$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft File: _rhjYz3rcT99klaMcXmFhLC61mY.mft (raw, json) Hash identifier: DienSTZb5fOZHZoby3PU13aj8jUITQX7zu+Arbr0MWY= Subject key identifier: 67:D5:DD:9B:B2:5C:18:2A:82:0C:D4:F7:8D:DB:C1:45:75:0D:3A:5E Authority key identifier: FE:B8:63:63:3D:EB:71:3F:7D:92:56:8C:71:79:85:84:B0:BA:D6:66 Certificate issuer: /CN=A91D50A2/serialNumber=FEB863633DEB713F7D92568C71798584B0BAD666 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft Manifest number: DC Signing time: Fri 25 Apr 2025 04:34:49 +0000 Manifest this update: Fri 25 Apr 2025 04:34:49 +0000 Manifest next update: Fri 02 May 2025 04:34:49 +0000 Files and hashes: 1: _rhjYz3rcT99klaMcXmFhLC61mY.crl (hash: xBaOa/xhLWUJWvR+cinJ+2IiRqQNfjYgU1tkNnbTXQE=) 2: 249FA95E9D4111EFA3DA7F75C4F9AE02.roa (hash: RjAnkgsXYLCqoCPEa7Dh8sDLDDkGHUa+8B9sBZhUxd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.crl rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=FEB863633DEB713F7D92568C71798584B0BAD666 Validity Not Before: Apr 25 04:34:49 2025 GMT Not After : May 2 04:34:49 2025 GMT Subject: CN=680b10e9-6f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f0:b6:85:60:21:c1:83:41:62:66:c7:e6:76: d2:fc:53:e0:3f:6c:cd:14:ce:fa:c3:b0:b3:c0:c9: 6d:8b:f3:bf:7e:b1:65:c5:66:e8:1c:c4:8a:1a:a2: 13:8e:3d:f7:a6:d2:d2:7e:1a:e4:80:cf:48:67:4c: 52:28:62:cd:b0:b1:04:64:b5:6a:a1:7b:63:28:54: 9e:e6:82:9d:17:d9:a1:ad:da:31:ec:99:46:82:38: a8:f2:36:6f:5a:03:4b:17:64:d8:4f:37:f3:ca:64: bb:3f:e0:aa:0a:22:96:05:62:e5:a7:ab:82:e4:8c: 60:97:2f:e0:9e:6c:f2:3d:5e:ed:c9:ef:74:e7:11: 14:ec:a5:e7:f1:0f:b8:49:dd:53:1c:f9:11:cb:61: ba:86:fa:09:07:37:ff:41:ed:cb:90:73:20:39:ee: 49:b0:09:fb:5e:09:09:21:e2:ca:aa:92:dd:78:07: 8e:72:97:eb:1a:47:1b:b2:45:a1:60:48:27:f9:26: d9:ed:35:67:04:b3:19:09:fe:1e:f9:a1:39:b2:c2: 55:25:37:68:2c:c6:be:4a:b8:89:cf:01:e1:85:30: 37:f3:2d:82:a1:bd:4a:82:37:52:f3:a6:02:2b:ee: 28:4d:0e:82:6d:55:88:ec:8f:67:09:e1:65:28:90: ae:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D5:DD:9B:B2:5C:18:2A:82:0C:D4:F7:8D:DB:C1:45:75:0D:3A:5E X509v3 Authority Key Identifier: keyid:FE:B8:63:63:3D:EB:71:3F:7D:92:56:8C:71:79:85:84:B0:BA:D6:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:cb:86:3b:ff:a6:4a:9d:ae:a6:22:0d:2a:77:25:06:72:ec: 