$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: Wu9MQbOBAxsaVfxCYrxIFyk8JIMIb/WT9Gg6mDAWLck= Subject key identifier: D2:42:46:F5:44:B6:E6:BC:D1:A5:8E:E4:B5:1C:CC:60:83:DE:CA:56 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 0242 Signing time: Fri 25 Apr 2025 01:46:37 +0000 Manifest this update: Fri 25 Apr 2025 01:46:37 +0000 Manifest next update: Fri 02 May 2025 01:46:37 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: ullJmNsSUb8epkVGIQETPIz0kwwYtMFUEtBn7YcOAAo=) 2: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 3: 8673F05C816911EF9022F40CC4F9AE02.roa (hash: Lvob14CywzAMuxThU8EVo51F2cECjcbnduJBtYIJSBI=) 4: 4E65B594D35711EEB8F04828C4F9AE02.roa (hash: oF0KHM0s6qEdjrzJyCovkn3VK6S/rVe2wxmJbXBONNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Apr 25 01:46:37 2025 GMT Not After : May 2 01:46:37 2025 GMT Subject: CN=680ae97d-4007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f0:d8:d1:ed:40:90:3b:9f:8f:e6:af:52:8c: f9:64:3a:47:78:f4:63:c4:a4:5c:b8:b4:c1:0c:8d: aa:5c:2b:ca:d5:b5:e5:36:e4:b8:a4:3d:40:7c:2a: eb:2f:b1:30:86:6f:56:0a:69:14:9a:21:c7:b3:7d: 9e:45:b7:21:a4:ce:1d:5a:ae:58:09:49:8c:ab:c3: a0:48:36:e2:e5:aa:b4:6d:c6:e0:64:ca:34:42:49: bd:b9:e8:6f:2f:9a:58:4d:f6:ec:4a:fc:2e:36:5e: 23:6f:29:0c:67:f3:fd:33:17:db:e4:fd:c5:54:08: 79:1f:10:06:c8:5a:42:f0:48:83:eb:e3:5a:da:43: a7:e5:8a:8c:5c:af:9f:b2:af:96:a0:ca:f9:cb:aa: a3:98:e3:1f:19:ee:a6:96:a9:84:ce:91:b8:1e:7c: 83:75:aa:fc:78:34:26:7e:d8:6f:00:51:19:22:73: 98:07:e1:d8:19:95:e7:89:67:3a:4b:ad:0a:e4:3c: 2c:2a:cc:e9:ab:44:5e:39:99:d8:76:95:3a:66:82: 02:ca:77:00:bf:9c:2e:fd:d2:86:0f:9c:91:84:94: 07:68:a0:3f:c6:63:b6:13:64:26:1f:7a:60:c5:da: d0:72:c1:80:a0:db:59:c7:17:cc:eb:3e:5d:08:5c: e1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:42:46:F5:44:B6:E6:BC:D1:A5:8E:E4:B5:1C:CC:60:83:DE:CA:56 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:00:a3:f6:7c:0b:b7:a5:bd:69:1f:9a:c8:70:a8:bd:b1:81: 0b:14:4d:2a:6b:a2:ba:bd:4f:14:3f:df:2f:78:12:e2:33:ff: 4d:eb:06:bf:01:bc:ac:cb:d2:d5:f2:ac:34:67:26:ec:68:54: 51:89:09:3a:13:bf:65:de:bd:0f:df:68:07:7b:d4:b3:11:d0: 0e:4b:85:48:71:7c:6f:74:52:7f:85:1a:c6:42:5e:a0:53:71: 69:a8:4a:56:4c:db:49:39:58:14:13:02:19:7f:51:16:72:6d: 7a:72:64:ca:fd:83:d5:0c:e8:db:ef:ca:29:cf:d3:bd:ff:08: 21:8e:9b:fe:3d:83:9b:31:62:65:13:a0:2a:0e:b2:aa:63:95: 6c:b0:14:55:e8:7d:6e:1d:25:aa:1f:bf:a4:ff:1a:bb:cf:f4: fc:4f:45:fb:ad:0a:71:d6:48:b7:1c:97:85:6b:c9:93:9d:42: 98:cb:80:13:cc:00:c6:66:d6:4f:65:15:89:4a:09:08:f5:6e: 73:2e:21:3c:53:44:8c:84:6f:03:19:b6:bc:59:08:29:93:f7: 5d:54:3d:f5:a8:d4:d4:ac:f1:a6:0c:3f:c8:19:c8:60:fe:80: 72:a0:19:ec:a9:d7:48:75:79:ee:d2:77:90:23:7e:50:70:31: 92:88:3d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwNDI1MDE0NjM3WhcNMjUwNTAyMDE0NjM3WjAYMRYwFAYD VQQDEw02ODBhZTk3ZC00MDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/DY0e1AkDufj+avUoz5ZDpHePRjxKRcuLTBDI2qXCvK1bXlNuS4pD1AfCrr L7Ewhm9WCmkUmiHHs32eRbchpM4dWq5YCUmMq8OgSDbi5aq0bcbgZMo0Qkm9uehv L5pYTfbsSvwuNl4jbykMZ/P9Mxfb5P3FVAh5HxAGyFpC8EiD6+Na2kOn5YqMXK+f sq+WoMr5y6qjmOMfGe6mlqmEzpG4HnyDdar8eDQmfthvAFEZInOYB+HYGZXniWc6 S60K5DwsKszpq0ReOZnYdpU6ZoICyncAv5wu/dKGD5yRhJQHaKA/xmO2E2QmH3pg xdrQcsGAoNtZxxfM6z5dCFzhXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJCRvVE tua80aWO5LUczGCD3spWMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4AKP2fAu3pb1pH5rIcKi9sYELFE0qa6K6vU8UP98veBLiM/9N6wa/ Abysy9LV8qw0ZybsaFRRiQk6E79l3r0P32gHe9SzEdAOS4VIcXxvdFJ/hRrGQl6g U3FpqEpWTNtJOVgUEwIZf1EWcm16cmTK/YPVDOjb78opz9O9/wghjpv+PYObMWJl E6AqDrKqY5VssBRV6H1uHSWqH7+k/xq7z/T8T0X7rQpx1ki3HJeFa8mTnUKYy4AT zADGZtZPZRWJSgkI9W5zLiE8U0SMhG8DGba8WQgpk/ddVD31qNTUrPGmDD/IGchg /oByoBnsqddIdXnu0neQI35QcDGSiD0b -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:46 2025 by rpki-client