$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft File: -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json) Hash identifier: q9/WpvWD7YmSQNnaMdGh/AVLoFNKFmMubAsezKBSsGA= Subject key identifier: 8C:87:E3:3F:1A:16:E8:88:59:DC:7C:30:13:9D:DC:56:A5:FF:1E:CE Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft Manifest number: 0611 Signing time: Sat 26 Apr 2025 22:28:11 +0000 Manifest this update: Sat 26 Apr 2025 22:28:11 +0000 Manifest next update: Sat 03 May 2025 22:28:11 +0000 Files and hashes: 1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: TGZ7HkhCScGVi6mcokOTaydU/NsfpNeXxFW8gdVa+fI=) 2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: OXMHoo8Egs65FUqbV0ME5rvmbJEFphKa1wlI6laYOWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: Apr 26 22:28:11 2025 GMT Not After : May 3 22:28:11 2025 GMT Subject: CN=680d5dfb-20e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:2a:87:56:8a:6d:bf:26:1d:e1:46:63:81: 25:6a:2d:cb:22:7e:6a:96:db:81:7e:c0:a2:44:e7: 1c:ea:6f:c4:be:79:6d:dc:05:56:b2:17:b1:58:ea: 96:a4:81:74:18:e8:f3:bc:3b:34:74:e0:fb:a3:52: 8d:74:c1:7a:f0:96:ac:a4:5b:2c:5e:ba:ef:95:9c: e8:b7:93:87:0a:7b:ce:61:41:77:fd:89:1e:7f:b4: a6:c4:aa:9d:3a:17:e8:d7:e6:57:1a:ca:fd:8c:97: e4:c4:b4:12:ea:21:9e:9e:84:5f:7e:91:5a:99:04: fe:75:e5:75:32:8b:ff:4a:61:1b:ec:06:e4:47:dd: fb:c9:c5:ce:97:aa:a9:7b:4b:96:e1:69:c2:89:13: 34:ab:5e:98:bc:ac:d7:52:c4:38:dc:ef:89:5b:4f: 59:8f:9b:63:fd:d6:67:c2:2f:b7:87:2c:28:20:f0: d1:8e:a2:29:0d:ce:19:56:da:06:bf:3a:34:77:83: fe:76:7e:28:48:53:6a:dc:d8:0b:18:a5:cf:22:3d: 03:71:bf:1b:8c:5a:6c:fa:e3:56:a5:31:80:79:ec: 30:08:dc:ff:7c:ea:d0:fd:34:c6:07:ef:9f:3c:31: ee:94:50:20:2e:0a:3e:1d:4e:d1:55:b1:d9:ca:81: 34:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:87:E3:3F:1A:16:E8:88:59:DC:7C:30:13:9D:DC:56:A5:FF:1E:CE X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7b:62:5d:d7:13:ad:7c:89:f0:f3:64:ed:6f:28:31:d5:22: c3:09:2e:2b:29:3d:e9:aa:d3:7c:87:a3:90:4f:c1:0c:0d:02: 94:25:03:bd:42:b2:83:d2:a1:00:cf:03:e0:c9:f9:1d:07:4a: c6:d0:94:f9:9a:b7:42:f0:e4:bf:c4:87:e4:7b:70:18:d5:9c: a1:7b:02:14:ce:16:97:28:4e:36:20:30:61:4c:91:c5:89:fd: d4:3b:8a:e8:e7:61:eb:ec:96:98:bb:0c:ae:5d:ad:f1:e4:47: aa:52:fe:d7:b6:9c:a6:fe:e1:da:12:1d:61:c9:d1:fe:17:20: 4c:46:d9:0b:ef:82:7e:0b:4a:1c:0e:a2:4c:86:11:d6:65:00: 80:01:c5:e5:c0:01:8c:95:e6:53:2e:35:19:6f:45:63:39:b1: cf:3b:a9:72:cc:7d:2e:9b:9f:ad:48:fa:4e:28:21:15:c0:fc: 99:e5:63:c4:85:5d:70:6a:ea:d4:f7:29:ca:b0:8f:2b:a3:b9: ae:39:78:5b:f9:7a:ff:bb:0d:71:62:0f:7f:9f:4f:b7:e5:b7: 68:55:7a:7b:da:db:44:6e:7b:6d:da:5f:01:e4:4f:3e:3a:4e: ad:38:0d:a7:18:99:e7:60:4a:8e:d1:79:12:b9:88:77:6d:8c: f2:31:21:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjUwNDI2MjIyODExWhcNMjUwNTAzMjIyODExWjAYMRYwFAYD VQQDEw02ODBkNWRmYi0yMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujgqh1aKbb8mHeFGY4Elai3LIn5qltuBfsCiROcc6m/Evnlt3AVWshexWOqW pIF0GOjzvDs0dOD7o1KNdMF68JaspFssXrrvlZzot5OHCnvOYUF3/Ykef7SmxKqd Ohfo1+ZXGsr9jJfkxLQS6iGenoRffpFamQT+deV1Mov/SmEb7AbkR937ycXOl6qp e0uW4WnCiRM0q16YvKzXUsQ43O+JW09Zj5tj/dZnwi+3hywoIPDRjqIpDc4ZVtoG vzo0d4P+dn4oSFNq3NgLGKXPIj0Dcb8bjFps+uNWpTGAeewwCNz/fOrQ/TTGB++f PDHulFAgLgo+HU7RVbHZyoE0FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyH4z8a FuiIWdx8MBOd3Fal/x7OMB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp R242dmVTMUlfYmRwVjZnTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEe2Jd1xOtfInw82Ttbygx1SLDCS4rKT3pqtN8h6OQT8EMDQKUJQO9 QrKD0qEAzwPgyfkdB0rG0JT5mrdC8OS/xIfke3AY1ZyhewIUzhaXKE42IDBhTJHF if3UO4ro52Hr7JaYuwyuXa3x5EeqUv7Xtpym/uHaEh1hydH+FyBMRtkL74J+C0oc DqJMhhHWZQCAAcXlwAGMleZTLjUZb0VjObHPO6lyzH0um5+tSPpOKCEVwPyZ5WPE hV1waurU9ynKsI8ro7muOXhb+Xr/uw1xYg9/n0+35bdoVXp72ttEbntt2l8B5E8+ Ok6tOA2nGJnnYEqO0XkSuYh3bYzyMSFp -----END CERTIFICATE-----Generated at Sun Apr 27 05:32:02 2025 by rpki-client