$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: SkQxCf9BnsSFwjQYf/ORZAnKju0hJc7Agvl23dv9Y+A= Subject key identifier: 9B:51:34:A3:9E:E7:35:39:28:85:4C:AF:EF:58:96:EE:C3:95:F2:89 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 04CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 04C4 Signing time: Thu 24 Apr 2025 23:36:53 +0000 Manifest this update: Thu 24 Apr 2025 23:36:53 +0000 Manifest next update: Thu 01 May 2025 23:36:53 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: sOk8yBMAiRmUbWFO6CK04lj91rWpspyVN3h+3Sa1870=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: PTzWu6eYDTTqoEV88MOR131OkkMKAZ5jVAGwccli/Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Apr 24 23:36:53 2025 GMT Not After : May 1 23:36:53 2025 GMT Subject: CN=680acb15-aaa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:16:c0:b3:b5:15:10:5f:8a:af:0c:ac:89: 23:20:66:ad:37:1f:9b:c6:f3:e9:c8:ae:82:27:43: 9f:26:2b:7f:c8:1a:72:3b:fc:92:89:5b:67:9a:ad: c7:00:1f:e7:c0:13:2a:51:2f:48:8a:a7:48:67:9c: b4:c3:02:92:69:09:08:3b:e6:2c:68:79:46:0c:9c: ac:da:16:a4:ed:5d:60:09:0a:f8:9a:d7:da:34:d4: 60:a0:a2:84:f9:aa:63:b1:95:38:1d:51:f0:fd:a4: ee:f6:c5:f4:74:38:b2:e1:e2:7b:a1:3a:aa:58:27: 24:7e:db:b5:27:69:bb:fa:bc:95:88:7b:f4:32:c7: b4:6d:83:56:f7:aa:10:dd:14:13:0f:77:91:80:51: 75:8b:d1:57:49:50:f8:45:7a:a7:17:f4:dc:a1:44: 0a:3c:90:c0:8a:78:49:8f:91:51:15:bb:53:0c:8a: 46:00:86:c7:53:df:37:d4:4f:f9:30:f4:1f:4d:63: 9b:c4:2b:24:3c:bb:25:81:3a:75:1b:84:ad:d7:e2: 7b:78:40:37:f0:ca:ab:93:4c:e2:88:08:11:3e:fb: c7:f1:8f:2a:4c:88:c4:af:9b:43:2d:33:8b:10:57: 46:20:69:d9:71:d0:7c:42:a9:91:ec:de:c5:b8:f4: a5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:51:34:A3:9E:E7:35:39:28:85:4C:AF:EF:58:96:EE:C3:95:F2:89 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:8c:ba:ab:67:82:4a:66:92:b5:ca:c3:e2:f1:32:a4:eb:d4: c1:47:36:d5:db:f6:6f:22:21:25:5d:bd:7a:74:0d:be:47:5e: b2:3b:f4:cb:60:4d:a7:bc:41:8d:6b:14:22:8a:b7:29:79:51: be:3f:af:02:8a:1b:09:a4:e8:d6:5d:1b:0d:1d:bc:cb:70:52: 41:b7:71:fd:be:93:36:f6:8e:9f:85:d8:1a:d3:49:df:a6:a7: 87:ff:6f:be:00:14:51:04:f8:21:13:ac:66:5f:8a:2c:27:52: d8:97:87:f8:b8:5f:a6:42:57:cc:5a:f2:f7:9e:55:c7:61:16: 76:e8:28:d6:08:9e:a7:2a:91:16:85:a6:37:cf:32:4a:12:d7: 82:69:a5:81:1c:20:7e:cc:f9:e2:3c:c0:03:8b:0c:eb:dd:f1: 59:62:6d:18:03:a4:6a:e6:2f:6b:d1:8b:45:d1:9b:dd:bc:a3: ba:9f:2f:b4:54:c4:a5:25:d1:6e:ea:52:54:df:3c:de:80:55: b0:47:38:e5:72:e0:dc:39:6e:9b:5b:0c:56:e6:50:80:3e:34: 19:1b:91:c3:fb:1c:4c:f3:9f:ea:d9:7e:a2:96:e5:c3:99:87: f3:b3:49:15:bf:7e:d9:fd:c0:87:d2:8e:d0:fc:16:62:f8:5b: 60:f2:6b:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwNDI0MjMzNjUzWhcNMjUwNTAxMjMzNjUzWjAYMRYwFAYD VQQDEw02ODBhY2IxNS1hYWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPgWwLO1FRBfiq8MrIkjIGatNx+bxvPpyK6CJ0OfJit/yBpyO/ySiVtnmq3H AB/nwBMqUS9IiqdIZ5y0wwKSaQkIO+YsaHlGDJys2hak7V1gCQr4mtfaNNRgoKKE +apjsZU4HVHw/aTu9sX0dDiy4eJ7oTqqWCckftu1J2m7+ryViHv0Mse0bYNW96oQ 3RQTD3eRgFF1i9FXSVD4RXqnF/TcoUQKPJDAinhJj5FRFbtTDIpGAIbHU9831E/5 MPQfTWObxCskPLslgTp1G4St1+J7eEA38Mqrk0ziiAgRPvvH8Y8qTIjEr5tDLTOL EFdGIGnZcdB8QqmR7N7FuPSlUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtRNKOe 5zU5KIVMr+9Ylu7DlfKJMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJjLqrZ4JKZpK1ysPi8TKk69TBRzbV2/ZvIiElXb16dA2+R16yO/TL YE2nvEGNaxQiircpeVG+P68CihsJpOjWXRsNHbzLcFJBt3H9vpM29o6fhdga00nf pqeH/2++ABRRBPghE6xmX4osJ1LYl4f4uF+mQlfMWvL3nlXHYRZ26CjWCJ6nKpEW haY3zzJKEteCaaWBHCB+zPniPMADiwzr3fFZYm0YA6Rq5i9r0YtF0ZvdvKO6ny+0 VMSlJdFu6lJU3zzegFWwRzjlcuDcOW6bWwxW5lCAPjQZG5HD+xxM85/q2X6iluXD mYfzs0kVv37Z/cCH0o7Q/BZi+Ftg8muI -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:47 2025 by rpki-client