55:ca:5f:ab:7c:2d:8c:38:4d:ce:ce:40:31:0c:84:fd:4b:b2: 26:ca:2e:17:c0:59:c3:9f:f7:d2:1f:f2:29:3f:cd:17:a4:42: 05:8a:1f:53:72:74:8a:3e:d7:f0:cc:a1:c8:e1:3a:44:5e:1a: c2:a8:dd:b9:6b:24:ce:2e:f5:bb:21:4e:b7:21:1d:b8:a1:45: b8:27:ce:bc:d9:2b:a4:d6:52:13:50:c9:67:36:61:08:12:e0: a6:11:b1:b8:58:ed:5e:3c:bb:d1:b7:47:8d:c1:94:1b:2f:33: 66:70:13:67:23:d7:41:e3:dc:d5:4f:28:aa:e2:e8:df:e2:f1: 1c:75:5a:19:a3:d2:a2:66:dc:e5:80:35:ab:fb:25:50:1a:da: 60:8a:0a:5f:ff:7a:28:01:1d:b0:4d:f5:38:de:ba:49:88:4f: 31:5f:98:dd:32:99:af:a1:dd:71:ae:95:e1:34:15:31:2b:5f: d1:55:b0:22:88:03:cf:9b:55:45:37:62:f6:a4:ae:fa:3d:55: 6c:db:1b:f4:c1:88:87:38:71:f9:9b:1b:9e:be:29:43:16:2a: ec:ef:fd:ad:e7:21:3c:1f:37:8e:3d:d6:d8:ab:64:b3:fa:fd: 61:c4:3c:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKEZFQjg2MzYzM0RFQjcxM0Y3RDkyNTY4QzcxNzk4NTg0 QjBCQUQ2NjYwHhcNMjUwNDI1MDQzNDQ5WhcNMjUwNTAyMDQzNDQ5WjAYMRYwFAYD VQQDEw02ODBiMTBlOS02ZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PC2hWAhwYNBYmbH5nbS/FPgP2zNFM76w7CzwMlti/O/frFlxWboHMSKGqIT jj33ptLSfhrkgM9IZ0xSKGLNsLEEZLVqoXtjKFSe5oKdF9mhrdox7JlGgjio8jZv WgNLF2TYTzfzymS7P+CqCiKWBWLlp6uC5Ixgly/gnmzyPV7tye905xEU7KXn8Q+4 Sd1THPkRy2G6hvoJBzf/Qe3LkHMgOe5JsAn7XgkJIeLKqpLdeAeOcpfrGkcbskWh YEgn+SbZ7TVnBLMZCf4e+aE5ssJVJTdoLMa+SriJzwHhhTA38y2Cob1KgjdS86YC K+4oTQ6CbVWI7I9nCeFlKJCulQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfV3Zuy XBgqggzU943bwUV1DTpeMB8GA1UdIwQYMBaAFP64Y2M963E/fZJWjHF5hYSwutZm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FNEM4ODUxMkQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9fcmhqWXozcmNUOTlrbGFNY1htRmhMQzYx bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19yaGpZejNyY1Q5OWtsYU1jWG1GaExDNjFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FNEM4ODUxMkQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9fcmhqWXozcmNU OTlrbGFNY1htRmhMQzYxbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4y4Y7/6ZKna6mIg0qdyUGcuxVyl+rfC2MOE3OzkAxDIT9S7Imyi4X wFnDn/fSH/IpP80XpEIFih9TcnSKPtfwzKHI4TpEXhrCqN25ayTOLvW7IU63IR24 oUW4J8682Suk1lITUMlnNmEIEuCmEbG4WO1ePLvRt0eNwZQbLzNmcBNnI9dB49zV Tyiq4ujf4vEcdVoZo9KiZtzlgDWr+yVQGtpgigpf/3ooAR2wTfU43rpJiE8xX5jd Mpmvod1xrpXhNBUxK1/RVbAiiAPPm1VFN2L2pK76PVVs2xv0wYiHOHH5mxuevilD Firs7/2t5yE8HzeOPdbYq2Sz+v1hxDyV -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:33 2025 by rpki-client