$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: cgok1eHqBYuk9DCyUOum96ZAfyjPOPGr/7iRku0PPu8= Subject key identifier: C4:A1:9A:5B:C2:8A:BC:EF:48:B0:01:9C:CA:95:D3:95:A4:A1:5E:3B Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 083A Signing time: Thu 24 Apr 2025 20:39:09 +0000 Manifest this update: Thu 24 Apr 2025 20:39:08 +0000 Manifest next update: Thu 01 May 2025 20:39:08 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: cdtLi1gVq+mQApgpUpzKND9vQH8+dYwF6g0335j75c4=) 2: C286BE40C4C711EDAFA9AF17C4F9AE02.roa (hash: wm0PciNiC4cbLFQcb4SHn/OMRIvkGpQeYyT8rS6bdpU=) 3: 032132A0E0D011ECAF88A30DC4F9AE02.roa (hash: Oqme3hgS+ErgCZrhOMJFY6E0bgLfBlO2jysH8V+HitY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Apr 24 20:39:08 2025 GMT Not After : May 1 20:39:08 2025 GMT Subject: CN=680aa16c-e63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:66:b0:c9:4b:1a:8c:6d:b6:51:07:3c:9a: cb:08:a2:23:49:0b:cb:35:46:fa:ce:70:f7:76:ef: 35:9c:2b:c4:6f:d1:c2:0f:dd:03:43:e8:9d:64:7d: cb:9a:3f:43:ed:4b:2b:59:25:96:3f:f8:b4:70:21: 4a:c1:4d:2e:0a:5a:92:86:e5:85:3d:9c:18:aa:15: 65:fd:7d:30:e8:c6:ae:c2:c4:69:c1:98:06:69:85: 50:85:37:e0:0d:7a:b6:8d:06:2b:74:b4:9d:2a:b4: 0b:d7:62:eb:bf:e6:f1:94:1f:2a:6a:fc:49:05:a3: 60:3a:e7:31:bf:7f:ff:ee:7d:3a:bc:85:18:6a:71: 75:7c:af:c2:57:0e:d3:8c:93:68:8d:6f:a6:6a:61: 4f:af:c6:31:2d:30:30:15:c5:f0:47:1d:46:c0:5e: ab:ad:eb:0e:b3:56:02:88:bb:3f:47:b2:58:b1:0a: d5:69:b7:2b:e3:60:78:ae:fd:b0:8a:99:65:11:5b: 17:33:db:fb:fc:83:38:49:60:12:c4:5e:55:52:7a: 47:6c:95:89:28:03:5d:25:2b:0b:a0:96:38:70:93: a8:10:f1:2c:68:44:77:36:99:fd:c7:3f:33:4a:c8: 0d:38:58:b0:19:07:09:39:40:77:4f:97:c7:d7:05: 9f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A1:9A:5B:C2:8A:BC:EF:48:B0:01:9C:CA:95:D3:95:A4:A1:5E:3B X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:00:62:ad:4e:ef:5c:96:d3:e3:51:22:69:0c:6d:b8:42:0e: 8c:18:d6:12:81:5b:be:ed:b1:15:f5:a3:4b:ac:d6:be:4c:f1: 0c:17:6a:b6:8f:76:9a:e2:ea:bf:21:79:3d:a6:93:91:90:d8: c3:34:4c:f0:8c:b3:12:aa:31:ce:49:82:93:77:00:81:5d:ac: 2f:82:32:80:31:2a:8e:bb:59:2a:50:68:c1:bf:f1:3b:26:24: 6b:00:9e:56:9e:36:54:a0:f1:95:dc:f2:13:ea:9d:ad:54:cb: c0:0c:45:95:ef:c4:99:31:bf:e9:17:54:29:fc:8d:7a:56:d1: 4c:f4:ab:92:ff:7d:27:78:2d:80:a8:82:e8:ca:49:06:5c:6e: 71:29:84:0f:9b:cd:fc:1f:be:15:a6:57:53:6a:07:09:6b:9f: 74:97:b9:6e:d8:ea:32:18:c0:07:f3:ef:0b:a2:84:86:15:d8: 57:24:c8:ba:73:ef:b2:0e:66:90:1f:b2:65:2d:2c:0d:e4:27: 9f:04:ef:32:d8:a4:80:95:09:8a:43:80:02:80:6f:6c:e8:97: 74:75:3f:1c:e2:ec:be:35:a9:a2:1c:03:ab:cf:9d:ee:df:d4: 44:ba:5a:4c:fc:b1:07:03:5e:30:32:dd:89:be:c8:fa:91:e2: cb:36:cf:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwNDI0MjAzOTA4WhcNMjUwNTAxMjAzOTA4WjAYMRYwFAYD VQQDEw02ODBhYTE2Yy1lNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE9msMlLGoxttlEHPJrLCKIjSQvLNUb6znD3du81nCvEb9HCD90DQ+idZH3L mj9D7UsrWSWWP/i0cCFKwU0uClqShuWFPZwYqhVl/X0w6MauwsRpwZgGaYVQhTfg DXq2jQYrdLSdKrQL12Lrv+bxlB8qavxJBaNgOucxv3//7n06vIUYanF1fK/CVw7T jJNojW+mamFPr8YxLTAwFcXwRx1GwF6rresOs1YCiLs/R7JYsQrVabcr42B4rv2w ipllEVsXM9v7/IM4SWASxF5VUnpHbJWJKANdJSsLoJY4cJOoEPEsaER3Npn9xz8z SsgNOFiwGQcJOUB3T5fH1wWfNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMShmlvC irzvSLABnMqV05WkoV47MB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXAGKtTu9cltPjUSJpDG24Qg6MGNYSgVu+7bEV9aNLrNa+TPEMF2q2 j3aa4uq/IXk9ppORkNjDNEzwjLMSqjHOSYKTdwCBXawvgjKAMSqOu1kqUGjBv/E7 JiRrAJ5WnjZUoPGV3PIT6p2tVMvADEWV78SZMb/pF1Qp/I16VtFM9KuS/30neC2A qILoykkGXG5xKYQPm838H74VpldTagcJa590l7lu2OoyGMAH8+8LooSGFdhXJMi6 c++yDmaQH7JlLSwN5CefBO8y2KSAlQmKQ4ACgG9s6Jd0dT8c4uy+NamiHAOrz53u 39REulpM/LEHA14wMt2Jvsj6keLLNs/J -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:12 2025 by rpki-client