$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: JLMHzFcWA3+NKKf8VWUFSGb2dC92GNUqSnK5f9z0VmA= Subject key identifier: D1:88:18:D4:5C:CE:1C:81:1B:89:B8:17:4D:4B:34:DA:54:A3:1B:C1 Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 07B0 Signing time: Sat 26 Apr 2025 20:53:01 +0000 Manifest this update: Sat 26 Apr 2025 20:53:01 +0000 Manifest next update: Sat 03 May 2025 20:53:01 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: wvCP+8tpIRoijhwS2KKXQUUqRWFwy3FCJiyrhgTOIiY=) 2: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: F2B6eTQtjw4DMTGhIIRc21e5xRW7fmJOpub38olCp9w=) 3: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: d0oN/FUNzNpOKmQI6ds/0v5d1ZE90v5NzlRPE14knFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Apr 26 20:53:01 2025 GMT Not After : May 3 20:53:01 2025 GMT Subject: CN=680d47ad-ea68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4d:80:86:f5:f5:27:b5:69:e9:a4:98:21:77: 82:79:32:9f:a4:24:e7:c0:c7:3e:0f:39:09:4f:50: d9:77:03:01:42:45:9a:10:93:e2:47:bb:43:80:ee: e0:7f:15:4b:cd:c9:9b:00:88:87:94:8b:dd:c5:52: 6c:1f:9b:0a:e4:6c:a2:45:cc:bd:2b:57:6f:4d:e8: 87:7b:d7:a6:cc:95:04:11:9d:8e:e0:51:bc:a3:5f: 2d:36:1c:f0:88:c0:da:38:54:9c:34:c1:af:f2:e3: af:ef:de:92:0b:ec:34:5c:54:ac:af:42:b0:f4:65: 0e:f1:8b:d6:88:be:95:fb:60:84:b3:49:b0:67:f9: 88:3f:3a:ac:df:af:97:97:ea:aa:71:dd:fe:94:b7: 2e:80:57:ed:e7:2a:79:9e:d9:e5:e3:52:c7:e8:0b: 77:43:b3:17:df:3f:71:5a:f7:0e:3c:9d:53:6d:b4: a0:fe:9a:33:ba:00:76:3c:78:12:e3:af:af:5c:af: 2f:79:8d:b6:4a:71:56:a7:f9:1c:87:77:04:05:c1: 99:76:20:75:fd:be:c5:26:06:85:31:a5:ea:b3:91: 3d:db:7c:b2:80:95:5f:8b:8f:49:06:9c:d8:7a:0d: 5c:22:bf:b3:1f:41:fa:0f:92:06:a2:07:42:82:e4: 54:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:88:18:D4:5C:CE:1C:81:1B:89:B8:17:4D:4B:34:DA:54:A3:1B:C1 X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:5d:f5:7a:33:74:10:fd:ca:0a:95:3e:11:f6:86:fc:9b:3c: 01:14:66:8f:3b:d6:b4:34:c8:55:c1:ff:8c:f7:4d:06:65:71: 7e:33:05:a6:33:87:b7:de:af:5c:5e:44:06:78:1c:44:b7:7c: ba:78:19:e5:69:2d:fa:5f:44:44:c8:10:d1:cc:3c:15:16:8a: d9:13:23:4a:db:d0:67:cb:7c:b1:1d:fe:70:6f:f2:0b:74:0a: 8c:22:af:a6:34:3a:a8:ff:a0:aa:02:d0:67:02:7b:49:d2:db: 11:64:06:f9:5d:59:8e:01:38:ab:26:c7:05:89:dd:47:61:27: bf:0b:a4:22:b9:55:a3:a7:a4:97:2a:ec:22:d2:97:95:67:d2: 99:e6:66:a1:7c:2d:ed:cd:53:64:e3:dc:bd:b5:39:95:6e:01: 54:0e:61:40:18:de:d9:7d:8e:72:2a:39:41:fd:8c:be:8c:71: 9e:97:fc:10:58:8f:6d:14:43:ac:dc:62:09:43:6a:17:ec:71: d1:fc:11:8d:0d:a2:e2:58:98:a6:ce:20:7d:70:50:fe:6d:83: 92:c6:30:6d:28:49:b6:32:e3:75:81:d5:9b:35:47:ae:4c:48: 4d:69:55:1b:8e:d7:52:d6:d7:7d:3d:96:01:39:71:6e:28:b0: 7e:f8:e7:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjUwNDI2MjA1MzAxWhcNMjUwNTAzMjA1MzAxWjAYMRYwFAYD VQQDEw02ODBkNDdhZC1lYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE2AhvX1J7Vp6aSYIXeCeTKfpCTnwMc+DzkJT1DZdwMBQkWaEJPiR7tDgO7g fxVLzcmbAIiHlIvdxVJsH5sK5GyiRcy9K1dvTeiHe9emzJUEEZ2O4FG8o18tNhzw iMDaOFScNMGv8uOv796SC+w0XFSsr0Kw9GUO8YvWiL6V+2CEs0mwZ/mIPzqs36+X l+qqcd3+lLcugFft5yp5ntnl41LH6At3Q7MX3z9xWvcOPJ1TbbSg/pozugB2PHgS 46+vXK8veY22SnFWp/kch3cEBcGZdiB1/b7FJgaFMaXqs5E923yygJVfi49JBpzY eg1cIr+zH0H6D5IGogdCguRUUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGIGNRc zhyBG4m4F01LNNpUoxvBMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4XfV6M3QQ/coKlT4R9ob8mzwBFGaPO9a0NMhVwf+M900GZXF+MwWm M4e33q9cXkQGeBxEt3y6eBnlaS36X0REyBDRzDwVForZEyNK29Bny3yxHf5wb/IL dAqMIq+mNDqo/6CqAtBnAntJ0tsRZAb5XVmOATirJscFid1HYSe/C6QiuVWjp6SX Kuwi0peVZ9KZ5mahfC3tzVNk49y9tTmVbgFUDmFAGN7ZfY5yKjlB/Yy+jHGel/wQ WI9tFEOs3GIJQ2oX7HHR/BGNDaLiWJimziB9cFD+bYOSxjBtKEm2MuN1gdWbNUeu TEhNaVUbjtdS1td9PZYBOXFuKLB++Of3 -----END CERTIFICATE-----Generated at Sun Apr 27 00:25:32 2025 by rpki-client