$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft File: _vLBxOoJZEd1FMGqlG5sQXeNBr8.mft (raw, json) Hash identifier: 4yg92tA3S7rpiAG60jpztYUosJS1+jE5x1OZeYydfZM= Subject key identifier: 7E:F2:13:54:0A:A5:4A:2E:F9:4F:A2:D1:06:BE:E1:76:C7:97:00:06 Authority key identifier: FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF Certificate issuer: /CN=A91D298D/serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft Manifest number: 0819 Signing time: Thu 24 Apr 2025 20:56:01 +0000 Manifest this update: Thu 24 Apr 2025 20:56:00 +0000 Manifest next update: Thu 01 May 2025 20:56:00 +0000 Files and hashes: 1: _vLBxOoJZEd1FMGqlG5sQXeNBr8.crl (hash: QCxqI/0nT18O7t9bTHAAKSlanmsKdQ21mRY2ITjQdAI=) 2: 65519ACC506C11EC99354984C4F9AE02.roa (hash: nEa6jfXtxG9N2Xq8i5UVfOUP23F8VB7FknoSsQg1RJ0=) 3: 01BB1B8E7C0411EFB0D29158C4F9AE02.roa (hash: KU0OYgNotYA3UtDO5hlxYlQJ813PAymWu54BIJPXlUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Validity Not Before: Apr 24 20:56:00 2025 GMT Not After : May 1 20:56:00 2025 GMT Subject: CN=680aa560-3735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:33:85:85:ae:3d:86:1a:03:74:ad:b7:26:ab: 33:1b:ca:e6:5d:b8:08:29:6d:6e:bf:cb:f0:0e:0a: b5:46:67:d1:a8:24:3d:8b:65:99:85:f8:6d:91:e1: 18:f3:4a:45:57:3e:07:9e:d5:9e:04:43:0c:0d:c6: e3:13:87:2d:d9:69:73:08:73:27:59:10:b6:b8:16: 19:c3:e8:4b:c7:14:cc:af:9d:16:c1:4f:bc:a8:32: dc:d9:a0:dd:75:9a:dd:5d:b0:e6:f4:60:81:1a:73: 2d:94:fc:74:19:1b:0a:f6:57:6e:84:6d:7d:25:30: bd:34:fc:8c:d4:8c:f1:a7:f0:73:1b:1b:d2:2b:d9: 19:db:93:aa:ca:9b:41:6b:38:e6:8e:42:9f:20:42: 8a:49:25:b6:cb:dd:c3:ff:30:17:84:fd:22:3d:41: 7b:0c:5e:6e:ee:8a:66:db:dd:ac:72:b3:24:71:be: 6f:24:6d:2f:9b:da:23:38:b8:a7:2a:76:1a:55:94: 4e:34:86:90:98:6a:46:88:76:ff:90:0a:61:08:29: 39:f6:04:c9:f2:fc:28:e1:51:c4:fb:3f:9a:49:6e: ec:cc:b7:4b:d7:94:ec:02:a2:3d:b9:ca:da:e1:09: fa:ac:0f:a8:9a:46:83:4d:62:f3:8f:e9:4f:a4:31: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F2:13:54:0A:A5:4A:2E:F9:4F:A2:D1:06:BE:E1:76:C7:97:00:06 X509v3 Authority Key Identifier: keyid:FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ab:df:d8:1b:9b:67:06:66:63:15:0d:b6:e3:a9:fd:25:3e: 64:58:33:2d:20:35:a0:2b:0a:30:97:41:38:65:a9:3a:43:98: e8:97:1b:72:38:d6:d6:20:d1:34:65:e5:50:d2:8d:d1:cd:de: 9d:1b:32:37:4e:3c:4e:ba:ae:ac:26:c5:d4:f6:17:8e:2a:34: af:a7:d1:e6:e1:1a:ac:b5:e4:63:03:50:82:f9:1a:82:cb:71: a0:97:96:74:e7:01:e7:e7:a4:4b:f3:d2:19:6c:c8:98:d2:3b: cb:c0:6a:d7:8f:d8:e8:92:c5:cf:aa:cb:3e:28:27:5f:89:08: 17:24:9c:aa:95:eb:41:3c:fd:d7:2d:04:bc:c1:f9:cf:65:51: 41:fa:64:31:2e:12:e2:5b:e4:6f:24:8c:c1:db:8b:a2:ee:73: 68:90:0c:dc:64:0b:d8:33:1e:f9:7b:f9:90:8c:05:33:c7:e0: 81:cb:f0:d9:92:00:09:91:ec:1a:69:c2:b5:ce:70:38:02:17: e9:cb:bf:4a:15:94:12:e0:65:c7:60:f6:11:61:56:c5:3e:18: 8c:f6:57:1f:4d:87:92:33:6d:1c:8d:d7:e7:42:c4:14:bf:b4: a9:cf:f9:09:03:41:0b:45:4b:79:7e:d6:24:7a:29:a0:24:a4: 83:3b:36:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKEZFRjJDMUM0RUEwOTY0NDc3NTE0QzFBQTk0NkU2QzQx Nzc4RDA2QkYwHhcNMjUwNDI0MjA1NjAwWhcNMjUwNTAxMjA1NjAwWjAYMRYwFAYD VQQDEw02ODBhYTU2MC0zNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TOFha49hhoDdK23JqszG8rmXbgIKW1uv8vwDgq1RmfRqCQ9i2WZhfhtkeEY 80pFVz4HntWeBEMMDcbjE4ct2WlzCHMnWRC2uBYZw+hLxxTMr50WwU+8qDLc2aDd dZrdXbDm9GCBGnMtlPx0GRsK9lduhG19JTC9NPyM1Izxp/BzGxvSK9kZ25OqyptB azjmjkKfIEKKSSW2y93D/zAXhP0iPUF7DF5u7opm292scrMkcb5vJG0vm9ojOLin KnYaVZRONIaQmGpGiHb/kAphCCk59gTJ8vwo4VHE+z+aSW7szLdL15TsAqI9ucra 4Qn6rA+omkaDTWLzj+lPpDFrrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7yE1QK pUou+U+i0Qa+4XbHlwAGMB8GA1UdIwQYMBaAFP7ywcTqCWRHdRTBqpRubEF3jQa/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8zMzdBNjQzMkYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9fdkxCeE9vSlpFZDFGTUdxbEc1c1FYZU5C cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL192TEJ4T29KWkVkMUZNR3FsRzVzUVhlTkJyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8zMzdBNjQzMkYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9fdkxCeE9vSlpF ZDFGTUdxbEc1c1FYZU5CcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXq9/YG5tnBmZjFQ2246n9JT5kWDMtIDWgKwowl0E4Zak6Q5jolxty ONbWINE0ZeVQ0o3Rzd6dGzI3TjxOuq6sJsXU9heOKjSvp9Hm4RqsteRjA1CC+RqC y3Ggl5Z05wHn56RL89IZbMiY0jvLwGrXj9joksXPqss+KCdfiQgXJJyqletBPP3X LQS8wfnPZVFB+mQxLhLiW+RvJIzB24ui7nNokAzcZAvYMx75e/mQjAUzx+CBy/DZ kgAJkewaacK1znA4Ahfpy79KFZQS4GXHYPYRYVbFPhiM9lcfTYeSM20cjdfnQsQU v7Spz/kJA0ELRUt5ftYkeimgJKSDOzZp -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:57 2025 by rpki-client