$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft File: A0a2NPJj9jaEI52232S7us33-KQ.mft (raw, json) Hash identifier: 7C7cKnZGBVEKyophxkZHxRm6zJiedbnlJalAGiKtaMA= Subject key identifier: 1B:7A:91:CD:26:35:BD:B1:6C:B1:67:BC:98:0D:06:92:0C:BD:B2:9E Authority key identifier: 03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 Certificate issuer: /CN=A91D7156/serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Certificate serial: 10DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft Manifest number: 0EC8 Signing time: Thu 24 Apr 2025 18:08:13 +0000 Manifest this update: Thu 24 Apr 2025 18:08:13 +0000 Manifest next update: Thu 01 May 2025 18:08:13 +0000 Files and hashes: 1: A0a2NPJj9jaEI52232S7us33-KQ.crl (hash: WeH6xZD8Pb7Q1P6uG4uobYWDArCvbgIMI+LL8NrEkCo=) 2: 5CF5B0D0C0FC11EFBD950B83C4F9AE02.roa (hash: YaMSZkZmb/43IpCXVJI7v5m+sQOENYgB4njMtXBa97I=) 3: 2D5961DC1EBC11F0B2B33B09C4F9AE02.roa (hash: vhcg9k1J2WP6Yf8v1mKwoqpVvFKCNVZ0gppzkbBYpSA=) 4: 26DA1E16247411EA8E1A1178C4F9AE02.roa (hash: 2d6B7dOvusdbolEglGxOmkSZdHYDTyLSYjs57fzYYnk=) 5: 161D8022A24611EF966F6286C4F9AE02.roa (hash: ceTZVpw7rCFHUlXqkaohAqOzq6O3kLILB+r7fOW1zYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4318 (0x10de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7156, serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Validity Not Before: Apr 24 18:08:13 2025 GMT Not After : May 1 18:08:13 2025 GMT Subject: CN=680a7e0d-aff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2f:f2:37:3b:a7:ba:ef:80:82:56:ad:59:50: ac:8b:66:96:ba:19:2f:4c:eb:4f:f2:e4:22:0f:2c: 42:e9:b4:3f:73:7b:c3:a1:e1:ca:42:7f:8a:63:c4: a1:97:fb:48:26:43:7d:c8:7b:e4:73:9f:e5:ca:25: 36:69:b6:95:ac:99:73:a4:c2:4f:97:f0:2a:4c:6e: d1:aa:2b:fe:ba:85:43:12:d8:74:3e:e3:ba:75:3c: 6e:50:92:08:6b:d0:8d:9d:d4:27:8a:57:9a:da:27: 18:ab:2b:ca:b8:e7:65:6a:ef:80:f8:02:b6:74:5b: 4e:8c:bf:55:ba:8b:77:48:33:90:10:27:33:9f:88: fd:af:83:42:78:cb:c3:7a:b0:21:30:45:2b:b4:de: 21:6a:b9:6e:bf:ea:08:6f:ed:4a:f2:c2:b4:b0:3d: aa:ab:d1:82:43:71:3f:47:19:28:b2:a6:e8:f5:bb: 7d:a0:88:19:1e:43:9a:ee:05:b9:c8:b5:5e:c3:23: f3:28:ab:15:78:d4:af:3e:4f:2b:4e:c8:97:81:59: 5b:b4:4f:02:7a:14:41:1f:94:08:2e:01:7e:0e:49: 24:7b:03:82:33:75:90:65:d0:cd:96:cd:99:a8:d4: b4:82:52:64:1c:d3:ea:e4:e2:eb:71:b5:87:25:8d: 28:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7A:91:CD:26:35:BD:B1:6C:B1:67:BC:98:0D:06:92:0C:BD:B2:9E X509v3 Authority Key Identifier: