$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: 0jPbtlMHW99lElcjTHFzgZXfRGuccREhvFrLhpXaf1I= Subject key identifier: 40:2F:99:DB:6C:A0:44:59:C7:B1:DD:F3:77:CE:AD:EE:26:FE:EB:47 Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 0356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 0352 Signing time: Fri 25 Apr 2025 00:46:17 +0000 Manifest this update: Fri 25 Apr 2025 00:46:16 +0000 Manifest next update: Fri 02 May 2025 00:46:16 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: 9uGXtZWTmds36BKEEdazIu0MJHMeY+JDEg6Bpvww1fA=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: KMYbMfLRKgCDX7CbZCwrDOvnhVpSxFbhQooHcCajhmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Apr 25 00:46:16 2025 GMT Not After : May 2 00:46:16 2025 GMT Subject: CN=680adb58-e85a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ae:d1:7f:74:da:7d:8e:09:f7:51:29:72:14: cf:ab:5f:5a:41:96:8c:25:87:78:97:36:ef:d3:05: 52:d2:72:d3:e2:34:27:12:4f:07:a6:bb:77:cc:a3: 98:12:4b:cb:d7:86:a1:af:e3:da:e8:81:39:f8:3c: 01:95:13:03:24:05:22:4c:ea:5b:96:9c:76:28:7a: 27:2b:ea:d1:6a:01:86:0f:8b:1e:a8:fd:3b:99:92: 06:ee:64:5e:04:0f:b8:94:81:6f:56:2c:ea:34:d8: b7:bd:0a:48:4b:59:53:53:91:8b:b7:5c:e3:11:05: d1:80:e4:e8:20:c5:4e:8d:1b:2a:74:9e:44:30:ca: cb:33:8b:aa:95:c6:1a:70:70:f2:cc:aa:1f:6e:61: 2f:85:f5:e7:72:54:7b:da:b9:8f:43:45:9b:dc:d8: 4e:b8:59:db:8f:4b:79:81:ed:c4:37:70:47:0e:60: bb:ba:92:fc:1d:0e:3b:11:bb:1b:5b:c4:4b:09:f7: 59:88:29:43:77:d5:67:dc:40:2a:10:ed:f0:e5:2e: 83:c6:84:57:04:69:c3:13:33:f2:11:35:b6:de:22: 2a:65:83:29:7e:06:73:55:a8:90:e1:27:ad:1e:3d: af:68:70:1a:ff:3e:e2:36:81:fa:d9:82:8c:8d:f8: 63:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2F:99:DB:6C:A0:44:59:C7:B1:DD:F3:77:CE:AD:EE:26:FE:EB:47 X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c0:17:75:dd:d5:5c:28:8b:33:10:9c:24:09:f6:5f:e0:e2: 67:ad:62:f2:93:41:5e:1a:f9:c9:3f:36:75:cc:8b:69:4a:45: 6d:82:cf:28:a4:61:03:a2:04:ad:8a:35:48:ea:fb:c2:f0:8f: dd:42:88:ee:08:e4:ef:01:0b:20:f9:4a:d9:d4:89:86:0c:55: fd:57:40:7f:81:0d:b1:21:6e:5f:6e:13:bf:69:29:b1:8b:b1: 5b:21:b6:d7:39:55:12:f8:a5:c1:2c:c2:bf:69:9d:c1:57:50: 86:6f:78:de:1d:0c:d5:c9:d7:8d:1b:29:8c:23:85:b4:db:57: fb:19:9f:d2:e2:62:cd:02:24:05:1e:c2:6e:e1:64:15:c1:9b: 75:2c:5b:2f:ac:01:da:6d:34:48:2f:3e:ed:58:d1:21:aa:eb: c0:71:41:2d:93:36:c3:8e:04:60:62:66:2c:08:dc:78:e3:5e: 61:39:30:34:99:44:7d:c2:a3:3c:d4:f6:3a:5f:d3:18:6b:9e: 77:27:66:21:0f:ac:4c:63:e4:55:c5:9b:32:5b:48:12:cb:21: 8c:36:d8:16:08:b5:e7:f3:00:fd:f8:c7:11:e5:23:b3:34:0a: e0:7e:10:4f:57:ce:6b:e0:84:9a:cb:d8:27:2e:dd:0e:8f:95: f7:db:ab:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUwNDI1MDA0NjE2WhcNMjUwNTAyMDA0NjE2WjAYMRYwFAYD VQQDEw02ODBhZGI1OC1lODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK7Rf3TafY4J91EpchTPq19aQZaMJYd4lzbv0wVS0nLT4jQnEk8Hprt3zKOY EkvL14ahr+Pa6IE5+DwBlRMDJAUiTOpblpx2KHonK+rRagGGD4seqP07mZIG7mRe BA+4lIFvVizqNNi3vQpIS1lTU5GLt1zjEQXRgOToIMVOjRsqdJ5EMMrLM4uqlcYa cHDyzKofbmEvhfXnclR72rmPQ0Wb3NhOuFnbj0t5ge3EN3BHDmC7upL8HQ47Ebsb W8RLCfdZiClDd9Vn3EAqEO3w5S6DxoRXBGnDEzPyETW23iIqZYMpfgZzVaiQ4Set Hj2vaHAa/z7iNoH62YKMjfhjzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAvmdts oERZx7Hd83fOre4m/utHMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJwBd13dVcKIszEJwkCfZf4OJnrWLyk0FeGvnJPzZ1zItpSkVtgs8o pGEDogStijVI6vvC8I/dQojuCOTvAQsg+UrZ1ImGDFX9V0B/gQ2xIW5fbhO/aSmx i7FbIbbXOVUS+KXBLMK/aZ3BV1CGb3jeHQzVydeNGymMI4W021f7GZ/S4mLNAiQF HsJu4WQVwZt1LFsvrAHabTRILz7tWNEhquvAcUEtkzbDjgRgYmYsCNx4415hOTA0 mUR9wqM81PY6X9MYa553J2YhD6xMY+RVxZsyW0gSyyGMNtgWCLXn8wD9+McR5SOz NArgfhBPV85r4ISay9gnLt0Oj5X326v0 -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:05 2025 by rpki-client