$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: 7RLmdTiTBgLciVeiXTwQusKABF5rz+N/46ajNMFXbCM= Subject key identifier: 82:AD:77:D0:D7:BE:1E:EA:BA:65:9D:D1:23:1E:9E:DF:15:11:15:00 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02A6 Signing time: Fri 25 Apr 2025 01:15:18 +0000 Manifest this update: Fri 25 Apr 2025 01:15:18 +0000 Manifest next update: Fri 02 May 2025 01:15:18 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: 6QnU1slkRR75/K0dkU3ocXzfleylePKMYqaWoYQsVRk=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Apr 25 01:15:18 2025 GMT Not After : May 2 01:15:18 2025 GMT Subject: CN=680ae226-f3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:a0:f3:55:8a:83:e8:a9:ec:cf:1b:96:62: 25:0d:25:3f:0b:e7:59:ea:e4:bc:dd:d3:9f:99:7e: 99:f1:5a:0e:4c:dc:51:a9:97:7e:ef:8e:b5:96:90: 37:0a:b4:ba:d8:d4:da:9d:aa:28:11:f0:23:52:ba: dc:35:9d:3e:ae:f9:61:d9:87:5d:d4:64:24:b6:bd: f5:82:87:b0:ce:bf:c4:27:33:df:9f:ba:36:7d:a1: 8b:87:bb:c9:3b:5c:73:7f:4e:2e:86:7e:af:36:58: 49:69:70:f3:29:c8:03:70:b8:44:35:1c:f3:77:e5: 42:7f:e3:eb:e6:db:08:98:b8:e5:2c:7a:8e:ab:87: 14:52:15:fc:8f:9e:c7:e7:59:69:3f:9a:ca:71:22: af:8a:e7:4b:37:a0:8c:a0:55:d9:43:32:5f:d5:d6: e6:8c:3e:da:8d:93:97:93:55:9b:36:ca:ab:f8:00: 76:f0:20:5e:45:bd:fb:33:89:68:fe:1f:6f:84:ec: 77:2d:f2:48:06:77:00:87:ea:b0:c9:22:02:53:5b: 00:06:e1:81:1e:a2:d0:a6:ba:bb:b2:1e:f3:2f:da: 5c:fe:83:46:56:e5:a4:85:f6:da:f2:92:d7:32:46: 24:30:90:b3:c1:ae:61:ba:6f:99:95:12:d2:87:75: 55:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AD:77:D0:D7:BE:1E:EA:BA:65:9D:D1:23:1E:9E:DF:15:11:15:00 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:02:f7:be:e5:ce:08:62:a4:c3:72:d3:24:1a:ed:49:53:eb: b3:9a:83:50:ec:77:09:09:85:26:ff:ab:e9:d5:ea:bd:d5:d1: 4f:ea:eb:8c:5f:75:e5:31:15:84:31:e5:99:00:88:ef:3e:5e: 80:63:de:2d:01:22:2c:cb:cf:54:1b:3d:11:b6:ea:57:c2:30: ed:b5:5c:1e:01:a9:19:1d:06:5a:ba:c4:4c:1d:d5:65:20:d0: 5a:8f:f0:22:78:d8:1b:31:30:82:19:74:a9:a5:1c:3c:c1:b1: 3c:23:b6:fe:94:88:a4:b9:c4:c8:58:67:90:af:3b:a3:5e:1c: 80:49:46:6d:4d:57:f3:3f:cf:09:51:56:a5:62:67:60:67:39: e0:f9:27:0b:d3:12:d4:db:fb:e4:b1:0f:c5:32:d5:32:00:0b: e6:62:de:1a:c2:b5:19:06:bf:63:b3:f5:d9:98:41:8c:b6:74: f8:ca:df:11:5f:b1:76:be:62:b2:40:81:e0:5c:f2:e1:db:4f: 25:3e:f3:0f:b2:f8:bb:da:58:59:c6:75:c4:60:86:18:af:71: 9d:94:99:38:a2:76:04:e3:01:ef:fb:8a:a1:d3:a7:df:10:55: 86:b8:a6:81:9f:8c:b3:cd:96:1e:d6:9e:63:78:36:34:59:ed: f2:74:1a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwNDI1MDExNTE4WhcNMjUwNTAyMDExNTE4WjAYMRYwFAYD VQQDEw02ODBhZTIyNi1mM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0ag81WKg+ip7M8blmIlDSU/C+dZ6uS83dOfmX6Z8VoOTNxRqZd+7461lpA3 CrS62NTanaooEfAjUrrcNZ0+rvlh2Ydd1GQktr31goewzr/EJzPfn7o2faGLh7vJ O1xzf04uhn6vNlhJaXDzKcgDcLhENRzzd+VCf+Pr5tsImLjlLHqOq4cUUhX8j57H 51lpP5rKcSKviudLN6CMoFXZQzJf1dbmjD7ajZOXk1WbNsqr+AB28CBeRb37M4lo /h9vhOx3LfJIBncAh+qwySICU1sABuGBHqLQprq7sh7zL9pc/oNGVuWkhfba8pLX MkYkMJCzwa5hum+ZlRLSh3VVMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKtd9DX vh7qumWd0SMent8VERUAMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Ave+5c4IYqTDctMkGu1JU+uzmoNQ7HcJCYUm/6vp1eq91dFP6uuM X3XlMRWEMeWZAIjvPl6AY94tASIsy89UGz0RtupXwjDttVweAakZHQZausRMHdVl INBaj/AieNgbMTCCGXSppRw8wbE8I7b+lIikucTIWGeQrzujXhyASUZtTVfzP88J UValYmdgZzng+ScL0xLU2/vksQ/FMtUyAAvmYt4awrUZBr9js/XZmEGMtnT4yt8R X7F2vmKyQIHgXPLh208lPvMPsvi72lhZxnXEYIYYr3GdlJk4onYE4wHv+4qh06ff EFWGuKaBn4yzzZYe1p5jeDY0We3ydBqw -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:09 2025 by rpki-client