$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: pC9lsHaoXuTDhvUQhBR/7lhFQl57R5qqLbvZzRDc6T4= Subject key identifier: 14:1A:82:FD:80:53:95:69:FD:07:73:CF:B2:67:7D:87:4C:26:AE:7D Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E14 Signing time: Thu 24 Apr 2025 17:51:26 +0000 Manifest this update: Thu 24 Apr 2025 17:51:26 +0000 Manifest next update: Thu 01 May 2025 17:51:26 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: Gm7jQRoS/21J7SZCuZA+F2Ry6aZ9X2EnKqsgbFAAn0E=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Apr 24 17:51:26 2025 GMT Not After : May 1 17:51:26 2025 GMT Subject: CN=680a7a1e-df4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3f:86:94:8a:f6:2d:a7:ba:4d:a9:90:19:92: f8:3d:c2:bd:53:e4:44:0c:16:67:60:81:f1:7a:60: 17:e2:69:7e:fe:86:6c:b1:c0:84:c0:eb:62:4c:ed: 24:11:09:0a:79:1e:f4:0f:6a:6c:85:06:71:0d:41: 4c:e3:dd:2e:25:c8:6a:5c:3b:54:ef:c4:bd:8c:b9: 83:c4:82:d9:49:0e:a6:30:91:75:d2:0b:f5:32:5c: 2b:d9:1f:04:c4:5f:37:d6:70:8e:e3:5c:29:5a:9b: c7:59:db:14:82:ea:13:af:5f:9b:b9:e6:e2:ae:4b: c3:6b:3b:fb:f5:53:26:ea:52:e4:b9:eb:79:2b:85: 14:7a:7c:ec:4c:39:46:09:02:fa:d8:58:03:17:7e: 79:96:9d:fc:31:95:a7:f9:b0:89:a5:a9:54:66:89: 88:69:ff:61:0c:df:ee:8a:aa:a3:ed:11:78:4b:10: db:77:49:3f:26:f9:15:6a:d2:7b:a2:f8:99:93:2f: 47:5c:08:2e:64:ed:32:2a:10:77:1e:25:5d:3f:1c: 6d:60:61:8b:8b:9c:a3:1e:20:d0:35:e7:a0:4a:14: ba:e4:ef:ca:17:a1:81:9c:b6:e3:5a:b0:7f:67:4e: 7f:6b:41:04:fa:7d:9d:77:ee:71:1d:c3:5e:c9:ea: c6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1A:82:FD:80:53:95:69:FD:07:73:CF:B2:67:7D:87:4C:26:AE:7D X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:71:fe:a1:97:22:5e:44:53:5b:93:06:df:94:10:1b:b9:b9: 3e:1c:88:30:df:3b:c4:ed:dd:f7:95:b9:13:61:58:20:00:17: f6:d2:54:9d:09:93:5e:bd:19:ae:f1:5d:83:45:de:bc:ae:8f: 0e:81:cf:87:eb:e0:c3:f3:f4:ea:e8:49:6d:86:ae:a9:e5:2e: a6:66:e8:35:4d:ca:c0:20:f3:42:0c:3b:5b:48:64:47:fb:7b: 51:df:93:58:bd:1e:b1:0f:20:85:63:23:34:0f:ef:16:43:8e: c6:4a:2e:af:65:16:1d:c9:a3:cc:68:a1:04:5d:9c:e0:84:5a: df:a1:2a:0d:3e:69:6d:c5:aa:90:66:40:d3:c8:b3:a7:f4:63: cb:ba:54:30:b9:a0:7a:7b:e9:30:f4:1a:33:ae:d9:f8:7b:ce: fc:4a:43:da:f2:b2:6e:e6:db:e8:09:b5:10:a9:c9:53:c4:d6: 60:05:33:0a:1a:a3:f7:4c:ab:7d:52:75:b3:73:92:70:2f:d2: 67:af:e7:ed:4b:23:a0:22:5d:e2:1c:7d:30:b4:3e:57:18:aa: c2:0e:a6:5c:f1:29:f7:37:ad:4b:89:2b:bd:bd:e8:03:d3:37: 57:3a:7f:ae:36:16:7f:6c:4b:66:5d:dc:b6:6d:f6:c6:33:ca: ef:2a:e4:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA0MjQxNzUxMjZaFw0yNTA1MDExNzUxMjZaMBgxFjAUBgNV BAMTDTY4MGE3YTFlLWRmNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIP4aUivYtp7pNqZAZkvg9wr1T5EQMFmdggfF6YBfiaX7+hmyxwITA62JM7SQR CQp5HvQPamyFBnENQUzj3S4lyGpcO1TvxL2MuYPEgtlJDqYwkXXSC/UyXCvZHwTE XzfWcI7jXClam8dZ2xSC6hOvX5u55uKuS8NrO/v1UybqUuS563krhRR6fOxMOUYJ AvrYWAMXfnmWnfwxlaf5sImlqVRmiYhp/2EM3+6KqqPtEXhLENt3ST8m+RVq0nui +JmTL0dcCC5k7TIqEHceJV0/HG1gYYuLnKMeINA156BKFLrk78oXoYGctuNasH9n Tn9rQQT6fZ137nEdw17J6sY/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFBqC/YBT lWn9B3PPsmd9h0wmrn0wHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANFx/qGXIl5EU1uTBt+UEBu5uT4ciDDfO8Tt3feVuRNhWCAAF/bSVJ0J k169Ga7xXYNF3ryujw6Bz4fr4MPz9OroSW2GrqnlLqZm6DVNysAg80IMO1tIZEf7 e1Hfk1i9HrEPIIVjIzQP7xZDjsZKLq9lFh3Jo8xooQRdnOCEWt+hKg0+aW3FqpBm QNPIs6f0Y8u6VDC5oHp76TD0GjOu2fh7zvxKQ9rysm7m2+gJtRCpyVPE1mAFMwoa o/dMq31SdbNzknAv0mev5+1LI6AiXeIcfTC0PlcYqsIOplzxKfc3rUuJK7296APT N1c6f642Fn9sS2Zd3LZt9sYzyu8q5Ks= -----END CERTIFICATE-----Generated at Sat Apr 26 07:48:32 2025 by rpki-client