keyid:03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:6b:da:08:7c:ed:0e:4c:3c:70:82:b4:32:d4:2c:da:e3:0e: ae:af:39:02:eb:31:f9:ce:57:2f:70:40:9d:ed:cd:6c:a0:4b: 43:7b:e9:e1:e4:cf:fc:46:80:f9:2c:1d:01:db:6e:41:c8:1b: 70:53:96:95:38:cc:ee:c6:a8:eb:10:48:6f:db:f1:31:13:a2: 86:58:e1:ea:ca:13:8f:13:37:ec:2b:cb:73:39:e4:98:41:a8: 0e:fe:95:94:ef:a5:52:c3:41:1a:ae:4c:76:6b:de:16:86:2a: ee:9b:d5:c9:1b:c0:c1:f7:61:9b:0d:5d:66:e8:94:4f:cf:96: 10:a2:87:e6:54:b0:da:4f:c5:32:23:c3:fa:a4:62:64:76:1e: 83:51:a9:9e:ff:0f:5e:82:66:5b:1c:7a:cd:da:14:3c:00:6a: 8a:e4:5a:99:80:4b:95:4e:76:bf:78:68:19:31:a4:41:ab:57: 97:ee:09:18:e1:2f:45:30:bb:24:fb:b3:1d:ec:b2:f3:eb:72: 27:35:7a:d7:e4:c4:eb:1e:70:4e:9f:82:91:c6:0a:a3:22:c0: 85:e8:6c:c3:74:9b:de:4c:87:33:56:92:80:82:1b:4e:9f:77: 48:5a:03:07:68:89:07:f9:ae:f0:0b:ce:c2:fc:fc:92:ab:ef: b6:8d:bc:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxNTYxMTAvBgNVBAUTKDAzNDZCNjM0RjI2M0Y2MzY4NDIzOURCNkRGNjRCQkJB Q0RGN0Y4QTQwHhcNMjUwNDI0MTgwODEzWhcNMjUwNTAxMTgwODEzWjAYMRYwFAYD VQQDEw02ODBhN2UwZC1hZmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7y/yNzunuu+AglatWVCsi2aWuhkvTOtP8uQiDyxC6bQ/c3vDoeHKQn+KY8Sh l/tIJkN9yHvkc5/lyiU2abaVrJlzpMJPl/AqTG7Rqiv+uoVDEth0PuO6dTxuUJII a9CNndQnilea2icYqyvKuOdlau+A+AK2dFtOjL9Vuot3SDOQECczn4j9r4NCeMvD erAhMEUrtN4harluv+oIb+1K8sK0sD2qq9GCQ3E/Rxkosqbo9bt9oIgZHkOa7gW5 yLVewyPzKKsVeNSvPk8rTsiXgVlbtE8CehRBH5QILgF+DkkkewOCM3WQZdDNls2Z qNS0glJkHNPq5OLrcbWHJY0oCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt6kc0m Nb2xbLFnvJgNBpIMvbKeMB8GA1UdIwQYMBaAFANGtjTyY/Y2hCOdtt9ku7rN9/ik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzE1Ni9COUYwODQ0Q0Yy M0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlqYUVJNTIyMzJTN3VzMzMt S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwYTJOUEpqOWphRUk1MjIzMlM3dXMzMy1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzE1Ni9COUYwODQ0Q0YyM0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlq YUVJNTIyMzJTN3VzMzMtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBea9oIfO0OTDxwgrQy1Cza4w6urzkC6zH5zlcvcECd7c1soEtDe+nh 5M/8RoD5LB0B225ByBtwU5aVOMzuxqjrEEhv2/ExE6KGWOHqyhOPEzfsK8tzOeSY QagO/pWU76VSw0Earkx2a94Whirum9XJG8DB92GbDV1m6JRPz5YQoofmVLDaT8Uy I8P6pGJkdh6DUame/w9egmZbHHrN2hQ8AGqK5FqZgEuVTna/eGgZMaRBq1eX7gkY 4S9FMLsk+7Md7LLz63InNXrX5MTrHnBOn4KRxgqjIsCF6GzDdJveTIczVpKAghtO n3dIWgMHaIkH+a7wC87C/PySq++2jbwQ -----END CERTIFICATE-----Generated at Sat Apr 26 05:44:29 2025 by rpki-client