$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: 2MDrCenuy7WlII3fQ0eb1i/2U3icKmCreug54ubD5bM= Subject key identifier: E8:DE:4E:5E:7E:9D:6F:FE:B3:A9:C0:FB:D1:59:D5:E9:E8:FA:C7:48 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 066F Signing time: Thu 24 Apr 2025 22:08:44 +0000 Manifest this update: Thu 24 Apr 2025 22:08:44 +0000 Manifest next update: Thu 01 May 2025 22:08:44 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: Nzy3UNiddzuqmiI6i2pyizrs88Xl96l+RCH66zJmO9I=) 2: FAEF1526DE9E11ECBEA8AB0EC4F9AE02.roa (hash: 3D0F61i4bYzZFK1RP5xCz8C+pmRRrnbu/OVCc11V77A=) 3: E3ED2A86F1E511EF9D0E0D1BC4F9AE02.roa (hash: lWJ7FF/SRkIiHgjEhrH+14a75dMx3dN1hls3lTn79Sw=) 4: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: 9kzcr+Me7OnP5vJBlwCgM7entDT3m8eL5xohJDWx2Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Apr 24 22:08:44 2025 GMT Not After : May 1 22:08:44 2025 GMT Subject: CN=680ab66c-00a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:52:7a:b4:f7:2a:01:28:ba:6d:42:53:b5: be:88:3f:52:d5:ec:7f:7a:71:e3:85:87:6d:34:9f: 40:ae:65:db:df:04:30:ed:19:9f:b0:86:65:8c:21: 36:d2:ed:34:31:f4:b0:f1:07:8b:cb:e6:5f:d6:6e: 04:9f:5d:5b:0b:ff:ec:97:08:f6:eb:4d:fc:ec:e2: d2:e6:21:70:ad:fa:99:e1:35:cf:ab:1c:a2:9c:b3: 2a:4f:2e:29:33:69:b8:1a:8f:8e:5f:f5:f5:5c:b3: 5b:b3:55:ef:49:84:da:8e:68:68:e2:f4:6a:80:6f: 91:da:20:85:39:b7:61:d7:84:c9:4b:5d:b0:5f:60: a0:f4:91:8e:7b:d6:f9:5f:fa:e6:19:06:bf:9f:cd: c7:46:3c:51:75:be:d3:9d:f5:c4:2e:40:a5:32:1a: 74:5d:79:e4:42:85:06:e5:1e:5b:9e:df:24:4c:ce: eb:c9:97:7d:eb:94:4f:27:99:fa:93:fd:09:9c:98: 86:5e:7f:50:0e:66:ce:74:42:d1:83:8c:70:ee:03: ba:3f:ad:04:04:4f:f0:1c:8e:ce:82:11:a8:a4:1b: 69:d5:6f:39:6c:2a:80:e5:93:e8:f5:b9:94:90:2a: 2a:e4:9b:fc:64:73:f9:67:f8:ea:20:11:f4:14:9b: 6d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DE:4E:5E:7E:9D:6F:FE:B3:A9:C0:FB:D1:59:D5:E9:E8:FA:C7:48 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:c3:fe:94:44:55:99:a5:1d:0d:3a:74:09:31:e8:86:b6:b4: 13:b1:82:22:eb:25:62:74:ae:cf:ce:0a:a8:ae:9c:26:ef:40: 0d:9d:18:3f:8e:09:0f:38:e9:c0:bc:90:d6:9c:81:18:cf:60: 8d:15:35:51:07:c6:4d:53:2a:8b:26:67:8e:93:71:d0:00:71: fc:91:d8:23:68:0a:fa:43:fd:20:85:b6:02:a7:c3:77:52:07: d8:e9:58:ee:17:f3:84:51:d2:10:83:62:ea:6d:a8:9f:a4:9b: 53:d5:0d:12:8b:5a:a7:92:30:07:bc:ff:b4:e0:b5:4d:ec:b8: 22:eb:2c:20:c4:46:9f:11:17:03:6d:69:c5:44:dd:ec:12:d1: e7:8e:73:a3:0d:82:f4:86:12:8e:9a:3f:39:ed:a0:4e:34:99: ba:f1:68:0a:0d:a3:3b:7f:2e:23:35:ff:21:12:b8:ce:0a:49: c9:54:b4:4f:bf:0c:3d:f9:60:c2:fa:4c:c9:ca:7a:c3:bd:f6: cd:07:0e:62:99:6c:0b:83:36:5d:ea:d7:cc:e7:7a:89:16:5e: b0:de:56:f7:17:c3:14:83:cd:32:c3:b2:c1:2d:8e:e0:0f:2c: 6b:c6:da:7d:b7:31:44:93:89:ad:bd:2c:29:4e:b2:bc:61:07: a9:69:75:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwNDI0MjIwODQ0WhcNMjUwNTAxMjIwODQ0WjAYMRYwFAYD VQQDEw02ODBhYjY2Yy0wMGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNFSerT3KgEoum1CU7W+iD9S1ex/enHjhYdtNJ9ArmXb3wQw7RmfsIZljCE2 0u00MfSw8QeLy+Zf1m4En11bC//slwj260387OLS5iFwrfqZ4TXPqxyinLMqTy4p M2m4Go+OX/X1XLNbs1XvSYTajmho4vRqgG+R2iCFObdh14TJS12wX2Cg9JGOe9b5 X/rmGQa/n83HRjxRdb7TnfXELkClMhp0XXnkQoUG5R5bnt8kTM7ryZd965RPJ5n6 k/0JnJiGXn9QDmbOdELRg4xw7gO6P60EBE/wHI7OghGopBtp1W85bCqA5ZPo9bmU kCoq5Jv8ZHP5Z/jqIBH0FJttRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjeTl5+ nW/+s6nA+9FZ1eno+sdIMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsw/6URFWZpR0NOnQJMeiGtrQTsYIi6yVidK7Pzgqorpwm70ANnRg/ jgkPOOnAvJDWnIEYz2CNFTVRB8ZNUyqLJmeOk3HQAHH8kdgjaAr6Q/0ghbYCp8N3 UgfY6VjuF/OEUdIQg2LqbaifpJtT1Q0Si1qnkjAHvP+04LVN7Lgi6ywgxEafERcD bWnFRN3sEtHnjnOjDYL0hhKOmj857aBONJm68WgKDaM7fy4jNf8hErjOCknJVLRP vww9+WDC+kzJynrDvfbNBw5imWwLgzZd6tfM53qJFl6w3lb3F8MUg80yw7LBLY7g Dyxrxtp9tzFEk4mtvSwpTrK8YQepaXUt -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:38 2025 by rpki-client