:ba:1e:f5: db:3b:ba:aa:49:90:33:de:4b:17:70:14:27:f1:06: a6:bb:4f:23:ba:db:d2:9e:74:87:c6:b0:12:3e:a0: 63:c1:5d:92:ee:ea:fd:63:d1:d7:62:47:75:f5:61: 39:28:66:f5:fc:21:38:cc:b1:45:88:ce:e0:09:4c: 53:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:05:5E:C5:A4:65:39:50:85:4E:FC:43:9F:03:9E:77:19:73:6C:26 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:a3:a4:78:1d:9d:b9:a7:eb:c0:dc:89:51:0f:a2:9d:16:16: 4f:9f:8c:5d:74:a2:ef:b3:19:0f:41:2d:df:ba:8c:fe:e3:90: f5:7a:3c:ff:ff:b6:c1:ad:10:d8:fe:c4:67:ee:34:f8:f5:4e: 34:f4:0a:51:ae:bb:e9:96:cc:db:09:9a:1e:a6:5e:5e:49:7e: 5f:a9:04:7e:11:cb:0f:23:37:83:a3:fc:35:51:41:3e:9e:1d: ee:bb:fd:0f:1f:dd:df:3f:2f:24:b9:e1:d6:1a:0c:7d:fe:79: ed:c8:81:b3:36:34:ff:dd:de:c6:71:33:4b:c7:f4:e6:de:ca: 75:4a:e9:3c:93:6d:2e:1f:c0:84:52:25:e0:6e:a4:16:f6:bf: 18:ae:0a:b9:3d:68:9a:ea:b1:69:49:b0:52:04:11:5c:bc:80: 8f:b3:13:36:1e:68:4b:4f:92:1b:c2:10:52:2b:d5:19:fa:94: 8b:d7:6b:cd:d1:ad:bd:75:97:61:90:fe:ed:81:70:70:63:85: f1:2a:be:43:4f:30:12:07:e4:31:16:d0:33:6e:06:f9:47:1e: 79:b7:90:9f:4e:68:b5:53:8c:a4:76:ab:6d:b9:10:10:cd:d3: 34:f7:c4:39:f3:1f:d3:5a:2c:1e:f6:0e:ca:18:e3:d5:e3:42: e1:fd:5a:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUwNDI1MDA0OTMzWhcNMjUwNTAyMDA0OTMzWjAYMRYwFAYD VQQDEw02ODBhZGMxZS1iZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtikbbhafns6cWPf1atFN6p7U9ODXg7AJElKlgcVREuy0hQsOtIlETo6fT5Qu eBjFWpTs2eq2t1UjVgg3mw/6X+W0llBMdrfuXhU6IBsboXVkWpwQeVxwJ3oKrNot U8YXK6fNeUhT5T/ctk2y+cWZhJjnW4nCWDtqKoqWHI6nadxcywxL49ivdOqBS8Pp hWpC+8GOX6boPxvnYHxDxiOiWj693EkDYTwkhkhon20Gh2mwndVoQ05IUKk6Yr5r 7eO6HvXbO7qqSZAz3ksXcBQn8Qamu08jutvSnnSHxrASPqBjwV2S7ur9Y9HXYkd1 9WE5KGb1/CE4zLFFiM7gCUxT9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMFXsWk ZTlQhU78Q58DnncZc2wmMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSo6R4HZ25p+vA3IlRD6KdFhZPn4xddKLvsxkPQS3fuoz+45D1ejz/ /7bBrRDY/sRn7jT49U409ApRrrvplszbCZoepl5eSX5fqQR+EcsPIzeDo/w1UUE+ nh3uu/0PH93fPy8kueHWGgx9/nntyIGzNjT/3d7GcTNLx/Tm3sp1Suk8k20uH8CE UiXgbqQW9r8Yrgq5PWia6rFpSbBSBBFcvICPsxM2HmhLT5IbwhBSK9UZ+pSL12vN 0a29dZdhkP7tgXBwY4XxKr5DTzASB+QxFtAzbgb5Rx55t5CfTmi1U4ykdqttuRAQ zdM098Q58x/TWiwe9g7KGOPV40Lh/Vo8 -----END CERTIFICATE-----Generated at Sat Apr 26 03:36:12 2025 by rpki-client