$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: niclyntL1QBi3vVoVwNv1T9Fh27uXViaqSTdmKLB3J8= Subject key identifier: F0:7E:7E:A6:AE:58:BB:69:72:26:F2:85:A4:33:42:86:AC:53:8F:29 Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 01CF Signing time: Fri 25 Apr 2025 02:00:30 +0000 Manifest this update: Fri 25 Apr 2025 02:00:30 +0000 Manifest next update: Fri 02 May 2025 02:00:30 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: jGpKU/XYkrCF9x3VJH9C15RdrXhfcKFSl/OOi/QYXlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Apr 25 02:00:30 2025 GMT Not After : May 2 02:00:30 2025 GMT Subject: CN=680aecbe-3b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:30:8f:30:b3:4f:37:e0:3b:f5:28:fb:7d:81: e1:cd:5a:d5:dd:d0:a3:5e:9a:73:7b:f7:4e:e9:c4: a3:e2:d3:29:4f:ae:85:76:05:35:4c:a8:df:c4:08: ef:1a:88:36:c4:05:ec:4b:41:0a:05:75:02:3f:41: f7:9d:f4:c4:eb:b6:df:db:61:88:1f:8b:fa:aa:3b: 56:85:18:78:3e:76:29:3c:7a:67:83:ed:12:6b:97: 0f:96:2c:5e:61:c8:5c:31:35:dd:40:26:04:c9:36: b3:a8:a2:6d:3f:7a:1c:a0:46:c6:18:5d:7a:24:41: 53:08:6b:9f:4e:93:e6:36:82:1c:83:67:21:e0:25: 51:e5:e2:ed:9d:85:ff:fe:31:5c:5c:38:ba:75:34: 49:73:1b:3d:13:ea:ef:66:7c:52:6c:6c:6f:32:f2: df:db:ac:64:f7:ed:af:ba:7f:e2:33:36:36:8a:a0: f7:1d:66:bc:14:cd:68:86:95:c6:6c:c4:0b:16:37: e3:67:d1:95:15:20:5d:17:37:e3:c6:01:d6:36:a3: 46:86:63:3c:3d:2f:99:8f:a1:9f:37:cc:6d:3e:48: b2:4c:d6:e0:71:e4:82:00:40:f5:d2:35:05:7e:34: 00:17:f2:25:d5:94:87:fc:ca:e5:c1:16:ea:ca:bd: 6c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7E:7E:A6:AE:58:BB:69:72:26:F2:85:A4:33:42:86:AC:53:8F:29 X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e4:ce:ed:25:04:37:fa:01:22:07:bb:e2:63:8f:55:4f:b8: 96:2c:6a:ab:d2:70:c6:de:ca:61:05:2c:61:31:a7:42:3c:81: a1:33:0d:c0:18:e9:bb:81:c7:59:06:6a:8d:63:46:d0:be:d7: ef:ec:38:fc:c7:15:b2:4e:6e:3a:6a:56:7c:31:c0:e4:c5:bb: 1e:3c:a3:b8:3b:5e:74:57:c7:03:3b:5b:02:c5:01:6c:c5:f0: 97:c0:d5:4f:7f:95:dc:bb:50:99:ba:5c:ec:b6:f7:75:00:17: 5f:a8:be:15:94:34:b2:30:d0:73:07:ac:2b:5d:d7:c8:aa:a2: cf:81:48:b0:3a:f8:ff:c2:24:ad:16:3a:b0:bf:b7:35:97:d4: d6:b3:d2:4d:bb:96:85:61:8b:d6:af:97:a8:34:ae:52:b1:ef: d7:0f:4d:56:98:b9:a0:f7:49:32:6e:4c:ed:63:2b:52:1f:b0: 88:fb:11:1a:38:b2:da:75:e7:8a:52:76:f7:0b:f0:63:da:12: 90:7b:ff:7a:84:20:cf:0a:91:84:98:57:15:60:9d:3e:52:e8: 2d:76:59:32:57:b5:e0:55:de:4e:75:33:fa:0b:c2:a8:45:4c: 53:63:66:c4:91:9e:77:e4:c6:71:a4:a1:f4:e7:23:86:80:61: a2:04:ae:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUwNDI1MDIwMDMwWhcNMjUwNTAyMDIwMDMwWjAYMRYwFAYD VQQDEw02ODBhZWNiZS0zYjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszCPMLNPN+A79Sj7fYHhzVrV3dCjXppze/dO6cSj4tMpT66FdgU1TKjfxAjv Gog2xAXsS0EKBXUCP0H3nfTE67bf22GIH4v6qjtWhRh4PnYpPHpng+0Sa5cPlixe YchcMTXdQCYEyTazqKJtP3ocoEbGGF16JEFTCGufTpPmNoIcg2ch4CVR5eLtnYX/ /jFcXDi6dTRJcxs9E+rvZnxSbGxvMvLf26xk9+2vun/iMzY2iqD3HWa8FM1ohpXG bMQLFjfjZ9GVFSBdFzfjxgHWNqNGhmM8PS+Zj6GfN8xtPkiyTNbgceSCAED10jUF fjQAF/Il1ZSH/MrlwRbqyr1sFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPB+fqau WLtpcibyhaQzQoasU48pMB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz5M7tJQQ3+gEiB7viY49VT7iWLGqr0nDG3sphBSxhMadCPIGhMw3A GOm7gcdZBmqNY0bQvtfv7Dj8xxWyTm46alZ8McDkxbsePKO4O150V8cDO1sCxQFs xfCXwNVPf5Xcu1CZulzstvd1ABdfqL4VlDSyMNBzB6wrXdfIqqLPgUiwOvj/wiSt Fjqwv7c1l9TWs9JNu5aFYYvWr5eoNK5Sse/XD01WmLmg90kybkztYytSH7CI+xEa OLLadeeKUnb3C/Bj2hKQe/96hCDPCpGEmFcVYJ0+UugtdlkyV7XgVd5OdTP6C8Ko RUxTY2bEkZ535MZxpKH05yOGgGGiBK6Z -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:15 2025 by rpki-client